Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/9CEAB6820EA911EF9BF20363017001B1.roa
File: 9CEAB6820EA911EF9BF20363017001B1.roa (raw, json)
Hash identifier: 6YXcwDua51Yhbxv2LW9Snu2U29MlOnwDOglDwBxGs5E=
Subject key identifier: 06:33:DC:9E:5E:04:8C:E8:1B:E9:D8:FD:90:D5:F0:86:86:01:9A:80
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: B664
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/9CEAB6820EA911EF9BF20363017001B1.roa
Signing time: Fri 10 May 2024 08:45:12 +0000
ROA not before: Fri 10 May 2024 08:45:08 +0000
ROA not after: Mon 20 May 2024 08:45:08 +0000
asID: 142062
IP address blocks: 154.206.204.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 46692 (0xb664)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 10 08:45:08 2024 GMT
Not After : May 20 08:45:08 2024 GMT
Subject: CN=663dde98-9a67
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ef:7e:99:bb:ee:b5:b1:78:4b:9f:25:e8:36:fe:
6f:94:83:8e:88:ef:04:db:df:b3:d0:a5:88:3e:78:
6b:9f:39:15:bb:e6:a5:dc:52:c9:8e:4e:3d:a5:a7:
b2:fe:42:33:a3:65:c6:bf:65:1e:98:d5:c2:01:8c:
ab:31:3e:04:c5:8d:54:cf:cd:8d:2a:f7:30:42:0b:
99:5a:42:a5:d0:e5:4a:dd:15:7d:7c:fa:00:a1:a1:
3b:0e:ac:4b:1b:db:b5:f8:40:82:1b:5c:d3:0c:b0:
43:75:a0:c0:eb:9e:42:34:b7:b0:74:de:df:61:1d:
e0:57:ce:81:90:95:fc:88:89:62:55:44:f1:28:14:
09:8e:0f:59:c5:82:fc:b6:84:64:4d:5f:79:f8:dd:
d0:20:01:e3:73:16:85:b5:96:24:0e:e3:be:e7:3f:
5a:c3:a9:ae:be:67:18:73:81:86:c6:7c:4d:82:63:
f6:ad:bf:05:e5:44:0e:9f:3d:97:c2:4f:5f:c4:ec:
65:c4:c1:2b:c2:9d:4a:0f:7d:39:48:c3:5e:e7:e3:
12:6b:95:7a:dc:a1:f1:9d:88:f3:80:7a:c6:0d:71:
d3:cc:5a:37:30:d3:bb:ab:88:ca:e9:74:d3:08:ec:
fe:e9:1d:6c:50:5a:3f:53:27:73:dc:41:fa:ba:1b:
63:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:33:DC:9E:5E:04:8C:E8:1B:E9:D8:FD:90:D5:F0:86:86:01:9A:80
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/9CEAB6820EA911EF9BF20363017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.206.204.0/24
Signature Algorithm: sha256WithRSAEncryption
36:a5:6d:32:fe:42:b6:d9:0b:32:e5:fe:ef:6d:bd:a6:c6:c3:
63:47:df:a8:cc:bc:cc:cb:5c:d7:f9:a0:87:0f:be:9b:85:a9:
4e:51:2f:e7:80:7a:7c:67:56:4a:95:c9:97:00:f3:90:2e:cc:
17:1e:75:ff:34:f0:3b:20:74:a6:73:6f:99:57:1a:6b:2b:82:
06:aa:30:ee:c5:67:fb:ea:91:03:0c:34:0a:14:c6:a8:ba:56:
b7:54:de:8e:6d:90:40:b4:96:6a:29:26:99:94:c9:b2:d2:fb:
65:23:f7:d3:27:fa:3a:80:50:2d:d1:54:b4:a3:70:53:77:ea:
f2:6c:d7:65:ad:2c:3a:ba:11:b1:37:0c:aa:ab:91:dd:f9:90:
f9:ad:4b:12:7d:21:90:02:39:45:07:c6:86:c8:57:3e:65:b6:
5f:27:37:b2:f8:91:f2:c2:e5:fa:ae:05:87:41:e0:43:cb:c4:
ca:d9:96:10:cc:9e:95:80:74:48:8d:50:27:af:24:36:41:21:
3f:0d:87:94:7b:76:8e:f9:26:90:d3:b5:10:41:44:85:bf:6f:
f1:aa:54:32:13:ca:a7:65:f6:f4:9b:0f:be:fc:82:cc:de:a8:
f1:97:10:d2:8b:01:6a:65:30:51:b8:38:bf:d9:4d:06:01:68:
4b:70:99:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:48:47 2024 by rpki-client on console-fra.rpki-client.org