Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/447D673CCCAB11EEBDE65267775412E6.roa
File: 447D673CCCAB11EEBDE65267775412E6.roa (raw, json)
Hash identifier: +1crF2PdLGHk5b2qIoLbdmZ+kB1nBQAYCBv/Q9tvfpM=
Subject key identifier: F0:9A:4F:02:E4:07:1C:4F:14:03:AB:1E:DC:5B:0F:DC:9B:22:65:ED
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 8A67
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/447D673CCCAB11EEBDE65267775412E6.roa
Signing time: Fri 16 Feb 2024 09:10:46 +0000
ROA not before: Fri 16 Feb 2024 09:10:42 +0000
ROA not after: Fri 26 Apr 2024 09:10:42 +0000
asID: 9009
IP address blocks: 154.216.203.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 35431 (0x8a67)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Feb 16 09:10:42 2024 GMT
Not After : Apr 26 09:10:42 2024 GMT
Subject: CN=65cf2695-2c56
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:22:b8:eb:d6:8b:4d:38:2f:cd:b1:30:cc:51:
3b:90:69:2c:eb:96:80:7e:1c:d0:88:e6:5c:b7:49:
23:ce:65:c2:3f:fe:c9:93:e5:a5:a7:ca:41:3a:55:
83:58:a8:42:27:cf:fd:9a:8c:36:30:44:73:46:ac:
9e:80:95:2c:08:cf:f2:4b:b7:40:ef:bf:2d:7d:17:
81:e4:93:63:a1:94:7c:ca:a6:45:c2:3f:02:2e:ac:
82:c4:8a:13:15:a1:f2:7b:46:0c:5f:dd:8c:23:ba:
71:92:1c:20:97:c1:b3:4b:68:32:bb:be:2c:94:3a:
ee:8c:2e:02:9a:e8:9a:9d:dc:f3:32:2e:9d:05:48:
45:64:b0:71:1d:43:99:f8:3a:e4:42:06:bb:63:8e:
09:d4:8b:f8:36:2e:78:4a:e4:ee:0a:e9:d0:53:da:
bb:b7:98:78:80:5f:26:f5:44:0d:56:45:56:29:8a:
7b:79:7c:56:e4:c2:5b:ac:1c:5f:94:f3:95:7e:31:
e7:cb:59:b1:70:0e:5e:e2:33:d7:be:b8:e8:f9:96:
b5:96:ec:7e:b5:d7:fd:6b:4e:b1:d3:a6:83:ae:72:
c3:b3:52:c4:60:c8:88:5f:37:bb:4a:59:ec:58:f1:
b0:eb:86:93:ec:8b:4c:29:82:5c:6b:a6:c1:fe:4d:
06:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:9A:4F:02:E4:07:1C:4F:14:03:AB:1E:DC:5B:0F:DC:9B:22:65:ED
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/447D673CCCAB11EEBDE65267775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.216.203.0/24
Signature Algorithm: sha256WithRSAEncryption
26:bb:3e:44:ce:4f:d0:48:ec:cd:2d:47:5c:ba:f6:b6:8c:bd:
1f:9f:6a:36:29:ef:97:53:39:b1:01:ee:21:c5:bb:f0:05:9e:
33:2a:45:24:cf:a3:21:5e:4d:52:71:7a:d2:46:94:ed:44:bb:
f6:4c:49:ca:66:74:34:12:5c:00:ad:e7:34:da:dd:24:57:44:
50:88:ad:bd:63:89:5d:f3:94:08:e2:08:5f:b8:87:42:ae:ea:
ed:45:cb:dd:d2:fa:cb:c5:dc:7f:39:ea:26:77:b7:c0:e2:66:
73:72:19:fe:4e:50:ab:32:8e:a1:be:5b:bd:f3:a9:db:25:91:
d4:9f:5c:0e:f2:04:ea:29:a2:bd:46:2b:ac:f7:8a:17:40:c4:
e8:d9:c3:fa:23:4e:9d:64:3d:78:87:c9:12:e7:90:22:ac:66:
2d:d7:4f:d8:99:e3:8a:1e:2a:67:a4:00:7f:e9:28:1d:7a:ae:
28:92:11:8b:e8:a3:87:a2:c3:63:d8:e4:26:b8:71:7f:80:cf:
b0:bd:e7:fa:58:ee:11:8e:71:58:08:b0:66:8f:54:d0:7e:02:
54:a2:98:cc:68:e3:fb:ee:51:3d:31:3a:f4:85:e0:02:69:4d:
94:d8:7e:3e:1c:24:52:62:b3:3e:7b:bd:52:1a:0b:21:9d:87:
ec:c8:2c:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 26 11:01:34 2024 by rpki-client on console-ams.rpki-client.org