Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/015B789CCCA911EEA8CECE63775412E6.roa
File: 015B789CCCA911EEA8CECE63775412E6.roa (raw, json)
Hash identifier: vK+JfZupKJ4vP98YgH0qZvzz3WbfSzeDK6Q7+84sWOg=
Subject key identifier: 02:31:83:C1:67:9C:A4:FA:4C:1B:40:30:C7:FF:59:E2:6E:50:4E:F0
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 8A53
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/015B789CCCA911EEA8CECE63775412E6.roa
Signing time: Fri 16 Feb 2024 08:54:34 +0000
ROA not before: Fri 16 Feb 2024 08:54:30 +0000
ROA not after: Fri 26 Apr 2024 08:54:30 +0000
asID: 9009
IP address blocks: 154.216.198.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 35411 (0x8a53)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Feb 16 08:54:30 2024 GMT
Not After : Apr 26 08:54:30 2024 GMT
Subject: CN=65cf22ca-f49a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:2f:67:e4:94:72:b6:52:9e:09:44:e1:7a:51:
2b:10:9a:cb:4e:03:5b:62:e2:f1:7c:7d:8a:af:e2:
2d:ab:7d:5d:77:98:71:46:e7:d2:4e:9c:85:8a:3b:
bd:03:cc:61:08:e7:42:c3:37:0f:8b:bb:07:17:3d:
c6:a4:54:ee:99:89:f8:32:de:3a:f1:a8:06:d5:89:
d4:7e:81:0e:94:11:aa:25:47:16:f6:2c:d4:fa:ef:
7c:d6:27:63:71:54:98:28:b8:a4:5d:40:df:1b:df:
6b:61:91:c5:48:51:f5:bc:f7:ee:60:11:34:98:30:
7f:a2:a0:95:2e:89:df:dc:99:c9:6f:f4:74:31:c7:
37:cf:f3:3b:4b:4d:ad:ae:3e:20:08:90:79:72:21:
d8:ea:10:49:75:04:d5:e7:7e:47:e6:1d:8f:bf:54:
2a:60:ce:ac:df:f8:ed:f9:bd:48:bb:e4:e8:23:3b:
14:ba:ba:e9:59:06:e5:ee:61:34:62:0e:9b:8d:48:
3d:d4:a1:dd:4b:34:27:e3:a4:40:d4:f6:f2:4c:ca:
5e:cd:49:6d:72:b9:20:e7:94:40:67:c5:8b:b4:4a:
f2:ac:20:6c:8a:2b:04:1b:e1:f6:ce:86:4b:8e:be:
d8:36:fd:a2:07:8a:fa:f3:2e:0d:f4:21:63:63:8c:
bf:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:31:83:C1:67:9C:A4:FA:4C:1B:40:30:C7:FF:59:E2:6E:50:4E:F0
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/015B789CCCA911EEA8CECE63775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.216.198.0/24
Signature Algorithm: sha256WithRSAEncryption
c8:41:7d:d1:c5:d3:e2:5e:53:21:37:51:aa:8a:4a:71:56:4b:
2f:e6:ba:a8:bd:02:c6:53:3c:3b:3e:e4:35:c0:d7:2d:d1:64:
fb:44:e3:b7:01:74:80:a1:ec:00:99:52:45:cb:32:17:14:eb:
df:70:a3:55:2e:4d:2f:e8:c7:55:36:bf:b4:b4:cc:1a:e1:a8:
24:e0:34:9f:70:5a:cb:15:e9:70:b9:a0:b9:2d:65:2a:a9:48:
23:b2:62:5f:1a:ab:22:82:62:07:c7:38:31:95:59:fa:e6:3e:
63:cf:09:30:4e:5d:49:0b:40:87:b4:51:ef:b5:1f:4e:98:a9:
2f:65:ac:9a:29:18:6e:e3:d4:05:f5:49:b7:9f:de:3a:1a:45:
65:5b:34:19:78:ee:d3:0b:e0:5c:d8:05:41:9c:55:e4:0c:6e:
8f:bd:7e:45:e9:bf:e1:14:b6:b0:38:c6:88:68:2c:00:f9:2f:
44:46:54:31:1d:9f:8a:83:32:70:b6:83:a1:08:60:e5:11:35:
da:03:6f:98:bf:f5:3e:06:e8:cd:f8:8e:ec:93:1d:23:62:68:
9c:fe:fd:af:59:94:a0:e8:d2:ad:62:05:32:6c:86:bb:a0:8f:
75:60:b5:0c:34:bb:6c:20:0b:ac:b3:dd:eb:83:ef:22:9a:84:
81:eb:44:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 26 11:01:27 2024 by rpki-client on console-ams.rpki-client.org