Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E1879DDAFAE211EE85FBD134017001B1.roa
File: E1879DDAFAE211EE85FBD134017001B1.roa (raw, json)
Hash identifier: dlucerUH/zgEZP6aoqLT2yOH+C/3k5d43agpdHYxNak=
Subject key identifier: 2D:B2:7F:39:77:5B:90:23:1B:D7:10:9F:EF:7D:4B:A2:6F:43:E2:75
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: AC56
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E1879DDAFAE211EE85FBD134017001B1.roa
Signing time: Mon 15 Apr 2024 04:44:45 +0000
ROA not before: Mon 15 Apr 2024 04:44:41 +0000
ROA not after: Wed 24 Apr 2024 04:44:41 +0000
asID: 142062
IP address blocks: 154.206.231.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 44118 (0xac56)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 15 04:44:41 2024 GMT
Not After : Apr 24 04:44:41 2024 GMT
Subject: CN=661cb0bd-8b17
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:3d:9c:c6:42:d7:c2:90:2a:00:82:6f:6b:5a:
cc:f8:96:0e:3c:11:08:58:3c:c4:e0:f3:21:34:2c:
18:2a:70:59:6f:33:fc:85:4f:90:7d:33:cd:b0:e8:
95:8f:11:13:15:5a:67:d6:e8:d3:88:d2:2d:4a:c8:
aa:af:ae:42:fb:e8:f9:f5:b7:57:f6:7a:ce:24:6b:
18:30:b7:24:ec:8d:2a:04:ce:3b:c7:59:2b:28:42:
9d:e5:3a:6c:93:08:9e:f1:9a:d0:5c:3e:dd:09:c8:
ea:a0:8d:bf:fd:fb:bf:88:fd:46:72:1b:ad:5d:66:
4c:07:bb:ec:f1:4c:00:e5:ba:5b:47:a6:9c:b1:c5:
82:67:18:16:40:57:95:ea:fb:ab:f9:dc:20:62:66:
d6:d3:62:5b:c1:44:af:35:2b:04:b5:92:a6:63:f8:
7f:14:a0:41:63:d4:55:4d:bc:10:c8:ab:25:90:f6:
d1:e6:3f:54:32:86:86:5f:39:85:2c:98:8c:2b:1e:
45:d1:e2:0d:8d:02:c2:4b:67:96:56:a1:5d:fd:7d:
4a:6f:28:25:50:d1:e4:eb:fc:f1:ba:c0:b5:71:7a:
f4:d7:e9:85:19:e1:43:50:5c:2f:f2:1d:2a:66:aa:
ed:96:f7:78:ed:45:7c:09:43:d9:da:e9:96:88:17:
4b:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:B2:7F:39:77:5B:90:23:1B:D7:10:9F:EF:7D:4B:A2:6F:43:E2:75
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E1879DDAFAE211EE85FBD134017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.206.231.0/24
Signature Algorithm: sha256WithRSAEncryption
bf:c6:bf:a4:d9:d3:aa:5a:b2:38:e4:79:ac:76:f6:83:78:db:
02:fc:b2:36:30:bc:e8:ca:e2:3f:7f:65:0b:5f:76:ed:d5:b3:
e6:3b:04:4a:dc:1e:64:30:e7:0a:2c:43:59:67:c8:b4:f8:d2:
e8:ff:c0:7b:5a:b1:f9:91:cf:08:17:ad:f7:7f:ab:7a:90:67:
5e:d9:d7:0c:1e:4c:44:6d:93:30:c8:d5:e8:b3:40:b9:4f:da:
fc:c6:c0:de:ec:52:2b:9c:34:a2:18:fe:f3:7b:33:7f:09:c3:
c7:57:1a:bc:9f:6a:2f:2b:c7:34:27:fb:5c:7b:c9:14:50:f7:
9e:fd:9b:b9:43:f3:54:4c:e6:57:6e:61:92:e6:cd:91:68:3e:
ca:24:cc:59:3e:56:28:91:61:b2:ce:fb:9f:5a:95:64:b2:76:
bc:e5:8f:4a:d0:9c:5a:d5:77:55:62:ff:1c:3e:4c:41:18:ae:
e5:50:a5:17:78:e1:a1:3f:b4:6d:f0:74:95:83:7d:e6:74:2d:
06:6c:7f:8c:84:ef:cf:0e:27:4e:a0:a1:fe:6a:fa:9c:38:9b:
d2:85:d9:d2:e0:2d:d2:d8:04:dc:e7:74:86:91:ff:7e:84:7b:
ae:92:89:e3:72:3a:54:b3:eb:3e:34:54:6d:15:49:8d:1f:50:
f4:d1:51:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 24 12:34:44 2024 by rpki-client on console-ams.rpki-client.org