Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7638CEE6FAC911EE8EB8235C017001B1.roa
File: 7638CEE6FAC911EE8EB8235C017001B1.roa (raw, json)
Hash identifier: 250Y8h5nUqpXQj6CTUecSRTVBdC5agerG8OeSFPZ8Sg=
Subject key identifier: FB:C3:21:88:6D:3B:E9:1A:04:0E:96:E0:09:E4:30:EE:9A:91:D7:D3
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: ABED
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7638CEE6FAC911EE8EB8235C017001B1.roa
Signing time: Mon 15 Apr 2024 01:42:47 +0000
ROA not before: Mon 15 Apr 2024 01:42:44 +0000
ROA not after: Wed 24 Apr 2024 01:42:44 +0000
asID: 142062
IP address blocks: 154.206.196.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 44013 (0xabed)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 15 01:42:44 2024 GMT
Not After : Apr 24 01:42:44 2024 GMT
Subject: CN=661c8617-b510
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:eb:b1:38:3a:47:54:3b:b4:41:fa:2c:e6:c5:
cc:fb:64:30:94:b2:1a:e5:b8:83:af:73:8f:51:72:
9e:0a:97:34:c4:48:f3:a1:b9:22:5e:e7:53:3e:90:
a3:34:6f:60:3d:f2:ed:47:d8:fd:66:68:84:c2:1c:
f2:a6:26:b8:92:c0:af:e0:b3:0a:a8:7c:ba:60:c6:
b2:0e:bb:7b:4a:1c:be:5b:1c:e1:ff:43:25:57:d6:
4b:a1:fa:14:23:94:08:f4:b3:2c:4d:f5:5b:4e:c5:
d8:10:8e:2d:77:7c:07:fe:d9:d8:ab:5e:44:63:6c:
22:68:55:a6:11:22:1a:97:f2:61:4c:c8:4a:52:02:
1b:cc:1a:3c:d0:a2:b6:e3:36:3e:7e:c9:d4:09:5a:
17:fe:00:b1:61:59:6c:6f:58:cb:cc:ab:93:1c:d9:
b8:32:9c:86:45:4c:95:01:bb:4f:d5:62:6a:98:4c:
b8:d8:f7:5b:23:ba:2d:c9:31:e0:75:d3:1a:a4:5c:
57:ef:57:16:88:2e:7a:62:ca:b5:b8:bd:51:2b:07:
81:d2:94:27:03:65:8a:6b:83:25:cf:f9:56:df:05:
56:8e:dd:f8:4d:d7:90:93:ae:6e:72:38:3e:65:65:
bd:34:e1:cf:b5:a7:6e:c7:b4:a5:09:c0:27:72:f5:
24:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:C3:21:88:6D:3B:E9:1A:04:0E:96:E0:09:E4:30:EE:9A:91:D7:D3
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7638CEE6FAC911EE8EB8235C017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.206.196.0/24
Signature Algorithm: sha256WithRSAEncryption
96:ae:ec:74:b1:fb:b7:41:46:42:e1:f7:d8:85:72:b2:72:f2:
79:be:c1:13:d3:d6:22:13:45:aa:08:52:a1:8b:2b:57:9c:5f:
fd:88:9d:d8:1c:bf:ce:f3:f1:45:66:42:fd:33:bf:33:94:f4:
80:90:32:53:f6:fc:4a:6a:df:92:42:da:e3:9f:69:8f:2d:e1:
57:a1:0b:e8:87:9d:fd:ed:d9:58:f5:8e:f2:6b:05:cb:4c:a1:
02:e8:e1:a9:9f:b2:6e:97:74:e7:bf:88:77:f0:04:a4:27:e7:
b2:d4:c8:99:5e:60:4c:c7:9d:fc:52:16:55:78:4c:b3:83:f7:
08:95:79:fa:e1:60:cf:6d:52:c4:d4:53:df:69:98:75:be:bc:
bd:94:f8:61:8d:c5:74:48:72:5d:dc:28:37:4b:7f:fd:fd:0a:
e6:bc:57:d6:4e:ac:46:93:7d:aa:70:ca:ba:17:2d:ab:11:26:
d3:86:6c:38:67:c9:4a:c6:16:7c:e9:6a:7b:24:76:2c:b2:4d:
27:55:7d:89:8d:bf:93:e6:c2:af:44:41:13:1c:68:3e:54:cc:
8c:bb:06:13:b1:27:9a:cb:c1:63:58:b1:8e:1f:d4:0b:20:af:
61:9b:bc:23:f4:92:bf:53:78:1e:02:ee:00:a4:af:1a:ce:b2:
72:74:d0:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 24 09:55:38 2024 by rpki-client on console-fra.rpki-client.org