Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E69F4F80FBA411EEAB5ADB66017001B1.roa
File: E69F4F80FBA411EEAB5ADB66017001B1.roa (raw, json)
Hash identifier: td0ql2EYGm96jkKIT9bwJ7vHJeU0wM+CMIEfHHAVpEQ=
Subject key identifier: B0:E2:59:AD:CA:E5:4E:60:B9:86:D0:A5:07:3B:E6:AE:FE:CC:9B:A2
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: AD6B
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E69F4F80FBA411EEAB5ADB66017001B1.roa
Signing time: Tue 16 Apr 2024 03:53:36 +0000
ROA not before: Tue 16 Apr 2024 03:53:32 +0000
ROA not after: Wed 24 Apr 2024 03:53:32 +0000
asID: 142062
IP address blocks: 154.206.210.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 44395 (0xad6b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 16 03:53:32 2024 GMT
Not After : Apr 24 03:53:32 2024 GMT
Subject: CN=661df640-c335
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:e3:fa:41:f1:90:a9:5d:57:b7:ed:3f:1e:24:
7f:79:e8:e4:8b:d4:06:0a:c6:85:3a:db:3c:4a:e1:
6d:85:f0:11:08:4e:0b:58:3d:f8:98:66:bf:e3:d2:
e3:be:8a:e4:6c:ac:69:cf:4f:6c:4f:b8:08:b2:19:
25:aa:48:b2:3f:4a:b1:b1:fe:63:cf:63:6d:4e:7b:
e8:b4:64:7a:cc:79:6a:01:80:7d:4f:41:9a:86:38:
b6:8e:90:a9:3b:9f:be:50:30:02:8a:24:a6:1c:83:
88:7c:97:21:cc:37:75:ea:8f:6e:26:e7:42:8d:a8:
f7:1f:b7:ab:91:e7:f9:5c:43:b9:c2:33:26:eb:9a:
8c:d6:c0:0a:31:1e:bf:74:9a:64:b5:80:4f:97:b5:
d5:52:47:bb:a6:d8:e0:aa:e0:28:0e:05:07:32:aa:
97:46:75:d2:64:2f:df:26:9e:d7:bc:53:98:ca:52:
0f:b3:ca:e4:00:84:87:8c:a5:fe:3c:f2:38:b7:fa:
c0:a1:63:42:37:56:25:a8:64:86:2a:91:a3:a9:92:
0e:e2:9f:7c:3b:ce:1b:88:20:36:18:05:bb:af:bf:
fb:78:df:51:0f:50:e3:6f:ef:36:45:9a:ea:ba:a9:
da:86:b0:7f:5e:68:a2:bc:46:87:35:c2:7e:9e:42:
e2:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:E2:59:AD:CA:E5:4E:60:B9:86:D0:A5:07:3B:E6:AE:FE:CC:9B:A2
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E69F4F80FBA411EEAB5ADB66017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.206.210.0/24
Signature Algorithm: sha256WithRSAEncryption
c2:9a:09:13:8b:7f:9f:e6:92:59:b0:14:b5:ef:37:8a:b8:41:
c5:91:aa:de:f4:e8:42:43:ba:87:c2:6b:4f:74:e5:13:e6:21:
e3:af:a1:55:3a:58:e5:67:f5:c6:68:da:37:79:4d:2b:0c:5b:
e7:00:44:b8:5a:72:e3:66:86:c4:20:ee:15:c6:4b:08:67:7f:
e3:7f:f0:cc:15:93:11:29:05:bd:f0:ac:83:f1:e5:0c:fc:68:
9c:66:2b:77:75:10:97:8e:61:de:41:13:7e:b2:b1:24:31:dc:
25:a6:7b:a2:15:f5:72:c8:06:b9:b5:de:8b:97:65:2f:58:8b:
dc:f8:97:3b:e3:f2:6f:58:ea:14:03:29:e2:cb:04:ae:44:a5:
a9:45:8b:58:a8:1e:a6:6e:1e:e7:64:30:e3:5c:6e:c5:f8:d5:
cf:79:ce:2e:7e:6d:a8:8b:6b:c6:b1:a0:d9:ec:91:4e:c8:92:
ef:d4:12:f1:15:b7:02:cc:69:79:c6:7f:46:03:a3:74:e8:ef:
32:8b:11:d1:81:d8:50:7f:cf:2a:d6:44:cc:b1:8a:95:8b:36:
50:3f:43:0d:de:10:34:ef:2f:b8:de:6d:43:d6:14:89:53:05:
f9:e9:d7:c9:31:bc:9a:ed:2a:e2:cd:b6:ab:21:41:cb:9d:f5:
d4:df:24:87
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 24 12:34:44 2024 by rpki-client on console-ams.rpki-client.org