Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/76EAD72E0EAD11EF9A0D8806017001B1.roa
File: 76EAD72E0EAD11EF9A0D8806017001B1.roa (raw, json)
Hash identifier: nNtMIUa5ZzlWqKp/fpRZpmgRFpfODSv6vcgDYoynj2M=
Subject key identifier: 1F:84:08:3E:2F:02:2B:AD:52:34:71:71:B2:38:AB:C6:DD:5D:CC:0F
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: B698
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/76EAD72E0EAD11EF9A0D8806017001B1.roa
Signing time: Fri 10 May 2024 09:12:46 +0000
ROA not before: Fri 10 May 2024 09:12:43 +0000
ROA not after: Mon 20 May 2024 09:12:43 +0000
asID: 142062
IP address blocks: 154.206.230.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 46744 (0xb698)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 10 09:12:43 2024 GMT
Not After : May 20 09:12:43 2024 GMT
Subject: CN=663de50e-bc06
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:f2:24:25:fc:d1:8e:5b:08:78:f7:b8:58:98:
73:54:44:cc:eb:e1:d4:02:71:d5:d7:8d:c5:f6:cf:
58:07:b5:b8:55:5e:1f:07:a6:d2:69:ff:65:82:21:
69:55:9f:56:f4:f0:47:55:38:1e:16:8f:e7:37:d4:
c7:54:8d:e3:7e:99:d7:68:24:fc:12:20:e0:2d:31:
17:0a:a5:ff:1d:70:05:9a:e9:71:59:02:2f:d9:b9:
9b:d5:56:7b:f8:eb:7c:9a:e0:ab:df:61:45:ed:63:
ae:eb:d6:98:7b:7c:f8:1b:1a:12:17:e7:05:be:c0:
b2:66:1f:c2:34:91:1e:5b:ec:64:29:eb:a7:35:96:
ac:bc:1c:81:a8:cc:b4:40:0b:5c:26:dc:68:ab:9e:
d0:a5:a3:c2:de:72:49:9f:01:29:e9:30:03:e6:74:
4b:7f:e9:14:65:20:41:89:5d:01:3d:d8:8e:65:e5:
9a:16:d9:80:1e:7d:6c:8d:29:10:bd:b4:08:88:59:
fa:09:3d:cc:f7:de:20:ab:10:a4:90:b3:ad:cc:03:
2d:31:c7:4c:48:6c:2c:52:9c:55:e1:4d:b3:9c:c5:
d4:41:6c:c0:4d:16:bb:a6:ce:66:fa:5b:ca:e0:ba:
57:cb:a0:4f:d8:4f:0b:d4:54:48:75:a1:0b:f7:cb:
65:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:84:08:3E:2F:02:2B:AD:52:34:71:71:B2:38:AB:C6:DD:5D:CC:0F
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/76EAD72E0EAD11EF9A0D8806017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.206.230.0/24
Signature Algorithm: sha256WithRSAEncryption
01:79:c5:be:b6:70:ef:52:58:ab:33:4e:0f:e4:74:a2:53:c7:
73:dc:ae:6d:cb:be:eb:e3:5a:28:49:d0:fe:87:4e:37:81:f6:
55:15:96:95:1e:bc:61:f1:39:ec:12:9c:bd:d0:2d:82:4d:53:
92:c0:eb:fb:11:39:28:47:20:94:74:47:44:41:5c:cc:ff:a9:
9c:db:70:3a:59:b4:ad:f4:5b:67:52:ce:c8:3b:f2:2b:f6:21:
cc:5f:00:c0:55:09:d9:7e:97:f5:a6:b9:b6:40:24:dd:86:bc:
64:f8:ce:c3:e1:29:f0:25:bd:56:bc:eb:ca:e9:b5:8d:fd:2b:
2a:c4:10:34:d5:14:01:72:32:d1:0a:04:31:03:f6:1a:68:5d:
ce:51:51:6c:ab:f9:11:d1:c2:8d:d8:09:22:07:d0:e8:34:67:
49:a7:9d:72:8b:ac:ac:d7:03:28:7d:6e:f3:1a:39:e3:d9:67:
86:b3:4b:d9:95:b7:ee:71:9e:fb:d0:18:6e:25:3f:f4:0e:45:
6b:fc:67:f8:cf:08:42:5c:73:7c:4f:38:00:be:0c:0f:49:d1:
6e:00:a2:f4:af:95:35:4c:2a:b8:79:05:97:bd:f5:38:da:fa:
68:2f:cb:7d:03:46:cc:5d:f5:83:88:07:0c:f4:2f:be:be:96:
93:35:68:f8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:48:30 2024 by rpki-client on console-fra.rpki-client.org