Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E98911EEFAD811EEA28C5361017001B1.roa
File: E98911EEFAD811EEA28C5361017001B1.roa (raw, json)
Hash identifier: NiY5SSOQtx3WPvn1JAd+opdwGuuiuk+yVKaAMd7W/gQ=
Subject key identifier: 01:DD:92:72:D0:DC:71:61:68:E9:BF:F0:6F:60:6C:41:FE:6A:9B:86
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: ABFD
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E98911EEFAD811EEA28C5361017001B1.roa
Signing time: Mon 15 Apr 2024 03:33:23 +0000
ROA not before: Mon 15 Apr 2024 03:33:20 +0000
ROA not after: Wed 24 Apr 2024 03:33:20 +0000
asID: 142062
IP address blocks: 154.206.204.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 44029 (0xabfd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 15 03:33:20 2024 GMT
Not After : Apr 24 03:33:20 2024 GMT
Subject: CN=661ca003-d1b5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:ff:5c:08:79:4b:6e:81:28:02:ab:17:32:c6:
9b:f2:e9:c9:bf:73:26:cd:47:41:68:fc:11:71:2f:
1f:6d:5d:b4:9c:96:75:78:5a:65:38:f5:70:e3:ad:
f9:56:86:0f:9e:df:a1:e6:03:5b:1b:b2:9c:81:bd:
45:77:a1:8e:9e:7e:41:93:b1:96:c2:00:3c:bd:9e:
34:69:ce:5c:c8:b1:cd:93:d7:7f:c5:78:a3:67:09:
33:99:75:ba:84:01:08:c1:cf:e1:5a:3f:2e:a2:87:
05:7e:7d:4c:10:03:f4:1c:0b:d0:20:0c:57:34:30:
30:fc:03:6f:af:ea:a5:0f:ea:23:a4:51:bc:d8:ab:
8c:7b:aa:e8:ff:3e:a8:fc:98:5b:39:d3:e1:90:a2:
cf:59:67:c4:8c:3c:73:64:c0:f3:b5:af:86:c9:ae:
93:6e:77:10:9f:7c:a0:da:07:89:0b:13:71:40:4c:
60:9d:df:cb:9f:8d:ad:cd:ea:c9:d1:d3:46:22:64:
f9:1a:1e:cc:ac:eb:56:30:bd:98:8b:61:e9:c9:b1:
96:60:7d:75:96:1b:b7:20:c2:35:76:9f:b2:a4:8e:
9c:98:14:51:d3:29:9e:a3:6e:b7:9c:d4:29:9b:8f:
17:4e:c9:52:d0:e2:18:7d:84:74:6b:d4:cd:9e:dc:
49:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:DD:92:72:D0:DC:71:61:68:E9:BF:F0:6F:60:6C:41:FE:6A:9B:86
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E98911EEFAD811EEA28C5361017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.206.204.0/24
Signature Algorithm: sha256WithRSAEncryption
5e:c1:96:49:b6:95:aa:ab:45:69:d9:b3:7a:b6:11:7d:51:6c:
d1:9a:a4:cc:c6:df:68:f0:56:94:23:23:47:b4:81:49:74:3a:
bc:dc:65:10:ef:a4:a1:fb:8b:87:b7:3f:da:bd:fa:e7:11:aa:
b0:f2:96:c2:f8:88:ea:c9:d0:6c:46:d0:ae:90:1c:08:7f:cd:
e9:37:82:61:aa:59:67:21:96:8c:84:1f:6e:d2:04:ac:f5:9e:
37:f2:9f:49:dc:80:28:80:42:cb:62:1b:d8:b6:9a:a0:0f:5f:
2b:b6:b2:9d:88:fb:2a:2b:28:ea:60:8f:85:6a:b0:f3:82:e9:
e8:4a:c8:77:f6:4e:28:4a:e9:65:9a:5d:93:7a:3d:c9:d3:1f:
2b:e9:d7:d6:a3:8f:6b:2c:41:72:72:8f:d3:f7:1f:96:3a:e2:
0a:74:72:01:01:80:b2:ea:b4:a6:fc:d1:25:51:ef:b4:38:94:
75:89:13:3f:37:cc:82:b3:00:58:26:a0:7c:34:c8:10:38:5b:
94:be:72:a0:65:47:6e:90:0b:c9:a7:73:93:39:85:fe:97:9f:
7d:b0:35:67:ab:75:91:c6:47:a2:d7:cf:76:dc:e7:1d:32:5a:
b7:88:c8:cb:4e:cb:22:28:33:8a:3f:6f:cf:15:a5:fd:9e:5f:
42:68:37:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 24 09:55:39 2024 by rpki-client on console-fra.rpki-client.org