Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/292C99BACCB211EEB08D3472775412E6.roa
File: 292C99BACCB211EEB08D3472775412E6.roa (raw, json)
Hash identifier: LswZgp7LIKeIFzzU2uuJkPMkGo4YLgofzzjvShnfqAk=
Subject key identifier: 00:44:24:1A:CE:F8:C1:7D:0C:64:6B:5D:13:6E:3E:C3:40:13:EA:1D
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 8AA5
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/292C99BACCB211EEB08D3472775412E6.roa
Signing time: Fri 16 Feb 2024 10:00:06 +0000
ROA not before: Fri 16 Feb 2024 10:00:03 +0000
ROA not after: Fri 26 Apr 2024 10:00:03 +0000
asID: 9009
IP address blocks: 154.218.231.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 35493 (0x8aa5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Feb 16 10:00:03 2024 GMT
Not After : Apr 26 10:00:03 2024 GMT
Subject: CN=65cf3226-a9a8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:a1:3b:41:57:bc:cb:7d:fd:27:4f:c1:94:31:
75:07:9e:9d:f7:2d:a4:35:93:13:a9:72:a5:26:b7:
d7:47:c1:39:a6:6b:91:d0:d8:b2:b0:4a:06:3f:1e:
bc:f3:0d:c1:9d:6e:c9:4e:16:ef:ad:f2:af:2d:f0:
a4:01:b1:4a:96:9f:7c:9c:20:1f:5b:d7:2d:0b:2d:
c8:43:ce:de:35:4e:8f:65:be:9b:36:94:fa:ab:ff:
65:9b:3d:86:0b:9f:18:d9:ab:77:3f:82:89:ba:f6:
a8:8f:7b:91:7c:97:11:fe:4c:04:30:60:9e:48:c4:
79:d4:a2:21:fb:39:ef:bc:bd:dd:8e:7b:f1:a4:62:
70:91:76:e9:03:56:95:4c:8a:e2:79:a9:99:72:d8:
29:93:57:71:8a:bf:55:a9:24:30:e9:30:44:be:8b:
80:bc:e1:df:24:34:28:0e:12:5a:e6:46:e5:37:3b:
96:e6:57:3e:de:ac:24:7c:51:92:1c:fb:5c:7b:e8:
0c:69:55:df:b1:2d:3e:bb:02:fd:bb:49:4f:63:90:
84:1a:71:84:c6:97:0e:a9:ae:38:35:d9:c3:23:0d:
b7:71:c1:9d:b6:38:c7:ed:75:44:23:89:41:22:d8:
59:f6:ad:d0:57:74:2d:f4:e9:10:e5:64:d0:94:02:
c0:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:44:24:1A:CE:F8:C1:7D:0C:64:6B:5D:13:6E:3E:C3:40:13:EA:1D
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/292C99BACCB211EEB08D3472775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.218.231.0/24
Signature Algorithm: sha256WithRSAEncryption
96:8d:ec:5b:6c:b9:3a:1c:83:a0:70:d3:d8:00:70:e6:1f:5b:
d9:a7:b2:69:14:4e:9c:cb:79:4a:12:0c:48:bf:b6:b4:a0:aa:
ad:e1:97:03:f5:cf:12:56:fd:a3:7a:79:88:9d:e5:8e:5d:80:
c7:05:52:f9:ca:6a:00:b6:23:fe:68:2b:e8:14:7d:ba:17:17:
d8:f2:cd:f9:c4:40:04:fe:a7:8a:b2:70:c4:4f:0e:9b:76:fb:
b1:6b:0f:24:99:20:31:68:95:ce:9f:c2:01:ed:f5:26:c3:8c:
b8:73:62:c1:77:74:05:92:fb:c1:36:b9:25:b7:83:ce:eb:2c:
64:8b:46:e1:88:ed:41:e3:0b:58:c1:9a:98:3d:e4:9a:6b:01:
fd:c2:20:ee:a7:c2:52:6d:56:f5:65:f8:11:30:a5:f7:8e:97:
39:35:d7:72:8e:5d:06:ec:50:4e:78:4f:90:c5:8d:58:a4:b1:
4d:8b:be:b3:91:ef:71:12:78:bf:3a:23:cf:d1:30:80:0d:9c:
0e:62:ac:fe:75:e5:12:bc:ab:cd:3b:de:b4:5f:af:58:79:60:
d0:60:b6:62:51:b0:88:57:e0:b0:cd:fe:90:03:85:46:da:9b:
40:bc:5a:df:e5:b1:0a:9b:21:73:06:95:a6:61:b8:1d:16:1d:
f3:ef:a6:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 26 11:01:31 2024 by rpki-client on console-ams.rpki-client.org