Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/4848675ECCB011EEA8C8206F775412E6.roa
File: 4848675ECCB011EEA8C8206F775412E6.roa (raw, json)
Hash identifier: LgyI8gU5ovYuREoMa3QL2Qy9YUPj2fUhq7bgFIgFxpo=
Subject key identifier: 43:7F:58:C1:5A:1C:7B:AF:73:9C:DA:5B:81:A7:E9:0F:28:BD:C0:75
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 8A93
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/4848675ECCB011EEA8C8206F775412E6.roa
Signing time: Fri 16 Feb 2024 09:46:39 +0000
ROA not before: Fri 16 Feb 2024 09:46:36 +0000
ROA not after: Fri 26 Apr 2024 09:46:36 +0000
asID: 9009
IP address blocks: 154.216.214.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 35475 (0x8a93)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Feb 16 09:46:36 2024 GMT
Not After : Apr 26 09:46:36 2024 GMT
Subject: CN=65cf2eff-aeb8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:b7:d7:08:93:8e:85:2b:9c:92:94:0a:32:98:
db:b9:0d:2e:c7:73:e3:e6:4a:aa:c4:2a:bf:92:de:
4a:ad:d9:9c:b8:72:7f:db:37:c9:06:f0:9f:bb:72:
b1:74:fe:3f:0c:c7:0f:e5:9a:58:11:d7:5c:7c:27:
27:2e:4d:d2:de:7e:85:f8:d5:2b:66:19:ff:a1:c5:
8c:4b:78:24:f5:7d:2d:7a:8f:ff:11:46:1e:89:cb:
33:ea:5d:e4:19:89:05:c4:84:f7:45:5e:e2:7a:44:
e9:94:dd:97:0c:12:58:99:63:95:9b:b2:17:a8:4d:
1b:0a:cd:28:5c:e3:8c:3f:d2:11:ca:5c:a2:90:17:
63:79:b0:4d:3c:ce:06:12:da:9c:0b:b8:49:4c:d3:
34:3a:eb:95:cf:26:5e:bf:63:52:85:bf:ff:21:2c:
55:46:cb:16:ab:25:2e:47:36:26:f4:10:eb:b2:1d:
59:6b:e3:50:0b:3d:e6:67:67:a8:15:e4:22:c3:10:
9d:ce:dd:71:c8:28:8c:b4:f4:44:9c:83:bc:97:b6:
7a:d5:bf:79:b0:5d:f9:d9:ae:ce:e8:a0:4a:eb:74:
3f:b9:ea:1c:ab:1a:b7:fd:b0:08:5a:96:a9:20:dc:
50:ac:79:63:81:3c:89:f0:07:14:46:fa:cf:1b:42:
16:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:7F:58:C1:5A:1C:7B:AF:73:9C:DA:5B:81:A7:E9:0F:28:BD:C0:75
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/4848675ECCB011EEA8C8206F775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.216.214.0/24
Signature Algorithm: sha256WithRSAEncryption
ce:f2:ac:33:3f:4f:13:c2:98:05:aa:3d:d4:70:ce:c9:47:ca:
a5:ab:00:c3:7b:d3:fc:15:a5:f5:97:dd:85:b3:e9:18:e4:ff:
d5:a1:7b:b3:2c:a0:14:2d:d8:cb:19:b9:0e:0c:9b:3d:28:d5:
64:48:d5:17:b2:88:4f:f2:26:a8:b5:2c:dc:7e:f4:81:1b:b6:
29:29:3d:e1:1a:a2:18:94:ff:da:cb:52:f5:cc:31:d8:12:4d:
92:78:4c:70:70:0c:c4:08:62:0e:16:05:a7:98:bb:9a:ba:3f:
00:6f:18:c2:c6:3d:3d:45:8d:43:b7:0d:bb:eb:e9:97:72:7b:
7d:5c:20:2d:4b:41:b7:40:a7:94:7d:35:25:d9:1c:f6:cf:06:
72:61:04:0e:d0:c7:25:84:c0:8e:45:8c:8b:fe:74:48:ed:ee:
dc:88:e3:34:73:10:43:fb:84:ab:ff:41:f2:7a:b5:65:94:f3:
bf:ff:4b:80:be:96:4f:03:11:d0:58:a8:d5:b0:80:ae:da:d0:
f9:60:e4:3b:f2:cc:69:fa:48:61:16:ed:36:19:e2:ac:06:85:
f2:2a:b0:9d:a2:26:36:89:6c:d4:d1:82:75:f9:4b:79:a6:16:
f6:f3:a5:47:dd:32:5f:7d:08:5e:1d:22:4e:da:c8:85:a7:a6:
b1:cb:10:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 26 11:01:34 2024 by rpki-client on console-ams.rpki-client.org