Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/CD7B94900EAB11EFB194B6F6007001B1.roa
File: CD7B94900EAB11EFB194B6F6007001B1.roa (raw, json)
Hash identifier: B/XY/YdJNsbcwnuoB7GfHtqCX5fH0EiwJgPAKH/Mlls=
Subject key identifier: 60:0F:4E:DE:B8:A7:2D:CF:C7:CE:A6:B8:95:4A:EC:67:99:CA:DF:51
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: B682
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/CD7B94900EAB11EFB194B6F6007001B1.roa
Signing time: Fri 10 May 2024 09:00:52 +0000
ROA not before: Fri 10 May 2024 09:00:49 +0000
ROA not after: Mon 20 May 2024 09:00:49 +0000
asID: 142062
IP address blocks: 154.206.219.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 46722 (0xb682)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 10 09:00:49 2024 GMT
Not After : May 20 09:00:49 2024 GMT
Subject: CN=663de244-97d4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:b8:cd:f3:fb:c8:a2:0d:a5:7a:59:8e:2e:d3:
a0:cd:8d:66:9b:69:66:13:06:d6:44:fa:79:49:0f:
f9:4a:ff:e2:88:31:46:a4:2c:8f:2e:61:76:bc:3e:
dc:7e:d4:3b:8f:e9:65:1d:06:e5:d6:fc:30:d2:19:
c0:b8:6a:3c:bc:70:75:ca:34:56:58:ac:5f:0e:2c:
ba:f2:0d:b1:c7:eb:35:8f:15:12:a1:5c:38:75:53:
6f:d4:1f:1d:3c:0a:63:78:d5:e4:08:6d:e2:29:5c:
68:00:69:43:79:4a:ce:bf:8d:6a:35:0f:bc:6e:48:
a7:91:ea:0d:57:db:b4:89:21:0e:4c:77:c7:31:bd:
a9:7c:28:81:5b:9d:8f:1d:b9:de:93:f4:40:3d:81:
72:40:3f:d5:b7:47:eb:51:cb:64:f6:79:ad:6e:25:
7e:23:5a:4d:f1:5e:32:b1:cf:33:8f:e7:d5:d3:5b:
07:bb:60:24:2f:d8:a4:b0:a1:32:c0:58:ae:13:c1:
33:5b:0d:90:ae:e5:18:0d:53:f2:cd:94:7b:89:17:
88:51:3a:59:1e:e3:4f:64:07:2c:12:2a:d9:32:ab:
bb:10:69:1b:c0:f8:f6:56:75:59:f7:fc:35:8b:61:
1b:02:5d:8c:35:d8:2a:e5:dd:d3:ef:af:2a:ce:ad:
80:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:0F:4E:DE:B8:A7:2D:CF:C7:CE:A6:B8:95:4A:EC:67:99:CA:DF:51
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/CD7B94900EAB11EFB194B6F6007001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.206.219.0/24
Signature Algorithm: sha256WithRSAEncryption
25:60:47:ca:f0:fc:b7:5e:89:d8:28:13:b9:97:9d:f5:58:ef:
a1:03:ec:91:3f:43:95:8a:4d:b5:ba:2b:7b:0e:b5:06:15:e6:
31:f6:3a:85:8c:42:02:7d:6d:0a:9c:9f:0a:0b:64:7d:44:f1:
5c:18:99:87:24:9a:1d:36:b3:2c:e8:c9:a3:1d:45:82:49:5e:
f1:94:62:7d:4c:90:f4:a4:dd:71:2c:e7:cf:a9:4f:ed:fd:db:
bc:9a:57:a2:9f:49:62:48:ad:86:ae:ed:6e:a8:fd:32:e9:45:
13:1f:07:25:a4:66:4a:b3:05:a1:80:95:60:ac:3a:0b:8d:99:
d0:20:5b:ac:5f:ae:88:9d:24:ed:dd:48:14:2c:2a:f8:c6:93:
71:12:ca:b1:11:67:be:6d:54:5e:d5:ce:9c:05:5b:fb:b6:79:
44:f3:6e:60:e8:d3:0a:8b:7f:d0:9a:61:0b:5f:90:13:78:e5:
82:8b:ba:29:be:5a:5a:53:d9:d0:60:39:ee:6a:f2:c4:56:cd:
cb:56:dd:77:2a:39:5d:c7:3b:68:da:f6:ed:93:a6:f9:b0:5c:
ff:9c:a9:18:2b:04:e1:8c:ec:0a:2c:fa:62:07:fc:02:45:8e:
1c:7c:a5:32:2c:91:3a:6b:9d:04:f5:8d:49:14:a9:41:d6:99:
02:5f:c9:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:49:04 2024 by rpki-client on console-fra.rpki-client.org