Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/527ED32ECCB111EEB9ABF970775412E6.roa
File: 527ED32ECCB111EEB9ABF970775412E6.roa (raw, json)
Hash identifier: 0Hvfu8g25vn93fScyxQbGxve76zy6WbaiO3JpxTj0J8=
Subject key identifier: 24:A5:BC:8E:4B:46:FD:9C:56:3E:A7:D7:2B:BF:C1:AF:65:0D:E6:23
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 8A9D
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/527ED32ECCB111EEB9ABF970775412E6.roa
Signing time: Fri 16 Feb 2024 09:54:06 +0000
ROA not before: Fri 16 Feb 2024 09:54:03 +0000
ROA not after: Fri 26 Apr 2024 09:54:03 +0000
asID: 9009
IP address blocks: 154.218.229.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 35485 (0x8a9d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Feb 16 09:54:03 2024 GMT
Not After : Apr 26 09:54:03 2024 GMT
Subject: CN=65cf30be-5ce6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:6e:69:83:68:6c:01:c2:c0:5f:e3:f0:58:c6:
d4:20:89:46:58:14:c2:0a:c5:c1:fd:6b:d9:e5:bb:
6f:ec:89:e7:6e:e9:27:9c:39:fa:19:61:91:a1:ad:
80:96:52:02:36:d4:a4:a8:65:50:fc:7d:60:aa:a0:
eb:9f:63:c3:77:93:dd:a7:36:8b:32:6b:25:14:48:
1e:7c:85:85:7a:2a:33:1b:fc:b9:ce:3c:cd:6e:a9:
8e:55:75:56:22:dc:d4:0c:50:cc:ba:fb:33:c1:3c:
e4:fb:b1:e7:0a:ec:33:0b:9e:b7:42:46:2a:65:cc:
81:a2:9f:a5:f9:09:52:8d:72:c6:fe:f1:21:1e:72:
95:ad:03:f9:9e:65:c2:c9:e9:99:c8:b0:90:d6:e2:
55:39:61:16:8e:6b:2e:5a:ad:10:ea:01:d5:10:d1:
8a:e7:fa:96:01:ea:71:93:be:b5:fa:19:79:21:0c:
16:f4:61:33:a3:16:97:00:53:5c:ef:cc:ea:37:78:
46:97:86:4b:e5:37:3c:12:3a:f4:fe:5b:33:88:4c:
e6:bc:10:a4:34:de:ef:07:a3:68:a7:f4:ca:c7:74:
dd:44:63:af:6a:dc:0a:cb:c1:6d:ff:0d:38:ee:8a:
fa:5b:ca:68:f5:ea:7d:22:3d:05:ed:4e:f8:e8:3c:
9b:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:A5:BC:8E:4B:46:FD:9C:56:3E:A7:D7:2B:BF:C1:AF:65:0D:E6:23
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/527ED32ECCB111EEB9ABF970775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.218.229.0/24
Signature Algorithm: sha256WithRSAEncryption
d3:5a:50:59:67:6d:27:b6:ee:b3:6a:17:d9:fd:03:d9:ce:e8:
8b:c7:f5:b8:4c:f1:78:87:bd:4b:9c:59:af:aa:85:2b:20:ab:
17:08:86:06:00:62:c2:7a:6d:79:a9:69:21:41:5f:99:22:3b:
94:ba:d0:9c:45:fd:3a:e7:6a:56:d3:84:ef:fd:30:63:53:bb:
ee:6a:07:95:c6:01:be:39:00:ec:24:85:11:76:7f:d0:e6:dd:
28:30:89:4a:b9:55:31:2b:bc:f5:99:c7:d2:7b:44:b0:b5:40:
26:e0:9f:32:16:3e:62:b8:09:d8:cd:b6:13:a4:7c:3b:c8:40:
77:f4:ca:7b:b3:71:da:9c:3c:b3:4d:12:e6:9e:f4:cc:07:a1:
24:35:bf:1f:8c:d3:f4:d0:4a:a8:93:22:6e:11:39:19:24:4a:
c7:d5:60:bb:1a:87:22:9d:84:00:60:2e:d7:78:88:73:31:c0:
15:a2:7e:98:12:e4:cc:a9:f0:ef:17:f5:e8:c2:52:40:90:35:
2f:a4:40:fe:47:c8:53:b0:93:e4:cf:7d:6e:57:0a:d1:78:9b:
80:de:8d:ab:90:f8:4f:70:c9:9c:82:d6:a4:9f:22:0e:7d:f6:
59:cf:3d:ab:87:ac:63:25:03:84:98:8a:87:8b:62:45:63:91:
6f:f2:59:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 26 11:01:36 2024 by rpki-client on console-ams.rpki-client.org