Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/FB64B6FAFBA711EEA7BE0E01017001B1.roa
File: FB64B6FAFBA711EEA7BE0E01017001B1.roa (raw, json)
Hash identifier: lvfx+/7CMbIWDhp3VP3FKZCwHjdSAmtG/YQnnLtxGEU=
Subject key identifier: D4:0C:76:DE:C3:9A:5B:4F:A0:EE:47:42:43:61:51:18:D5:07:66:43
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: AD8D
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/FB64B6FAFBA711EEA7BE0E01017001B1.roa
Signing time: Tue 16 Apr 2024 04:15:39 +0000
ROA not before: Tue 16 Apr 2024 04:15:36 +0000
ROA not after: Wed 24 Apr 2024 04:15:36 +0000
asID: 142062
IP address blocks: 154.206.227.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 44429 (0xad8d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 16 04:15:36 2024 GMT
Not After : Apr 24 04:15:36 2024 GMT
Subject: CN=661dfb6b-1e6c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:6f:5c:57:d2:e5:00:15:51:73:ec:a9:c6:3e:
e0:56:6f:de:13:b9:a1:35:98:0a:c8:dc:2c:d7:0e:
95:3f:23:9f:21:f9:e3:46:3d:f3:8b:b9:fa:cc:32:
93:cd:0d:a3:52:b0:99:8c:fe:1f:42:c3:28:41:f2:
4b:25:7a:b2:d2:4e:54:8e:16:7b:7b:92:00:14:38:
a7:e7:98:87:64:16:db:ff:76:f8:4c:c5:ec:20:c3:
3c:38:0f:bf:d2:d7:f8:21:52:94:cf:a2:83:f6:24:
4c:31:65:c1:0a:3d:8f:fd:7a:58:72:d1:eb:5b:6c:
66:e2:94:cd:86:c6:12:59:e5:8b:c8:08:78:bd:43:
3b:a7:03:a0:17:75:05:50:c9:b9:e8:f1:a5:e6:5c:
eb:5b:b9:46:c1:c3:75:b4:a9:1c:13:82:3b:98:64:
09:2c:1a:27:17:31:eb:c2:d2:b2:47:8c:f3:86:82:
eb:18:e2:ca:df:d9:31:a3:ca:11:e3:96:63:7b:16:
18:86:2b:a0:43:20:04:27:c3:fb:07:d1:5d:a3:94:
54:e8:7a:dc:9c:ed:ab:ac:33:92:60:62:2b:51:36:
f9:e3:07:37:f1:67:4c:76:9c:d2:e8:03:e5:4d:ef:
b2:07:38:c7:22:aa:fb:0c:0c:51:0b:f8:80:38:29:
fd:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:0C:76:DE:C3:9A:5B:4F:A0:EE:47:42:43:61:51:18:D5:07:66:43
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/FB64B6FAFBA711EEA7BE0E01017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.206.227.0/24
Signature Algorithm: sha256WithRSAEncryption
09:9f:cd:72:7f:d4:22:7d:32:aa:55:f0:23:ae:28:b9:bc:09:
5e:61:14:1a:0c:08:1b:cc:d3:c4:38:4f:e1:ed:24:15:e8:15:
c4:24:33:0a:58:fb:6d:64:7e:c3:13:68:85:c1:5b:51:df:f4:
4d:cd:ef:cd:47:a0:00:93:52:f7:a1:f9:f6:73:05:be:9b:97:
dc:44:c8:8c:20:ad:23:62:90:59:dd:6e:82:b0:a7:01:f5:6c:
dd:40:80:07:67:c5:cd:09:3b:1c:20:f5:5e:1b:4b:54:f6:ab:
44:ae:7d:b5:3b:46:43:97:9c:08:fc:15:7d:75:90:96:e5:a8:
d8:69:9f:c8:6d:23:5d:e7:40:ee:59:00:49:e5:2f:72:d8:86:
fe:f1:12:75:82:85:84:b5:df:3d:a5:82:aa:fd:66:83:92:63:
87:5f:df:17:88:3e:84:ce:43:2f:c0:b7:2e:7a:0b:e5:13:24:
24:57:bc:62:07:b9:70:6b:a3:3a:a1:2a:45:b3:cd:61:8a:9f:
02:d6:17:32:7e:18:ce:96:b8:6a:eb:48:7a:88:45:5c:c3:3c:
31:b2:04:d3:53:e1:d5:12:24:2b:6d:5b:fc:4e:03:a1:5a:48:
e7:8a:c8:03:c8:85:af:73:f2:25:34:a2:37:2b:ba:ca:e9:59:
aa:99:ba:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 24 12:34:44 2024 by rpki-client on console-ams.rpki-client.org