Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/56E87576CCB811EEA011027C775412E6.roa
File: 56E87576CCB811EEA011027C775412E6.roa (raw, json)
Hash identifier: mIAQJKXQHYh733mTTaMAxcy66WD5SMMpe9/B8QLSckU=
Subject key identifier: 82:2E:2B:9B:24:09:F1:23:E6:B3:53:22:6B:10:A1:93:EC:D8:87:32
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 8ADF
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/56E87576CCB811EEA011027C775412E6.roa
Signing time: Fri 16 Feb 2024 10:44:20 +0000
ROA not before: Fri 16 Feb 2024 10:44:16 +0000
ROA not after: Fri 26 Apr 2024 10:44:16 +0000
asID: 9009
IP address blocks: 154.218.253.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 35551 (0x8adf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Feb 16 10:44:16 2024 GMT
Not After : Apr 26 10:44:16 2024 GMT
Subject: CN=65cf3c84-8ca0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:14:36:aa:e5:f3:3e:23:50:a1:76:07:fd:d5:
fe:08:cd:7b:e7:05:8b:ff:38:02:8f:73:12:a9:80:
e5:a7:db:73:09:9c:d5:b6:6e:55:70:57:cb:4f:f4:
85:bd:31:38:f4:49:22:75:dd:23:24:5f:da:51:af:
51:4d:3a:e1:56:7c:28:1a:d8:35:c5:06:36:81:53:
47:af:65:f2:50:00:4a:58:8d:9d:2b:95:1f:e9:55:
08:ba:9e:81:7f:fe:a8:f3:35:b2:b3:95:ba:c0:58:
1d:99:9f:09:93:2d:c5:90:9f:a0:3e:25:4b:66:31:
cd:27:b3:0e:b1:27:19:df:7a:06:c2:22:7b:e1:a7:
7b:56:e6:a3:eb:3d:34:27:b9:41:d2:7e:8b:15:30:
dd:e9:cd:d6:a2:75:01:48:e2:c3:de:34:88:5c:28:
07:62:c9:b7:77:00:08:d1:27:e5:7b:38:f0:74:df:
c9:17:18:f5:d7:d2:d6:df:0d:6a:2f:f4:95:b8:67:
8a:c2:01:8b:62:0a:38:ba:4e:a3:81:4a:08:aa:ea:
a5:5a:63:6e:f4:99:b9:ba:0e:1a:e2:6d:c5:73:8f:
8d:02:fc:f6:3a:d9:39:79:2d:19:ef:ea:f5:78:26:
39:1c:3f:4a:71:ee:6e:09:12:e5:3d:44:62:59:28:
de:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:2E:2B:9B:24:09:F1:23:E6:B3:53:22:6B:10:A1:93:EC:D8:87:32
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/56E87576CCB811EEA011027C775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.218.253.0/24
Signature Algorithm: sha256WithRSAEncryption
d0:1a:b7:ad:7f:80:74:73:06:48:35:d1:b7:9e:ea:a3:a6:5a:
8f:96:39:ac:6b:bb:7c:06:ea:a4:09:d4:de:f5:1a:06:05:c6:
00:49:05:c4:c7:d2:b2:cb:de:4b:64:f4:a3:f4:65:60:27:af:
ea:7d:c2:21:4a:56:04:6c:82:9c:71:33:8d:8e:a7:81:38:67:
c4:7e:44:29:51:66:a7:49:5f:0b:d5:63:99:34:b9:a4:a0:08:
63:9d:e1:5b:cf:16:83:b9:29:bf:be:ae:d1:49:cd:93:47:b0:
70:7a:f9:e9:30:72:83:59:81:0b:3d:1f:20:f3:d7:ab:09:1f:
c8:ef:98:5e:ee:1c:cb:19:07:5d:3b:88:12:95:c4:12:3d:25:
c1:f7:cd:ce:9c:d3:b3:b6:2b:2f:ae:8d:39:9c:49:45:03:30:
4a:9a:79:f4:72:1d:2e:e3:54:cc:9e:11:85:fb:41:b8:6b:9b:
59:fb:72:13:a6:8f:da:28:9b:4d:35:68:3a:c7:46:2a:26:37:
51:c3:db:a1:40:49:83:a6:a0:e7:d0:ce:3c:6b:87:a8:c0:c0:
14:77:c7:30:c1:dd:04:ae:b5:37:70:ab:0e:0b:59:8a:04:99:
77:61:fd:b8:a2:ea:75:2a:df:c9:98:62:eb:84:05:cb:82:e9:
1d:36:b5:8f
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAIrfMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQwMjE2MTA0NDE2WhcNMjQwNDI2MTA0NDE2WjAYMRYw
FAYDVQQDEw02NWNmM2M4NC04Y2EwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEA2BQ2quXzPiNQoXYH/dX+CM175wWL/zgCj3MSqYDlp9tzCZzVtm5VcFfL
T/SFvTE49Ekidd0jJF/aUa9RTTrhVnwoGtg1xQY2gVNHr2XyUABKWI2dK5Uf6VUI
up6Bf/6o8zWys5W6wFgdmZ8Jky3FkJ+gPiVLZjHNJ7MOsScZ33oGwiJ74ad7Vuaj
6z00J7lB0n6LFTDd6c3WonUBSOLD3jSIXCgHYsm3dwAI0SflezjwdN/JFxj119LW
3w1qL/SVuGeKwgGLYgo4uk6jgUoIquqlWmNu9Jm5ug4a4m3Fc4+NAvz2Otk5eS0Z
7+r1eCY5HD9Kce5uCRLlPURiWSjeqwIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFIIu
K5skCfEj5rNTImsQoZPs2IcyMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC81NkU4NzU3NkNDQjgxMUVFQTAxMTAyN0M3NzU0MTJFNi5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmtr9MA0GCSqGSIb3DQEB
CwUAA4IBAQDQGretf4B0cwZINdG3nuqjplqPljmsa7t8BuqkCdTe9RoGBcYASQXE
x9Kyy95LZPSj9GVgJ6/qfcIhSlYEbIKccTONjqeBOGfEfkQpUWanSV8L1WOZNLmk
oAhjneFbzxaDuSm/vq7RSc2TR7BwevnpMHKDWYELPR8g89erCR/I75he7hzLGQdd
O4gSlcQSPSXB983OnNOztisvro05nElFAzBKmnn0ch0u41TMnhGF+0G4a5tZ+3IT
po/aKJtNNWg6x0YqJjdRw9uhQEmDpqDn0M48a4eowMAUd8cwwd0ErrU3cKsOC1mK
BJl3Yf24oup1Kt/JmGLrhAXLgukdNrWP
-----END CERTIFICATE-----
Generated at Fri Apr 26 11:01:36 2024 by rpki-client on console-ams.rpki-client.org