Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A636EAD4FADC11EEAB8A3C03017001B1.roa
File: A636EAD4FADC11EEAB8A3C03017001B1.roa (raw, json)
Hash identifier: LEm9M3qzJEczLOCWBf5aho68ndcQTsrt3hV+0jvUCK0=
Subject key identifier: C0:6B:E6:3A:6F:CA:1C:AB:FA:2F:33:48:B6:52:C0:3A:7C:9B:2E:28
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: AC2B
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A636EAD4FADC11EEAB8A3C03017001B1.roa
Signing time: Mon 15 Apr 2024 04:00:09 +0000
ROA not before: Mon 15 Apr 2024 04:00:05 +0000
ROA not after: Wed 24 Apr 2024 04:00:05 +0000
asID: 142062
IP address blocks: 154.206.227.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 44075 (0xac2b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 15 04:00:05 2024 GMT
Not After : Apr 24 04:00:05 2024 GMT
Subject: CN=661ca649-a178
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:8e:43:45:7f:b8:49:1b:42:d2:d6:08:f0:73:
34:6c:4f:63:1d:cc:23:c2:a4:01:3c:45:43:f6:59:
4b:d2:0e:a8:89:20:46:60:5e:b8:c6:78:d9:e8:57:
2b:45:52:38:b9:fc:3e:b2:5d:4d:d9:42:cf:d8:84:
e6:12:70:ec:73:2b:4b:c3:7f:57:a5:eb:98:14:42:
1b:4b:06:c8:bd:73:c1:38:4d:34:08:63:63:eb:5e:
ff:1f:5c:f8:d9:c8:18:5f:c6:7c:35:3f:f9:29:6c:
3a:a5:2e:41:87:a7:9b:51:b9:55:97:e9:04:6b:71:
0e:8c:57:39:93:6e:0b:7a:6a:5a:17:a2:9a:c3:81:
54:fc:19:74:f5:d6:5a:46:53:ba:25:02:77:9f:22:
a8:c2:ae:53:3d:69:12:e2:f7:68:50:30:4d:4e:40:
9c:70:b3:5a:d3:cb:85:60:7e:00:d9:be:89:cc:ec:
11:21:e7:3f:1b:6b:75:93:e9:23:ef:a4:36:a8:57:
ed:20:8e:56:95:cf:4c:1b:b9:83:9c:37:8d:e6:c4:
1a:3c:32:85:da:d5:e0:6b:b9:5e:2b:8c:05:eb:08:
e9:af:d4:8b:b3:8e:06:08:21:3c:c8:99:d5:09:1e:
5c:8e:9a:5b:bc:0c:6c:fa:21:eb:da:b9:07:6e:d8:
77:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:6B:E6:3A:6F:CA:1C:AB:FA:2F:33:48:B6:52:C0:3A:7C:9B:2E:28
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A636EAD4FADC11EEAB8A3C03017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.206.227.0/24
Signature Algorithm: sha256WithRSAEncryption
c9:86:c3:69:94:a9:68:e9:d6:5f:00:ac:de:cc:3f:8b:f6:73:
a2:ab:00:96:a8:a5:3a:ca:1c:b8:ad:4c:28:43:e9:4f:31:09:
09:19:50:39:01:af:73:ff:3e:14:26:c1:db:ae:cc:34:d7:0c:
5a:c5:44:7f:cb:34:c8:f9:c8:95:75:fa:85:60:88:3a:ff:0d:
6b:1f:f6:2d:7d:d8:81:fd:26:cf:61:fc:bb:e9:b8:94:b7:ed:
96:5a:35:86:3a:cf:f7:ed:df:d9:b4:8b:20:e9:8f:df:16:e7:
e8:cf:42:a7:1f:98:8f:35:c0:76:8b:16:fb:c8:15:f2:9b:63:
12:54:a9:d5:fe:68:83:e1:95:32:4c:75:9c:fd:cf:59:e3:96:
91:46:a3:63:64:b5:51:62:be:6a:c9:3f:94:6b:6f:82:09:9b:
67:8e:ce:4e:12:ae:d2:0c:f9:dd:c6:5e:07:5a:ff:46:52:35:
33:6f:02:63:3e:79:5d:17:63:00:73:54:d6:fc:7f:22:a4:1b:
34:c8:2d:29:10:10:d2:00:af:e6:1c:32:15:b3:69:58:cf:9a:
14:86:1b:ba:5b:88:ac:0b:40:31:e1:e2:8b:32:6d:e4:01:89:
23:9f:31:80:16:95:d5:c9:d1:e3:40:ac:89:3a:71:7b:2c:5a:
38:6b:41:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 24 09:55:39 2024 by rpki-client on console-fra.rpki-client.org