Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/91B014440EAC11EFBF07C8FC007001B1.roa
File: 91B014440EAC11EFBF07C8FC007001B1.roa (raw, json)
Hash identifier: K3OcffKBpOvYwTUUGHsuFQ/6E1ReyGPwFuPRrCI/iJI=
Subject key identifier: F0:15:5F:50:DD:E6:13:F5:BD:FA:0A:C2:FE:4D:A8:80:1D:F8:1C:F9
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: B68C
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/91B014440EAC11EFBF07C8FC007001B1.roa
Signing time: Fri 10 May 2024 09:06:22 +0000
ROA not before: Fri 10 May 2024 09:06:18 +0000
ROA not after: Mon 20 May 2024 09:06:18 +0000
asID: 142062
IP address blocks: 154.206.227.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 46732 (0xb68c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 10 09:06:18 2024 GMT
Not After : May 20 09:06:18 2024 GMT
Subject: CN=663de38d-2bec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:63:a7:ce:e4:2f:ed:3e:2a:3c:44:37:07:d0:
74:87:43:0b:e8:ee:7f:ed:f1:6d:ed:9c:84:50:7c:
dd:6e:e4:ac:40:d1:58:2d:7b:2a:d0:94:e1:4a:21:
64:03:40:7c:03:79:02:42:23:6a:45:f1:d1:8e:c9:
90:15:6f:e5:56:b4:d2:ae:b3:4f:3d:b2:aa:9e:56:
f0:5a:b3:98:fe:4b:db:66:a7:f2:d2:64:35:6f:a7:
40:cc:f7:f3:ad:d3:fe:23:be:51:eb:5d:f8:f9:3f:
d1:db:af:a1:d2:1e:5f:0b:a5:62:b6:26:83:d5:33:
97:71:06:1f:89:a7:a5:2d:47:d0:a9:87:f9:d3:ff:
13:02:50:1f:fc:35:e6:9e:98:02:68:e8:21:d8:91:
e7:74:b6:78:24:3f:14:bb:dd:8e:95:8d:02:a0:b1:
77:38:ad:63:43:7e:e3:b9:4b:29:e8:60:a3:ca:bc:
fb:b9:3d:89:d1:43:3d:65:66:03:4c:0c:db:2e:8b:
28:65:b1:35:95:0d:e8:ae:30:f5:25:85:75:9f:00:
cb:1a:a1:58:2b:c7:59:af:4f:38:e0:3c:f8:a3:84:
e7:fe:6f:e0:c9:8b:f3:88:8b:17:21:4d:ee:82:07:
99:bb:5e:5a:9a:40:37:a9:23:11:25:8f:fc:1c:d2:
a6:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:15:5F:50:DD:E6:13:F5:BD:FA:0A:C2:FE:4D:A8:80:1D:F8:1C:F9
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/91B014440EAC11EFBF07C8FC007001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.206.227.0/24
Signature Algorithm: sha256WithRSAEncryption
b5:bc:35:85:62:82:20:f7:bc:8d:e5:18:74:85:62:7a:e6:b6:
8d:33:e8:ba:ac:c9:f5:34:6c:50:26:76:c6:38:56:40:41:d9:
1b:4b:54:2d:af:01:43:5b:c1:29:de:c4:56:3a:fd:f9:2e:19:
0b:d2:6f:87:cb:9b:d0:cf:2c:c5:17:1c:9e:6d:fa:60:35:d4:
3b:a1:de:74:48:49:a9:72:be:e5:9d:d4:42:26:da:a1:2f:96:
cd:13:89:4e:8d:c4:63:cb:70:b2:23:00:38:e1:d5:88:5d:e5:
ea:8b:0f:6d:0c:22:4e:33:2d:db:fd:5b:40:c4:4c:90:21:8b:
97:29:26:f6:28:93:02:3e:fc:39:4b:4b:9d:e7:be:ec:e2:b4:
b3:13:23:1a:d8:d8:eb:ca:1e:f5:79:61:41:24:f8:8d:bf:fc:
73:81:9c:b2:77:2d:64:f8:2e:8a:c2:b9:27:3f:7a:41:36:d1:
1d:4d:89:c4:42:ba:17:d4:3d:59:24:6d:a7:7b:3e:ad:d2:33:
36:74:86:55:57:b3:cb:62:e6:80:30:69:5d:03:1f:e6:ad:ba:
6b:c0:ae:2d:23:e2:aa:ef:1e:b6:5c:83:54:12:c8:69:53:e0:
ed:54:7c:62:c9:c4:c9:4e:63:78:f5:c7:3a:c8:12:c0:ec:6b:
04:ae:3d:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:01:03 2024 by rpki-client on console-ams.rpki-client.org