Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B80457A0FAE211EEB91F6434017001B1.roa
File: B80457A0FAE211EEB91F6434017001B1.roa (raw, json)
Hash identifier: GeLgDRiPV0hX3JBizZNODm1XAQ71/GAsG0fLp4aRFls=
Subject key identifier: 70:1E:81:72:3C:BC:A8:25:AF:2A:08:09:2A:69:DF:00:C2:33:BE:F8
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: AC54
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B80457A0FAE211EEB91F6434017001B1.roa
Signing time: Mon 15 Apr 2024 04:43:35 +0000
ROA not before: Mon 15 Apr 2024 04:43:32 +0000
ROA not after: Wed 24 Apr 2024 04:43:32 +0000
asID: 142062
IP address blocks: 154.206.230.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 44116 (0xac54)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 15 04:43:32 2024 GMT
Not After : Apr 24 04:43:32 2024 GMT
Subject: CN=661cb077-243f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:22:22:3f:73:c2:27:89:77:c5:3b:fc:5e:64:
1e:ca:85:cd:c5:17:07:c0:d2:94:da:30:d0:83:75:
c0:47:a1:7e:b1:73:d2:b9:74:21:24:9c:14:e4:2c:
86:67:78:f7:00:53:42:8a:b9:b1:f4:3f:90:8d:dd:
ac:60:f3:f3:31:d5:35:7b:de:91:85:41:65:b7:e8:
42:30:05:54:83:6f:c0:00:af:16:af:80:59:f1:50:
15:ae:47:21:10:66:aa:7a:4d:e8:6c:aa:ae:d6:cd:
f3:7c:24:6e:a8:1f:cf:71:3a:37:83:bf:ef:6b:ff:
9d:27:61:e7:6b:7b:29:de:66:c0:0e:2c:89:bc:99:
62:39:f2:ec:7f:d6:f4:7d:44:9e:2e:98:ba:32:d9:
9d:9b:26:89:cd:47:84:77:6d:fc:3f:81:01:20:18:
e7:f0:aa:17:7a:11:44:ae:44:59:cb:9f:e0:90:25:
0f:cd:7a:05:63:8f:64:db:27:15:6c:4f:0b:73:1a:
b4:80:3f:da:3c:57:52:54:3e:78:86:b0:6f:93:1c:
7a:4a:2e:8e:68:4a:49:98:56:2e:a4:0a:d7:8e:5b:
67:66:5e:6f:c4:e1:fa:7a:d5:be:32:e7:43:8c:fd:
16:e1:96:59:6c:ba:41:f1:e2:9a:d0:13:cf:2e:52:
54:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:1E:81:72:3C:BC:A8:25:AF:2A:08:09:2A:69:DF:00:C2:33:BE:F8
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B80457A0FAE211EEB91F6434017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.206.230.0/24
Signature Algorithm: sha256WithRSAEncryption
05:39:fd:1e:92:f8:a8:74:d7:f6:b2:40:41:d2:f5:fd:43:32:
e3:10:43:c4:e1:dc:4a:8b:6b:1c:0e:32:1f:75:97:c1:81:f6:
d4:8e:b1:83:ce:15:d0:5d:17:18:2c:8d:0a:21:ac:4a:bf:9d:
16:45:e6:af:77:83:2e:55:5b:91:87:2c:f4:b0:44:e8:e8:a9:
3d:a1:a6:43:02:dc:2b:b5:eb:61:04:23:0e:26:5c:c6:b2:6f:
e1:14:be:5d:dc:ff:d6:7e:fd:f9:f1:b2:a6:0e:ed:14:9c:98:
3d:11:ae:e3:78:9e:1f:f8:c4:b8:d7:cd:46:65:2f:d6:1d:4f:
79:36:a5:2f:64:64:a6:ff:72:bd:d8:5e:bc:b0:61:91:3b:1e:
77:37:ef:0c:68:2b:5a:09:b4:dc:cb:80:97:b0:a9:1e:cf:51:
4c:8d:0c:65:a0:68:07:87:13:a9:f5:18:b1:23:d1:4f:8b:87:
49:b5:42:b9:a1:3d:7c:48:cd:f2:21:fb:e9:3c:ea:b8:a8:1d:
e8:7e:7f:c2:b0:94:67:ec:06:63:5e:37:5a:95:37:a9:4e:ba:
27:cf:1e:b3:46:a5:13:86:9f:1f:f8:86:3a:34:a6:e8:ca:16:
21:82:b1:b1:ba:04:7b:28:9e:af:05:cd:ff:cc:26:3c:24:65:
1e:85:4f:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 24 12:34:44 2024 by rpki-client on console-ams.rpki-client.org