Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/33D5760CCCA811EEAD189C62775412E6.roa
File: 33D5760CCCA811EEAD189C62775412E6.roa (raw, json)
Hash identifier: XTQwm1n4gnj8af4Klbvdt91MJwTxMjC5BFBiEPZkixQ=
Subject key identifier: 11:5C:B3:4B:15:66:18:ED:16:E3:F4:D0:87:A1:23:CE:AB:2B:A3:EA
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 8A4B
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/33D5760CCCA811EEAD189C62775412E6.roa
Signing time: Fri 16 Feb 2024 08:48:49 +0000
ROA not before: Fri 16 Feb 2024 08:48:46 +0000
ROA not after: Fri 26 Apr 2024 08:48:46 +0000
asID: 9009
IP address blocks: 154.216.196.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 35403 (0x8a4b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Feb 16 08:48:46 2024 GMT
Not After : Apr 26 08:48:46 2024 GMT
Subject: CN=65cf2171-feb6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:44:00:87:6a:1e:39:35:23:7f:57:dc:b7:c5:
bb:64:0f:ee:92:83:fa:a6:ac:32:bf:de:8f:d5:f0:
83:3b:68:5f:21:06:8e:16:e3:83:02:9b:5a:27:de:
d5:63:74:e5:f1:cc:8e:72:26:fe:39:70:19:4f:0a:
7f:95:90:af:13:a0:dc:86:75:d2:88:d7:17:4b:a4:
9e:93:e6:67:c4:24:ec:62:62:d3:a6:72:57:0b:2c:
b9:06:bc:90:81:13:be:7f:21:1d:49:6c:d9:80:fc:
10:61:5d:fa:da:44:a9:89:37:5b:a4:b3:1a:92:3c:
41:51:fa:f8:93:aa:cb:78:71:ca:6b:bb:3c:9e:a7:
d6:9a:db:47:9c:e0:fe:28:f1:c4:9a:80:a6:e9:34:
22:98:04:d0:e1:6b:44:85:ae:70:32:12:15:f8:2e:
39:0e:29:9a:c3:d3:ea:78:2e:75:22:ba:3e:70:47:
68:36:d3:8c:41:ef:5e:b2:fb:a6:52:58:31:97:ba:
8b:a5:0c:ff:7b:b0:42:8f:1e:08:b4:43:6e:8f:d9:
60:12:82:38:c2:4d:37:5c:7a:52:42:16:b1:e8:5b:
5c:78:10:30:a0:cc:75:63:11:00:be:0f:72:a3:c0:
87:0b:96:bb:c7:46:32:37:2f:cd:2f:03:f7:b6:d0:
a2:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:5C:B3:4B:15:66:18:ED:16:E3:F4:D0:87:A1:23:CE:AB:2B:A3:EA
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/33D5760CCCA811EEAD189C62775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.216.196.0/24
Signature Algorithm: sha256WithRSAEncryption
a2:89:07:23:5c:52:8c:ed:cb:79:52:4c:48:2d:36:d5:a4:70:
af:af:3e:7e:41:d2:c6:a7:3a:83:fc:c4:ae:b4:45:b0:5a:c6:
53:3b:29:45:33:e5:f7:4f:96:0f:9d:6f:74:5f:0b:be:31:54:
32:38:b5:a3:79:94:15:4f:4e:03:59:06:27:9b:87:5f:53:9c:
61:e2:18:ff:77:46:bd:98:0e:72:d6:22:87:28:0a:e2:de:f1:
b3:eb:56:b2:a2:3d:cf:61:d2:7b:ee:f7:1b:c9:a2:13:22:a9:
3d:31:82:18:bd:b6:73:62:7b:79:af:24:e7:1e:20:16:ca:e7:
2c:81:e5:d8:57:93:47:4c:1a:ad:a6:36:b3:7b:22:27:4f:95:
fb:c7:a6:b9:45:7c:6c:93:a5:08:78:5a:21:51:5a:01:2d:9a:
a9:60:9c:64:c9:80:dd:cd:a8:5c:cc:b3:7e:cf:94:19:42:b5:
bd:9e:44:ff:82:0f:5f:bb:ba:ac:3c:6a:69:8f:dc:ad:40:73:
03:4d:fe:a8:a9:24:eb:19:07:e8:a1:cb:36:b1:5e:c1:a5:04:
db:02:f3:39:29:a1:1e:e7:05:e7:d1:00:cd:28:7d:38:49:8a:
b1:73:de:12:73:3b:d5:4a:14:55:79:40:d5:a2:81:0f:8e:07:
cd:51:f6:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 26 11:01:33 2024 by rpki-client on console-ams.rpki-client.org