Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8210A7C2CCB411EEA9ECD175775412E6.roa
File: 8210A7C2CCB411EEA9ECD175775412E6.roa (raw, json)
Hash identifier: E6uTh9zesASbZL41SqOP44vj1lI/6p4iGSOZJAFtS8Y=
Subject key identifier: BB:24:C2:23:85:CC:41:03:AC:FF:91:62:22:F8:BD:54:34:39:95:F6
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 8ABB
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8210A7C2CCB411EEA9ECD175775412E6.roa
Signing time: Fri 16 Feb 2024 10:16:54 +0000
ROA not before: Fri 16 Feb 2024 10:16:51 +0000
ROA not after: Fri 26 Apr 2024 10:16:51 +0000
asID: 9009
IP address blocks: 154.216.224.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 35515 (0x8abb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Feb 16 10:16:51 2024 GMT
Not After : Apr 26 10:16:51 2024 GMT
Subject: CN=65cf3616-dd0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:f8:b8:b1:0a:1d:6e:3f:a6:90:d0:7b:c3:f0:
f8:f0:25:0d:f6:45:26:4f:30:b9:16:f5:40:ff:b0:
bd:e3:d6:49:72:b0:f9:1e:66:eb:4d:fe:e6:44:c6:
9e:41:1c:05:ca:d3:db:e3:7c:57:45:36:a3:d0:95:
6f:35:f7:44:77:9b:64:b5:17:28:83:11:3e:d5:94:
83:94:5d:77:9d:46:03:2d:e6:9e:1c:fd:e4:36:93:
e5:4e:82:5a:a6:9d:aa:47:c6:66:a6:c1:ee:f1:de:
92:80:0b:d5:05:d3:0f:d9:5b:90:e5:e0:6b:be:7a:
5f:0b:28:46:b5:fa:9c:0e:c5:d1:84:6a:94:fb:28:
43:80:5d:03:eb:ac:9e:e0:df:81:4e:fd:8e:0a:dc:
d9:f6:5f:77:8d:bf:2c:5e:c6:92:ad:62:ba:e1:3e:
f2:21:6f:a7:0e:c2:bb:ec:e5:d1:6e:77:77:2f:02:
cd:6e:7c:57:7a:65:a8:d8:99:df:9d:a6:c6:06:81:
34:82:3b:a2:68:8e:95:ab:51:c0:68:63:f9:cd:98:
b0:ca:53:7e:5f:ad:85:33:6e:c5:98:e8:d2:35:c7:
8f:86:5f:ce:96:c5:85:0e:9e:38:6d:45:7c:74:22:
bb:8d:7c:6d:84:08:36:9d:76:f6:31:b6:75:ca:7f:
9e:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:24:C2:23:85:CC:41:03:AC:FF:91:62:22:F8:BD:54:34:39:95:F6
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8210A7C2CCB411EEA9ECD175775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.216.224.0/24
Signature Algorithm: sha256WithRSAEncryption
87:58:8e:ae:29:bb:6c:1e:48:ce:ba:47:aa:bb:2a:5e:cf:5a:
56:66:08:66:d7:ff:de:d8:3e:32:87:92:bf:f1:da:01:d8:c6:
93:e2:ce:95:64:4b:f5:9f:4a:3a:9d:a4:87:75:e7:54:96:7d:
61:d1:c1:bc:c5:1b:70:ea:a5:79:c0:dc:5e:c0:99:34:dd:bf:
4e:30:1f:10:33:a9:35:e1:03:12:6f:7d:e0:44:57:5c:02:42:
f3:c2:9a:7c:66:ae:3a:7e:23:2e:07:3d:f9:8c:b8:a5:9e:c3:
4a:4d:75:10:44:d0:59:79:ff:1a:33:4f:16:a6:11:95:11:5c:
3a:10:46:4a:52:38:74:2a:52:82:d2:4c:d9:df:0b:14:bd:0d:
36:f1:de:8f:11:27:7a:f1:86:6f:5b:bc:45:f9:07:30:c2:75:
d3:81:6c:03:dd:36:0c:50:8e:76:b6:51:a7:b9:6c:d3:52:6e:
95:d8:53:98:e3:ff:54:bd:e0:d6:cc:45:38:71:68:60:09:73:
44:e1:db:e9:54:1f:de:ff:8b:7b:17:a1:cb:7a:c2:df:7e:f9:
0e:eb:b2:40:66:01:de:d7:86:bb:4d:1f:19:d0:59:05:fd:01:
ab:64:54:8a:0e:5d:87:48:18:c0:17:b4:09:1f:5a:46:d4:a0:
e3:23:f8:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 26 11:01:41 2024 by rpki-client on console-ams.rpki-client.org