Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/2209224ECCB611EEBA389778775412E6.roa
File: 2209224ECCB611EEBA389778775412E6.roa (raw, json)
Hash identifier: dW9UzuJs9xWhdGnunVr9mxrC/6D7fIPVcA/M21RsZRQ=
Subject key identifier: 73:E3:6D:33:A6:A3:13:B0:64:A0:56:31:0D:B2:73:BE:E1:3A:61:A1
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 8AC9
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/2209224ECCB611EEBA389778775412E6.roa
Signing time: Fri 16 Feb 2024 10:28:32 +0000
ROA not before: Fri 16 Feb 2024 10:28:29 +0000
ROA not after: Fri 26 Apr 2024 10:28:29 +0000
asID: 9009
IP address blocks: 154.218.242.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 35529 (0x8ac9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Feb 16 10:28:29 2024 GMT
Not After : Apr 26 10:28:29 2024 GMT
Subject: CN=65cf38d0-c830
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:68:c4:02:ea:52:84:80:c0:54:8c:7b:b9:7b:
28:71:6c:df:49:51:69:6d:42:75:d6:e5:d6:47:95:
d5:7e:fd:d0:c3:e9:b2:39:75:73:9c:e3:b4:73:10:
7a:33:12:74:8d:8c:7a:ce:79:95:18:04:9b:11:df:
ae:29:13:2e:8c:e1:88:b3:57:07:03:a3:24:51:2a:
9c:04:ed:23:35:9d:b8:75:e8:b4:c8:36:97:93:bf:
21:c3:5b:f8:6a:ea:07:ff:30:52:2c:eb:5a:39:fe:
fd:84:c4:b1:81:92:cf:10:df:e3:6c:a2:87:d2:85:
e2:e2:0f:7b:5b:07:69:de:e9:1b:4b:62:04:f8:ea:
e4:a9:75:c9:00:f3:61:24:96:4a:09:53:8a:13:d2:
a1:eb:cd:c2:12:57:b5:ba:b7:ea:49:dc:ac:52:3d:
0a:7a:31:c1:03:d2:a7:58:11:fc:99:a1:56:e0:c5:
1b:64:a3:59:5b:7c:43:a8:c7:d4:b4:40:92:d5:28:
ef:15:b1:4c:fc:58:69:a3:25:3c:8a:4f:15:65:d7:
e9:1b:29:7f:38:8a:e8:9d:9c:8b:ac:6f:e5:fc:2a:
5d:d2:32:40:f7:f0:b4:a1:4f:88:87:90:3d:55:d8:
58:da:b5:89:a3:2a:1e:41:0f:b6:d4:3f:42:42:22:
41:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:E3:6D:33:A6:A3:13:B0:64:A0:56:31:0D:B2:73:BE:E1:3A:61:A1
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/2209224ECCB611EEBA389778775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.218.242.0/24
Signature Algorithm: sha256WithRSAEncryption
ba:9f:64:29:3f:22:19:37:6f:8f:39:d2:6c:7b:46:a5:61:11:
1f:f9:c6:3d:fa:21:fd:e6:dd:74:bf:dc:fc:f0:80:19:a2:66:
db:ca:7d:ae:b0:68:71:0a:0a:32:df:18:14:5a:60:ca:08:c2:
7d:54:92:53:4b:6f:cb:d5:3e:91:4c:d4:e6:8f:1c:fa:d1:af:
ae:bc:9c:ea:a7:26:47:8a:0a:c2:72:7d:6b:67:40:b5:65:5c:
41:07:b2:1d:4a:b5:48:55:54:47:fc:ab:14:54:ef:db:35:e4:
cf:5f:48:a2:61:c6:bd:97:b4:3f:f7:c1:fc:3c:34:64:b4:24:
93:33:30:df:bb:b3:e8:70:3e:ce:1e:ac:06:e9:a5:81:b7:fb:
69:96:c7:93:f1:3a:80:ad:3c:22:b7:a8:9d:6a:42:2d:67:bc:
ad:7b:b7:4f:7f:e3:d6:3c:12:bc:b9:99:27:11:95:8b:c0:51:
d3:46:39:5d:d1:75:11:d8:65:d8:71:38:18:43:c0:29:27:3f:
08:47:2d:a9:17:22:2d:18:28:76:bd:80:ef:1c:2b:6b:42:75:
43:f0:6f:34:7d:f7:cf:6e:0f:9e:ab:26:62:d7:62:b6:b4:fd:
d6:32:47:9b:5f:87:fd:80:35:af:16:e4:29:83:38:3b:51:4f:
30:32:58:8a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 26 11:01:29 2024 by rpki-client on console-ams.rpki-client.org