Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/55B9884CCCAF11EE8F6EB66D775412E6.roa
File: 55B9884CCCAF11EE8F6EB66D775412E6.roa (raw, json)
Hash identifier: spC40TNaQIA2auerNqkKs4pMNVsIuT0tLB0UkJgpidY=
Subject key identifier: 8F:36:09:0D:CF:5A:D1:BF:66:D7:27:84:2E:3B:EC:EF:2E:D9:FC:3A
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 8A8B
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/55B9884CCCAF11EE8F6EB66D775412E6.roa
Signing time: Fri 16 Feb 2024 09:39:52 +0000
ROA not before: Fri 16 Feb 2024 09:39:49 +0000
ROA not after: Fri 26 Apr 2024 09:39:49 +0000
asID: 9009
IP address blocks: 154.216.212.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 35467 (0x8a8b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Feb 16 09:39:49 2024 GMT
Not After : Apr 26 09:39:49 2024 GMT
Subject: CN=65cf2d68-e3e0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:52:2e:ac:e3:ad:1d:cf:a0:6d:c3:3d:6a:f1:
35:c0:97:6a:62:b6:12:20:1c:4f:f2:8b:1f:dd:79:
5b:dd:53:a5:cb:74:6d:b8:f0:2d:8f:90:80:3a:af:
b2:f3:27:cd:c2:cf:90:3f:71:66:6f:98:1c:3d:1f:
00:23:9d:6a:64:72:79:30:8b:62:4d:38:a6:f5:62:
47:bf:a4:82:1f:03:d8:ca:7f:30:17:2b:68:4e:d7:
1c:04:56:9b:54:91:d8:74:32:65:ea:26:7d:fc:75:
5b:3e:bf:2c:ea:10:bd:9a:fa:c2:f8:a1:20:d6:eb:
fb:7e:12:80:bd:ca:31:93:f1:a3:8a:a5:be:e2:7f:
f8:77:70:a1:06:fd:16:78:99:f4:60:c5:7d:79:c3:
41:17:bd:27:7a:a2:d9:ad:b9:08:18:89:0a:18:a6:
82:61:a6:af:ea:de:96:51:19:16:bf:1a:c7:4c:f4:
a7:c1:b5:f6:11:a0:b3:54:90:ae:4c:eb:4c:19:8b:
f9:4f:25:67:1c:9d:5d:86:30:5b:62:56:44:87:0c:
27:7f:73:c1:22:df:39:4b:80:15:17:a6:7c:e0:68:
12:3f:95:a9:a0:16:7e:56:2c:d1:23:f1:28:d3:5f:
32:1b:6e:13:a1:da:7b:6e:c2:5d:f5:25:fd:3e:2d:
3b:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:36:09:0D:CF:5A:D1:BF:66:D7:27:84:2E:3B:EC:EF:2E:D9:FC:3A
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/55B9884CCCAF11EE8F6EB66D775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.216.212.0/24
Signature Algorithm: sha256WithRSAEncryption
d3:c2:0d:f3:00:e2:5e:d7:83:46:68:a5:e4:be:5b:4b:77:87:
9e:5a:8f:2e:b0:54:99:71:67:ee:41:a4:42:2c:ea:bc:af:b3:
7f:af:e7:32:3e:7e:58:7a:8a:8d:f4:25:56:70:e6:8e:f2:14:
42:83:7b:11:00:c1:3f:87:7a:7f:dc:f3:dd:6a:e2:93:ae:5b:
3d:a4:1b:90:4e:fc:0c:90:95:ce:33:1a:63:2d:fc:6b:18:0f:
52:2f:85:60:08:94:82:50:91:1b:d4:3a:ad:ab:83:07:ef:a3:
d8:1a:cd:9a:a2:16:79:07:6f:85:65:a1:75:b3:9e:10:a5:67:
8d:82:01:c3:5c:fc:70:30:de:94:ef:9c:fa:4e:d1:a3:43:89:
ef:49:a5:09:2b:e1:6b:6c:20:4b:4c:78:54:90:71:9e:ff:c4:
87:d9:e0:30:7e:5c:7b:fb:b5:7c:33:c5:e3:31:ef:f5:41:89:
3a:a5:6a:9a:8b:ff:c8:3f:20:a5:20:d5:5f:73:f7:9e:c9:58:
cb:41:a4:bf:81:3b:7d:b6:77:30:d7:00:b1:85:12:d3:a7:5f:
03:f6:7e:88:ca:1c:b3:e3:b8:ed:32:2e:a5:7e:a1:53:a9:1b:
a1:d7:b8:64:67:dc:44:4c:29:13:c9:ed:05:39:d1:f8:21:a5:
0b:1f:85:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 26 11:01:36 2024 by rpki-client on console-ams.rpki-client.org