Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/2368DE6006D411EF91A2BE11017001B1.roa
File: 2368DE6006D411EF91A2BE11017001B1.roa (raw, json)
Hash identifier: Y/HFBYxTr7bOCz0bAt9kNVEU6bJGp0IQMnmYYR8Z9bU=
Subject key identifier: 4F:CE:CE:CC:5D:29:17:FE:F1:30:A6:62:04:85:2E:F3:FC:7A:3F:5A
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: B2C7
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/2368DE6006D411EF91A2BE11017001B1.roa
Signing time: Tue 30 Apr 2024 09:29:27 +0000
ROA not before: Tue 30 Apr 2024 09:29:24 +0000
ROA not after: Fri 10 May 2024 09:29:24 +0000
asID: 137443
IP address blocks: 154.218.7.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 45767 (0xb2c7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 30 09:29:24 2024 GMT
Not After : May 10 09:29:24 2024 GMT
Subject: CN=6630b9f7-824c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:6c:73:33:48:1a:14:2b:64:ba:9f:20:89:f5:
27:d0:53:0e:da:8b:3a:0c:e7:4e:73:1d:3c:74:df:
ad:04:ec:8c:04:48:6d:2f:30:72:3f:79:9c:fa:5d:
52:f8:ef:a5:a5:67:be:38:59:c8:e4:b4:c7:c1:26:
99:e6:e0:66:1a:e9:e9:51:4c:09:8c:08:82:19:88:
fd:3e:90:af:c3:7a:0d:4e:e7:3c:56:08:f2:74:20:
f2:9c:f9:67:2e:62:e0:34:f5:75:9f:d3:2d:34:44:
bf:8c:68:d1:5b:05:57:6f:ae:7c:db:52:77:f0:1d:
1f:1e:46:45:d6:23:9d:98:b1:15:7a:40:8e:3e:a9:
25:cb:d8:c2:ce:04:83:49:e7:f7:0d:32:f3:92:79:
89:c4:53:41:6a:2e:56:66:b0:1b:c3:88:6c:52:56:
58:3c:32:1e:b3:1b:67:68:bf:2a:9f:bf:54:2c:af:
d1:48:ed:fc:7c:1d:2a:cb:86:54:8c:8c:0a:e1:ee:
cd:40:84:5b:b9:74:fc:16:a5:82:37:51:3b:9c:64:
89:b6:f2:f3:01:13:8b:ae:ad:da:0c:85:e0:70:3e:
15:6d:fc:62:26:df:9f:8b:11:0f:19:e8:bd:07:69:
78:68:d9:b8:89:30:fc:ed:c9:4f:38:b0:61:8f:d6:
3a:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:CE:CE:CC:5D:29:17:FE:F1:30:A6:62:04:85:2E:F3:FC:7A:3F:5A
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/2368DE6006D411EF91A2BE11017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.218.7.0/24
Signature Algorithm: sha256WithRSAEncryption
60:38:01:71:f9:fb:f7:c5:09:4d:e1:a6:bf:69:3a:04:c2:ad:
de:1b:6d:27:ad:20:4a:87:82:70:1a:f2:b6:20:0c:bd:5f:e1:
d2:10:72:49:d9:fb:5f:10:6f:e1:db:a7:0e:74:91:01:69:31:
a2:b5:f2:1c:59:ec:15:35:78:53:67:d9:b0:33:ee:b2:6f:67:
7b:e8:d2:14:dd:25:ad:f5:98:31:f7:18:e9:26:17:48:7c:8e:
a7:71:63:2d:0a:89:69:09:d5:d8:b2:39:ad:e2:08:2b:1f:f3:
15:fe:69:c7:4a:a5:f3:53:7b:10:3a:21:10:a6:df:6c:09:c2:
53:96:e8:6c:dd:b9:df:dd:fa:a5:07:f7:a1:c8:48:db:9f:20:
0b:3f:be:8c:c6:58:f5:5b:6c:94:48:3f:d5:df:26:0b:1b:fc:
98:69:27:4c:83:84:a8:0c:af:60:f1:4d:49:5d:32:05:5f:df:
d4:a5:94:83:30:f3:aa:38:ac:59:63:70:1b:be:36:f3:83:6b:
99:f6:29:a9:72:cb:93:f0:c4:8a:9a:b1:0f:ce:54:af:72:37:
a7:0c:40:fa:f2:7f:46:06:15:ee:3d:75:65:03:47:11:0e:17:
6f:1a:17:86:05:36:dd:67:9a:8c:61:9f:13:79:9f:e4:df:42:
86:0c:e8:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 10 13:13:59 2024 by rpki-client on console-ams.rpki-client.org