Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/563AFE82CCAE11EE96C0376C775412E6.roa
File: 563AFE82CCAE11EE96C0376C775412E6.roa (raw, json)
Hash identifier: oSvxNsj2r635i8beenn0/cJtXStzn1irigE+Q+hSuUM=
Subject key identifier: C0:2F:7A:87:DF:57:6C:81:9A:19:30:AF:9C:8A:16:AF:1A:D6:CC:96
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 8A83
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/563AFE82CCAE11EE96C0376C775412E6.roa
Signing time: Fri 16 Feb 2024 09:32:44 +0000
ROA not before: Fri 16 Feb 2024 09:32:40 +0000
ROA not after: Fri 26 Apr 2024 09:32:40 +0000
asID: 9009
IP address blocks: 154.216.210.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 35459 (0x8a83)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Feb 16 09:32:40 2024 GMT
Not After : Apr 26 09:32:40 2024 GMT
Subject: CN=65cf2bbc-f319
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:82:5e:4a:cc:10:73:f3:6e:f7:62:af:ce:25:
ce:50:79:c0:cf:8b:dd:20:a7:3c:d8:20:5d:65:80:
5c:50:0b:a8:36:c3:f6:c0:38:30:0f:34:cb:85:b2:
07:a1:f1:2c:08:f6:53:97:08:41:be:f0:fa:4d:4d:
87:3d:67:8f:e9:e1:ea:34:53:a3:05:5c:5c:8e:64:
37:f8:74:b5:27:2d:8d:b8:cd:0d:49:b7:d8:7a:42:
2e:25:77:27:27:6f:2f:af:ad:4f:97:80:88:a6:39:
d2:bd:62:25:30:bd:d0:0d:45:13:c4:bb:39:42:15:
cd:cf:f6:61:df:46:d5:5f:1f:c9:62:d1:a7:4b:b1:
23:40:b5:e6:0e:a1:1f:6a:c5:31:85:46:5a:6a:fd:
74:67:01:c7:ae:3f:22:7f:76:6e:47:6c:f1:b6:79:
81:dc:a9:d4:d4:f1:ac:1f:8d:b7:4c:7a:a9:9b:a6:
67:d2:34:13:32:d2:8f:d1:66:ba:a7:3f:e5:a1:39:
d9:90:c4:8a:19:f3:a9:55:52:3a:e0:b3:42:42:a9:
c8:a4:e3:0c:bf:9a:3a:af:2e:dc:d0:d1:bb:8b:1e:
6c:53:75:d2:3b:3f:17:69:df:9b:dc:8f:1b:c1:cb:
93:04:e7:37:51:b5:3c:3c:f3:c7:93:09:ad:8f:be:
14:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:2F:7A:87:DF:57:6C:81:9A:19:30:AF:9C:8A:16:AF:1A:D6:CC:96
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/563AFE82CCAE11EE96C0376C775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.216.210.0/24
Signature Algorithm: sha256WithRSAEncryption
2f:3d:21:44:7f:e4:8e:c3:16:68:69:49:70:b3:2e:b9:d8:f5:
02:c9:5a:cf:1e:d3:f5:79:67:f8:fe:04:3a:a0:02:24:76:1d:
66:3e:b1:e1:57:d4:d8:ed:c5:07:b4:9b:9b:26:79:19:8e:9b:
2a:2f:02:58:8d:6e:28:4f:7a:b5:d3:c9:ae:c5:05:83:19:ea:
d7:cf:1a:e8:ab:80:80:40:16:70:df:61:37:b4:4d:98:26:88:
7c:bf:bd:d7:70:6d:16:c4:95:3d:46:43:c5:4a:24:0c:e6:0f:
9e:33:d3:89:a3:d8:52:b5:e5:f6:f1:36:a9:ae:46:8a:29:ec:
af:08:e1:03:11:ec:91:3b:78:3f:d4:58:4a:8d:5b:76:41:1e:
a6:80:81:2a:5b:ec:bf:a1:84:35:50:9a:5f:9b:2c:44:4a:33:
b0:66:03:90:53:20:13:52:70:da:ac:37:2a:cd:54:18:03:67:
e4:38:58:39:1f:be:d3:4b:8d:78:19:4e:a9:e5:ad:82:4f:30:
76:7b:ee:b0:a8:7b:7f:77:9c:ec:e0:9c:b8:65:f7:11:4a:d3:
38:a1:6a:a7:9c:e7:f3:50:db:a8:f5:f5:64:a9:2c:30:89:6b:
8a:5f:f1:d9:4e:58:ad:6d:0a:34:a0:9f:bb:3f:23:7c:6e:43:
f5:eb:46:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 26 11:01:36 2024 by rpki-client on console-ams.rpki-client.org