Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0500678ECCAC11EE90CE9068775412E6.roa
File: 0500678ECCAC11EE90CE9068775412E6.roa (raw, json)
Hash identifier: NAUxFNwOctOpnIF3S1fgzJaOWEYNpviHIpJEJL10sas=
Subject key identifier: 6B:3D:6C:48:66:5B:B0:72:46:74:1E:30:D9:AA:EE:B3:81:05:18:A9
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 8A6D
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0500678ECCAC11EE90CE9068775412E6.roa
Signing time: Fri 16 Feb 2024 09:16:09 +0000
ROA not before: Fri 16 Feb 2024 09:16:05 +0000
ROA not after: Fri 26 Apr 2024 09:16:05 +0000
asID: 9009
IP address blocks: 154.218.217.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 35437 (0x8a6d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Feb 16 09:16:05 2024 GMT
Not After : Apr 26 09:16:05 2024 GMT
Subject: CN=65cf27d8-def2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:29:47:10:35:cf:1c:2f:4b:6a:3f:9b:5f:61:
33:36:e2:1e:1e:dc:4e:f4:8f:c8:15:64:f8:a8:65:
e2:28:b1:7c:6b:2e:32:e9:f0:fc:3a:6a:fe:29:cc:
dc:59:7a:e5:2b:b1:bd:5f:7f:06:b9:25:1e:e2:5c:
46:4e:5e:9a:f3:f6:78:79:92:a5:dd:94:e4:67:60:
ce:34:e8:72:69:eb:ef:8f:9e:9d:23:5e:1d:ec:ac:
94:f4:be:75:73:a9:fc:3e:83:a1:73:52:54:7b:87:
31:27:66:62:8d:85:a8:14:33:11:59:f9:ee:14:ef:
d3:44:42:a7:c8:f9:2e:c6:2a:31:d8:4b:d6:60:2e:
e8:41:fb:62:b3:cc:a9:b2:dc:13:0e:4a:f3:96:e6:
11:d4:40:be:c7:8e:a1:79:6d:58:83:51:d6:4e:81:
09:87:e2:93:de:fa:1b:ee:13:6e:3e:36:a3:2a:93:
40:54:ab:d8:34:c3:21:6b:b4:f9:86:b4:3c:24:eb:
76:eb:d9:d1:50:d4:b6:ab:59:9c:89:60:14:1a:13:
78:d9:19:c7:5f:35:2c:da:a0:d9:45:44:1e:1e:ae:
7e:29:0c:63:d3:81:46:62:67:e6:c5:75:70:d1:e0:
54:db:15:22:cd:74:9d:c2:56:29:b0:40:29:08:98:
91:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:3D:6C:48:66:5B:B0:72:46:74:1E:30:D9:AA:EE:B3:81:05:18:A9
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0500678ECCAC11EE90CE9068775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.218.217.0/24
Signature Algorithm: sha256WithRSAEncryption
be:68:de:59:5e:a8:c3:56:a0:16:f2:e4:3e:8b:fe:35:35:68:
58:90:d7:d5:c2:df:36:c2:2c:4b:3f:ef:a4:12:aa:ae:6f:2e:
d9:06:c4:bc:bf:dd:a9:20:cf:2d:b6:ff:b1:b7:e6:e3:be:3b:
66:35:b0:c7:b3:00:e2:62:eb:d5:5f:1a:07:47:dc:28:3a:60:
81:90:35:f5:64:bd:83:f0:d4:1b:25:9b:81:16:44:1e:02:2c:
91:0f:85:4f:bb:e0:c3:6b:1f:64:df:87:ec:23:8f:8f:91:4c:
63:b1:7f:a8:0b:8c:64:d0:54:b6:1d:73:0d:34:b7:95:ad:ac:
e6:78:62:2f:08:ec:d6:b8:39:0d:7c:9c:2b:0a:c4:d3:f3:a0:
49:79:6f:6a:5f:72:7a:10:aa:2e:68:6e:a9:ce:b4:44:39:91:
1b:7f:34:e9:f9:11:b4:ee:0a:9a:f4:bd:28:0d:ce:b4:65:a0:
a8:e2:aa:20:83:3b:80:c5:0d:91:62:b5:af:66:67:f8:b2:61:
58:c6:16:81:36:e6:83:8c:31:86:20:0d:cd:cc:42:26:b1:74:
08:b8:9a:98:65:1a:da:1b:09:2d:27:47:2b:e8:40:c0:d7:a1:
46:f5:2a:c8:0c:15:a7:30:00:c8:b5:79:26:2b:4e:72:3a:68:
6e:11:fa:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 26 11:01:27 2024 by rpki-client on console-ams.rpki-client.org