Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/6CA3CDFCCCA411EEBDEB805C775412E6.roa
File: 6CA3CDFCCCA411EEBDEB805C775412E6.roa (raw, json)
Hash identifier: 3ebyJTB/JQxPSDOthWn1cqqXZa1wS30l41DMgOXZw+g=
Subject key identifier: BB:5D:CB:5B:E6:1E:24:BF:41:73:42:E5:D3:25:90:3A:FF:57:90:D5
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 8A29
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/6CA3CDFCCCA411EEBDEB805C775412E6.roa
Signing time: Fri 16 Feb 2024 08:21:46 +0000
ROA not before: Fri 16 Feb 2024 08:21:43 +0000
ROA not after: Fri 26 Apr 2024 08:21:43 +0000
asID: 9009
IP address blocks: 154.218.196.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 35369 (0x8a29)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Feb 16 08:21:43 2024 GMT
Not After : Apr 26 08:21:43 2024 GMT
Subject: CN=65cf1b1a-dbd3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f3:2b:8b:ff:42:d3:eb:fa:88:99:8a:ef:e1:76:
44:c0:be:a0:cb:c6:ef:99:21:57:a0:3c:c9:b9:ef:
c2:9b:c2:3d:e4:6e:4d:70:9b:e5:8b:a3:d6:cc:45:
bf:13:f4:54:ac:82:5f:5a:c3:86:6f:15:b4:23:2f:
24:18:ad:b5:40:3c:c4:61:48:af:dd:f8:c6:53:51:
57:99:82:b7:c0:b0:23:f0:53:d7:a6:89:13:4b:4f:
eb:25:07:8f:99:fe:25:df:10:e8:6f:1a:c1:63:4b:
71:0f:79:52:cf:03:38:a6:7f:6d:c9:65:f2:ca:ac:
bb:d6:93:c7:68:36:f2:7e:5f:ff:c8:19:8f:b3:34:
9a:0e:b2:1e:ce:54:b7:b7:1b:80:3e:d4:0a:2a:b9:
2b:2a:f6:ff:43:96:f4:74:84:07:04:1d:87:c7:27:
a7:b2:14:fd:fa:e4:3a:0e:7c:23:94:22:8d:79:a8:
f1:bb:74:e0:9c:8d:f3:24:ef:de:e3:31:3a:22:01:
8b:2c:99:d1:9c:e6:26:3d:02:ec:54:9f:aa:c3:e2:
73:10:7e:9d:f3:64:1c:47:ba:dc:d8:1e:ae:23:52:
4e:ce:42:02:48:a1:55:70:07:52:24:dc:eb:e9:45:
b9:64:07:fb:63:f8:d3:01:2e:3e:7a:a9:9a:da:d6:
33:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:5D:CB:5B:E6:1E:24:BF:41:73:42:E5:D3:25:90:3A:FF:57:90:D5
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/6CA3CDFCCCA411EEBDEB805C775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.218.196.0/24
Signature Algorithm: sha256WithRSAEncryption
ba:a0:e8:77:5d:9b:de:e3:02:e1:19:10:11:a7:dc:8c:18:9a:
3f:0e:c9:e3:f2:c3:57:1b:0f:b8:d7:96:64:e1:a5:a9:34:c0:
71:ba:11:a4:61:1f:45:54:26:e6:4f:b8:10:40:94:33:54:91:
45:cd:e3:52:43:51:86:56:46:9b:e2:fb:ca:59:69:65:52:a8:
97:66:1a:8d:ad:03:ee:0c:d0:79:4f:8c:27:b5:c0:54:f3:da:
5b:6e:c7:fe:63:97:1c:93:fe:b1:c0:2f:62:42:06:ea:12:68:
7f:17:4d:37:40:aa:42:a6:57:8d:4b:49:7b:24:ee:0b:9d:e5:
b1:8d:91:cc:78:cc:50:1b:28:85:56:28:f4:44:c6:9c:7a:a2:
d1:f5:7c:36:8d:97:b2:d9:95:60:9b:76:1c:93:16:cb:e8:46:
89:3f:46:d9:43:a9:de:bf:67:e0:04:e8:5f:38:bf:93:67:8f:
af:3f:16:a5:44:ea:cd:53:73:79:15:ab:b1:b7:2a:09:db:38:
1c:65:18:b9:eb:0b:f6:4f:3b:21:0b:b5:e5:b3:c3:63:a1:44:
9f:61:29:03:68:7a:da:ba:5b:84:5b:f0:eb:de:73:a1:0f:59:
45:f0:61:99:88:97:3a:92:aa:18:be:cc:d3:98:69:af:54:15:
f5:e5:cf:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 26 11:01:39 2024 by rpki-client on console-ams.rpki-client.org