Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/2CFF7612CCA711EEBFDEE160775412E6.roa
File: 2CFF7612CCA711EEBFDEE160775412E6.roa (raw, json)
Hash identifier: HU49qZDa47ZFCe+ICWayIsq98PB5Gkz9tMsBqMPt37I=
Subject key identifier: 31:95:2F:58:64:6A:3A:0A:C1:CC:69:0E:D1:E4:09:14:DF:0E:74:83
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 8A3F
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/2CFF7612CCA711EEBFDEE160775412E6.roa
Signing time: Fri 16 Feb 2024 08:41:28 +0000
ROA not before: Fri 16 Feb 2024 08:41:25 +0000
ROA not after: Fri 26 Apr 2024 08:41:25 +0000
asID: 9009
IP address blocks: 154.216.193.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 35391 (0x8a3f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Feb 16 08:41:25 2024 GMT
Not After : Apr 26 08:41:25 2024 GMT
Subject: CN=65cf1fb8-3743
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:8b:ce:24:9a:2e:f3:05:a6:c3:68:89:35:97:
94:3f:d4:97:fe:a4:0c:5c:4e:15:74:c8:9c:80:3a:
c2:a7:e3:0b:a1:af:05:00:1b:ff:74:da:13:c8:47:
8b:9d:df:ca:54:bb:5c:cf:78:5a:51:04:cd:dd:a9:
9e:a6:04:fe:f7:4b:09:13:34:2c:be:34:48:7a:84:
36:cd:91:0a:08:8a:04:ae:a0:7c:71:4c:85:2a:61:
bf:88:60:e8:d0:9e:e6:e6:0c:e7:74:14:12:28:ce:
e5:91:dd:9e:15:20:88:62:bf:6b:84:37:b4:17:23:
c0:f9:40:bc:f3:48:89:71:40:ca:c0:56:1c:60:32:
fd:d5:ea:33:25:0d:5c:e5:21:10:3c:36:0c:44:f9:
61:38:49:db:d8:24:db:20:8f:d3:7e:d7:06:f8:de:
6d:c3:dd:09:d1:4a:70:c0:aa:b9:41:d2:59:21:b6:
6f:3b:bf:43:8a:23:4d:25:f0:cd:0d:eb:19:2b:8c:
89:6a:72:e2:c7:86:8f:29:83:7b:21:0d:d3:17:af:
c5:9a:57:aa:c8:0f:22:35:d6:21:87:39:4e:96:c9:
4b:78:e0:92:60:4c:08:55:45:12:f8:87:fc:9f:2c:
7a:70:ba:21:a9:fe:ca:92:a9:ed:d2:b3:1a:02:4b:
a3:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:95:2F:58:64:6A:3A:0A:C1:CC:69:0E:D1:E4:09:14:DF:0E:74:83
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/2CFF7612CCA711EEBFDEE160775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.216.193.0/24
Signature Algorithm: sha256WithRSAEncryption
3f:34:d8:70:fc:e4:19:20:7e:e5:1d:de:a8:07:13:32:44:a5:
4d:22:c6:a3:9d:f0:14:16:12:d3:a2:36:1b:66:47:08:fc:28:
eb:64:a3:84:58:bb:60:d2:d9:4c:d3:d7:11:27:3e:7f:b0:92:
94:8c:57:79:c0:fc:8b:ad:43:18:b5:dc:f6:ef:23:cd:db:51:
98:7e:e5:3f:b3:47:5b:12:37:bd:76:35:06:9f:57:6a:ea:30:
6f:7e:b5:4f:62:8d:88:13:b6:3f:49:73:b1:84:4e:41:f5:68:
df:14:56:3d:cd:66:7e:8c:a7:d0:4b:e0:59:0e:29:bb:ea:cf:
d1:38:51:d7:5d:2e:86:24:0d:71:b8:23:7e:f3:23:08:14:65:
8d:00:55:62:b7:59:68:a9:8b:00:b5:f8:30:db:87:25:86:f9:
fc:99:fa:8d:20:ae:25:27:d2:1e:a6:ed:43:5c:c4:44:92:8b:
6c:8a:83:ec:a7:74:01:48:88:76:07:be:2a:ac:07:7f:9c:b9:
35:a9:49:72:4e:3e:c4:d2:cc:c1:16:86:5e:d5:67:92:5f:d5:
a7:64:42:39:4c:26:76:96:d9:14:f6:7c:c3:f8:b0:3c:03:34:
00:6c:b2:a3:da:d3:81:f3:8d:57:0c:9c:a5:d4:48:5b:0f:83:
82:d9:5b:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 26 11:01:32 2024 by rpki-client on console-ams.rpki-client.org