Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F5145FDC0EB011EFA7007122017001B1.roa
File: F5145FDC0EB011EFA7007122017001B1.roa (raw, json)
Hash identifier: o+bCCmnDX5FaW/+hL4dz79f7DKFsun3qwcJGJTj7OHY=
Subject key identifier: A3:35:73:F9:CB:90:07:CF:66:22:C5:4E:9E:A2:71:C1:55:62:03:88
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: B6BA
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F5145FDC0EB011EFA7007122017001B1.roa
Signing time: Fri 10 May 2024 09:37:46 +0000
ROA not before: Fri 10 May 2024 09:37:43 +0000
ROA not after: Mon 20 May 2024 09:37:43 +0000
asID: 142062
IP address blocks: 154.206.192.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 46778 (0xb6ba)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 10 09:37:43 2024 GMT
Not After : May 20 09:37:43 2024 GMT
Subject: CN=663deaea-101e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:41:74:6e:6e:27:d2:59:16:61:61:f2:da:86:
a0:3c:ae:eb:a7:3c:c5:0b:c1:62:77:b9:b6:36:99:
64:20:6b:1f:74:21:44:9a:4e:90:e9:ea:4a:5d:bc:
64:69:50:62:a9:85:86:ca:69:9c:9a:93:a7:57:d8:
54:59:d4:7e:8c:34:a2:c1:b2:1f:ee:b0:91:47:a7:
22:f3:a3:42:d1:b7:74:82:9d:5f:b0:a6:45:d1:bb:
20:70:b0:72:d2:53:04:a9:04:88:30:38:ac:89:7f:
36:fc:09:22:62:4b:ab:47:50:7e:81:6c:f4:b8:f8:
78:81:43:2e:e2:1d:1a:c5:d1:35:4b:07:ae:d2:71:
57:d9:23:c1:10:ef:4a:4b:a7:ad:a4:66:a4:18:ee:
89:f0:e9:58:0f:72:c2:ab:b8:df:ec:ef:aa:26:f5:
ff:38:c8:39:17:f3:09:16:56:e2:2b:51:24:9a:99:
70:68:a6:5b:c6:b4:09:76:64:bb:9b:ae:db:d8:05:
57:27:8e:5b:42:f1:93:4e:e1:34:41:8d:de:e3:a7:
db:4f:31:98:76:0f:62:0d:ac:16:f3:85:dc:72:c5:
72:54:27:90:c7:ed:dd:b8:c2:4b:1d:3c:dc:57:a3:
f9:10:a1:c2:76:38:b3:78:1c:b2:cc:7f:70:af:75:
9a:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:35:73:F9:CB:90:07:CF:66:22:C5:4E:9E:A2:71:C1:55:62:03:88
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F5145FDC0EB011EFA7007122017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.206.192.0/24
Signature Algorithm: sha256WithRSAEncryption
52:a2:86:fd:5e:f9:6d:cb:f5:57:cf:86:53:d3:a6:20:40:b8:
38:eb:b4:e5:7c:18:45:bc:b1:8f:62:a8:75:e2:1b:6b:5e:ac:
b8:5a:4a:d9:ec:46:88:d8:81:93:84:63:5a:0d:99:70:5b:e0:
35:a3:ff:d4:0b:73:b7:95:6c:c3:d3:2b:ea:23:e5:1d:64:ac:
27:20:e8:e4:d4:ef:d5:ba:8c:cd:ac:df:e8:99:dc:d9:20:ca:
d3:24:e8:98:eb:17:9c:11:0e:5b:99:5b:b4:12:7e:b7:b5:bd:
36:1c:b5:29:d0:fe:83:ad:2d:09:25:6b:12:6d:1e:d2:bd:25:
0a:d5:d1:62:51:28:b3:37:1d:f6:96:cb:85:24:f5:f2:b7:b6:
2b:17:f2:16:10:5e:c7:17:f4:07:b4:06:cf:8f:6b:d6:88:5d:
27:a6:c5:44:c7:fa:cc:59:16:70:3f:e5:7a:48:79:65:1b:16:
55:2f:a1:8e:ee:bf:0d:af:04:d0:7b:e8:0b:03:2a:8e:82:c1:
04:c6:33:a8:73:a2:c7:ec:3d:18:8c:e4:fa:60:ff:91:bd:c6:
12:0c:4e:c2:8e:53:ae:ab:91:23:ec:07:46:20:87:5c:3f:c3:
c4:73:fe:b8:c5:53:90:4a:68:e8:32:eb:6f:4e:54:43:f0:85:
02:99:0f:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:49:22 2024 by rpki-client on console-fra.rpki-client.org