Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/96E1AAFECCA811EEA5241563775412E6.roa
File: 96E1AAFECCA811EEA5241563775412E6.roa (raw, json)
Hash identifier: fmzSuEGoaGCyWq5VjOpEPKLceWne0TXJd0k12hUcGoo=
Subject key identifier: C8:00:D8:E1:E5:F2:DD:CD:78:C9:CB:D9:54:44:90:56:E2:1B:FF:34
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 8A4F
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/96E1AAFECCA811EEA5241563775412E6.roa
Signing time: Fri 16 Feb 2024 08:51:35 +0000
ROA not before: Fri 16 Feb 2024 08:51:32 +0000
ROA not after: Fri 26 Apr 2024 08:51:32 +0000
asID: 9009
IP address blocks: 154.216.197.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 35407 (0x8a4f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Feb 16 08:51:32 2024 GMT
Not After : Apr 26 08:51:32 2024 GMT
Subject: CN=65cf2217-059e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:4a:84:57:b5:fd:4a:35:40:54:92:9d:33:70:
fc:92:7f:6b:7b:db:81:38:7e:32:d6:6d:c2:f1:b7:
f3:4a:6c:81:83:3b:47:7e:83:f0:09:38:92:7e:c5:
48:83:d3:b2:b9:2b:72:35:23:df:44:46:34:33:4e:
b6:94:b8:50:6e:d3:d0:f9:31:93:d8:23:cd:56:da:
ea:a6:39:04:4d:22:84:93:e1:97:9c:95:5b:15:18:
40:a1:8b:aa:36:cc:38:21:ff:c5:75:13:4f:8c:ce:
10:e1:18:03:a5:78:34:63:92:77:c1:1f:35:d3:a6:
ad:c6:f2:70:06:05:8b:a4:9b:1e:57:60:ad:f3:30:
3b:d3:5f:46:6d:83:f5:82:4e:e5:c4:5a:51:a3:be:
13:0c:59:f1:2c:b3:1e:90:d5:ad:45:1e:71:9a:4d:
1d:4c:f5:9a:ce:86:56:e4:1a:0b:dc:00:8d:62:2d:
c9:b0:75:56:43:5a:d8:5d:74:e1:ce:74:33:3c:93:
7c:57:09:f5:31:de:69:1c:c1:8d:80:ac:d6:a6:d8:
1a:b7:20:bc:05:7a:a5:fb:c0:b0:58:86:3d:a1:8e:
92:97:5f:bc:98:2f:0a:d2:75:19:ec:6a:fa:2d:01:
62:6d:31:d6:f5:3d:de:41:d3:b4:8f:2a:b0:10:25:
df:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:00:D8:E1:E5:F2:DD:CD:78:C9:CB:D9:54:44:90:56:E2:1B:FF:34
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/96E1AAFECCA811EEA5241563775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.216.197.0/24
Signature Algorithm: sha256WithRSAEncryption
04:47:8a:93:b8:9f:81:89:c0:b2:cb:3b:b5:fc:2d:74:fc:0a:
cb:8b:a7:30:20:78:72:b0:d2:fe:58:f9:46:7d:9d:d9:55:f9:
18:f8:ba:87:b3:99:fc:2b:c6:8e:7c:b6:4e:55:4f:77:da:23:
e0:fa:20:86:39:ba:ce:cd:74:96:d6:4b:63:6b:7f:8f:fa:18:
63:b5:d1:30:6e:10:63:37:5a:5c:99:90:24:36:a8:aa:77:82:
65:46:ec:db:b0:c5:2e:cf:ee:eb:41:74:72:14:7d:65:cd:2a:
82:ff:54:af:89:af:fb:fb:b9:1b:48:03:d4:dd:19:d9:35:bc:
6f:44:9c:80:e5:69:6b:87:e3:6f:77:cd:ca:33:f4:f3:6e:ab:
02:5f:aa:44:2e:8f:f3:eb:2d:eb:e5:13:de:d0:32:47:da:0b:
f1:53:e1:3e:7b:8c:b6:8d:ba:70:08:35:26:28:d2:c6:9c:82:
a3:d9:c5:f2:ee:72:66:d3:11:96:8d:83:bc:5d:32:77:4d:ac:
90:85:bb:83:4e:e0:32:a4:5f:3b:0d:fb:6f:7b:2f:6f:88:bd:
3f:d7:2a:26:86:82:33:26:79:8c:68:e3:ab:3c:82:d2:ca:37:
cb:1a:f4:d7:09:59:8f:b5:16:a9:78:c1:13:a0:aa:66:99:20:
7c:d5:6c:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 26 11:01:43 2024 by rpki-client on console-ams.rpki-client.org