Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/79CC7AC8FBA311EE9AE7AB5B017001B1.roa
File: 79CC7AC8FBA311EE9AE7AB5B017001B1.roa (raw, json)
Hash identifier: difsxPDI9Rc/SsRHYkNVJWTU0Fmkh5Udx4vwKvLkRes=
Subject key identifier: 57:74:D0:96:12:B1:BF:AD:C7:E8:BB:81:02:97:E5:10:7F:AC:20:19
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: AD5B
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/79CC7AC8FBA311EE9AE7AB5B017001B1.roa
Signing time: Tue 16 Apr 2024 03:43:24 +0000
ROA not before: Tue 16 Apr 2024 03:43:20 +0000
ROA not after: Wed 24 Apr 2024 03:43:20 +0000
asID: 142062
IP address blocks: 154.206.202.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 44379 (0xad5b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 16 03:43:20 2024 GMT
Not After : Apr 24 03:43:20 2024 GMT
Subject: CN=661df3dc-563d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:ed:4a:b3:c7:35:8c:d3:ff:4e:67:80:4c:6e:
2f:e2:64:c0:30:d8:3c:d2:e7:b2:47:27:56:89:5a:
57:85:22:ca:98:fc:e4:a8:a5:41:b7:8f:3c:25:61:
90:2d:c7:43:b2:d2:7a:fd:86:97:06:c7:f6:e8:27:
0d:9c:b9:4f:2b:74:6f:c4:97:6a:92:1a:a0:a4:74:
cf:0f:66:1c:24:fa:c6:7d:91:a0:ee:17:64:4c:19:
27:7b:0e:bd:7e:58:af:1f:03:f8:71:4d:fd:31:76:
6d:f8:40:dd:c0:13:82:f1:29:d3:f0:51:40:a1:8a:
cb:13:76:b5:6a:fd:7f:1c:26:3b:9b:78:74:cc:5d:
bc:f7:92:12:76:53:af:fc:29:0e:1c:63:26:76:1a:
f8:b3:d8:65:45:76:47:f8:3f:19:1e:c9:3b:3f:64:
03:48:1f:26:52:a2:80:7e:de:cc:01:01:76:88:b2:
38:4b:a1:a4:bd:4f:f8:ce:63:78:fc:66:fc:8d:a0:
71:19:8e:26:c8:38:a9:b8:9d:45:e5:27:a5:4d:1b:
ed:7c:c5:43:22:51:90:bb:41:4c:e9:8e:93:58:18:
ff:e5:39:66:69:3f:29:54:39:d8:67:d6:37:f4:7c:
a0:d4:7b:d6:d1:bf:7f:63:98:47:9c:c0:21:b2:b0:
54:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:74:D0:96:12:B1:BF:AD:C7:E8:BB:81:02:97:E5:10:7F:AC:20:19
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/79CC7AC8FBA311EE9AE7AB5B017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.206.202.0/24
Signature Algorithm: sha256WithRSAEncryption
23:88:f6:f4:08:d5:c7:b6:69:03:0c:8e:59:9d:b8:51:00:dc:
22:a1:34:c7:d6:88:12:41:9c:7a:9a:7f:96:53:92:be:8d:0b:
0d:c2:6b:30:00:5e:c2:13:85:48:45:37:b5:8d:6c:95:3c:3d:
0f:be:7a:63:d0:bb:19:45:29:fb:5d:a1:0e:d8:b7:0f:1b:e1:
e2:b2:02:83:61:45:8b:42:1b:d4:16:75:14:af:c7:a4:c8:bf:
7f:b4:12:92:ba:12:d4:2b:bb:68:3c:3a:e7:a8:88:52:c4:33:
c8:7f:99:a0:d3:83:6f:52:41:c6:5e:d3:52:1b:5d:36:be:63:
18:32:b4:70:84:1b:f1:0f:3a:76:ab:b0:8a:a5:3c:a4:fa:b5:
62:30:29:24:f6:48:93:e9:db:e1:5c:d3:da:94:a2:45:d9:8d:
2f:53:12:09:ac:1e:86:aa:4b:f7:3d:e1:b6:28:c9:9a:ab:3e:
21:2c:83:2f:e3:c6:e9:4a:be:0d:0d:9e:9e:84:42:3b:a4:65:
67:18:9d:57:ac:c6:8a:90:93:1b:e0:06:f4:05:4e:cb:58:c8:
a7:6c:93:39:5f:64:1d:f7:10:06:e7:1e:53:74:fa:66:32:1b:
25:e4:bc:3c:78:69:4a:9e:7f:db:ed:33:b6:b9:44:d4:2e:53:
e0:b2:03:8a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 24 12:34:43 2024 by rpki-client on console-ams.rpki-client.org