Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/9B834670CCA911EE8BDAC964775412E6.roa
File: 9B834670CCA911EE8BDAC964775412E6.roa (raw, json)
Hash identifier: j5YDU4wZdjfvtwvXKCdVsk8OLQKy16FRq8V+YCAEZpE=
Subject key identifier: 6C:3D:68:14:EE:BC:9D:61:66:FF:0B:68:BF:D2:F6:B9:E5:C4:40:EF
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 8A59
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/9B834670CCA911EE8BDAC964775412E6.roa
Signing time: Fri 16 Feb 2024 08:58:53 +0000
ROA not before: Fri 16 Feb 2024 08:58:49 +0000
ROA not after: Fri 26 Apr 2024 08:58:49 +0000
asID: 9009
IP address blocks: 154.218.212.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 35417 (0x8a59)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Feb 16 08:58:49 2024 GMT
Not After : Apr 26 08:58:49 2024 GMT
Subject: CN=65cf23cc-4abe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:d7:14:a2:41:b3:d1:b1:66:8e:1b:13:1f:d4:
cb:ea:f9:f2:3a:46:d9:d8:4c:8d:9f:64:b2:17:e5:
de:3e:b7:7e:3a:0d:b9:e1:fc:f8:19:53:22:9f:8f:
36:ea:4d:cc:df:82:eb:c2:08:36:0b:e0:7f:aa:c1:
e6:4c:07:35:e7:99:2d:ad:e8:2c:7d:41:14:74:18:
96:ce:10:b8:3d:da:27:dd:61:67:70:c3:e6:c0:cc:
9d:ef:c2:53:4b:cd:71:77:87:ab:54:d1:9d:64:d0:
bd:94:f9:bf:18:3b:47:08:df:2f:04:de:3e:84:e3:
00:2a:d2:86:19:f1:11:c7:11:da:23:99:7d:34:c7:
74:bb:d1:a5:50:82:98:7a:07:1a:a9:45:a0:1a:aa:
a1:f9:7d:11:07:e0:23:2f:5d:e9:4e:e4:08:2e:14:
f8:e2:a4:ac:b3:6a:8d:87:97:c3:56:91:4e:50:58:
57:90:6c:30:5d:3b:c4:25:ff:50:23:0b:75:c0:27:
49:89:37:1e:b7:49:b5:47:b9:a8:92:91:95:bb:18:
0e:ed:33:86:4f:c3:6f:88:8f:18:24:f0:f6:51:db:
84:33:df:b5:c4:22:4e:69:11:c7:60:d7:97:ce:be:
91:bb:fb:59:fc:59:94:bb:c9:73:a0:20:89:0c:b3:
89:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:3D:68:14:EE:BC:9D:61:66:FF:0B:68:BF:D2:F6:B9:E5:C4:40:EF
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/9B834670CCA911EE8BDAC964775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.218.212.0/24
Signature Algorithm: sha256WithRSAEncryption
67:41:70:02:c6:af:0a:ab:46:62:46:fd:7d:f9:13:3b:74:2c:
3d:ca:78:a6:ef:d0:55:92:8c:57:f9:4a:83:a1:56:3b:c9:a1:
29:4c:52:9a:91:1f:c9:55:32:19:bd:15:78:6a:24:20:3d:7f:
ae:ed:63:59:6e:84:81:f5:81:a5:53:3e:4c:48:0b:20:d4:e1:
91:de:7e:fb:e6:6a:6c:93:f3:b5:e1:e1:d1:5d:5b:b2:83:c9:
0f:3a:ac:63:bb:54:f2:b5:59:e1:e6:38:41:5f:03:2b:d7:0e:
cb:bb:78:d4:a7:f8:8d:8f:47:9d:83:06:d1:e8:47:18:c0:67:
60:89:18:e4:95:63:db:bc:08:0b:19:73:9a:06:d7:42:eb:5b:
9a:9f:6b:18:a5:85:d2:f4:7b:56:e4:0f:72:68:26:72:21:bc:
4e:6c:3a:88:da:ab:80:19:db:02:05:74:75:a6:41:e7:16:84:
38:bb:a3:95:d5:a9:95:23:6c:47:6b:73:d6:a6:8f:e4:28:aa:
a5:8d:52:e3:79:4e:4b:26:21:f0:56:43:2e:9e:d4:9f:69:68:
f9:3b:f9:b3:9e:ca:ea:cd:1f:2e:3d:e2:e1:5a:66:f8:00:4a:
d4:8b:4b:73:d0:8a:26:79:50:42:b5:69:fa:d2:81:56:f8:3a:
df:63:8e:43
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 26 11:01:45 2024 by rpki-client on console-ams.rpki-client.org