Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A41FEF74CCAC11EE97707A69775412E6.roa
File: A41FEF74CCAC11EE97707A69775412E6.roa (raw, json)
Hash identifier: wGYCeYsAnsYQkAy0I/6XLhAvybW1NLGiMobFaO4+3Gk=
Subject key identifier: 27:83:8C:E5:FC:C0:4E:CF:E9:17:CD:E9:06:AA:12:48:24:E6:B3:48
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 8A73
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A41FEF74CCAC11EE97707A69775412E6.roa
Signing time: Fri 16 Feb 2024 09:20:35 +0000
ROA not before: Fri 16 Feb 2024 09:20:32 +0000
ROA not after: Fri 26 Apr 2024 09:20:32 +0000
asID: 9009
IP address blocks: 154.216.206.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 35443 (0x8a73)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Feb 16 09:20:32 2024 GMT
Not After : Apr 26 09:20:32 2024 GMT
Subject: CN=65cf28e3-d729
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:aa:36:86:73:0e:6d:bc:28:4a:7b:d8:2c:5b:
7f:80:49:54:a3:b8:33:39:4b:6f:8d:1c:33:7d:93:
89:e2:94:fe:28:f0:20:46:6a:c6:e7:2c:95:8d:79:
fa:f8:be:07:09:ed:55:59:03:e1:ff:75:b7:fb:bf:
e6:99:ac:4f:6f:f7:ea:fe:ac:ad:02:d8:e9:33:73:
94:ee:c6:61:7d:6e:f5:a7:79:d7:b9:7b:4e:65:ac:
d5:c9:9d:34:c7:73:20:92:a0:40:3c:07:2d:9d:14:
d4:d7:89:64:16:ce:0c:f9:38:2a:d2:46:ec:39:0d:
16:f7:02:f7:f3:43:c7:ce:1a:3b:7e:cb:b1:a5:08:
d2:e4:de:4e:1f:43:78:30:3b:bb:95:ec:69:8e:eb:
9b:3d:cc:6a:0b:06:1e:28:e4:ce:7f:17:65:8a:51:
ea:35:14:c1:5f:dd:34:6f:d6:7e:e3:85:97:af:41:
ea:45:2d:2d:dd:c0:83:ef:fd:d6:48:1d:cc:d2:fd:
c6:5d:09:03:e4:46:71:79:3b:15:4b:f0:ba:ab:7c:
72:29:ea:b1:93:ce:ee:55:f0:d6:40:20:e4:fa:71:
fb:24:96:72:b5:15:fb:67:3a:01:7f:fc:7d:82:41:
b0:1e:27:bd:58:26:71:30:42:37:23:d1:88:5f:19:
42:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:83:8C:E5:FC:C0:4E:CF:E9:17:CD:E9:06:AA:12:48:24:E6:B3:48
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A41FEF74CCAC11EE97707A69775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.216.206.0/24
Signature Algorithm: sha256WithRSAEncryption
83:05:62:0b:5b:4d:15:3b:59:3b:43:e8:a6:da:01:38:01:12:
8c:82:92:a1:e4:9a:41:d4:4b:f5:1d:f0:8a:ab:ed:89:97:c6:
95:a4:0f:3c:15:9f:89:44:9b:18:d0:d7:38:ce:ae:b5:92:50:
65:3f:79:ae:a8:29:2a:7d:1b:c8:49:8a:01:67:1a:e0:16:a6:
97:02:34:13:0b:42:33:08:a8:5a:a0:ae:59:d0:a6:ad:ab:b1:
80:07:af:6f:40:b7:64:24:e7:48:e1:7b:37:cf:04:c6:c7:0c:
e2:10:a4:c5:27:b8:ed:3b:77:f7:f6:de:f8:f2:c8:a5:05:3d:
c0:91:3a:59:0f:81:80:dd:36:d7:65:04:5a:85:d0:5c:29:71:
47:e2:8d:9f:03:a2:fe:cd:7a:63:21:bf:36:7a:49:fc:05:c5:
8e:81:47:8e:95:c5:d8:ed:f3:24:6b:48:45:e7:d6:9e:98:3c:
ee:60:b3:66:4e:58:72:07:54:a8:bd:de:ea:0c:7c:27:6c:93:
b6:2a:b5:e0:af:d3:e3:ef:3e:f1:5d:98:b5:63:5b:98:80:d4:
0f:63:54:b7:f6:7a:63:9c:bb:ee:73:e1:5d:f1:74:51:6f:0f:
24:43:1f:78:2d:4d:01:65:6e:22:53:15:9f:7e:05:62:f7:78:
67:f7:cd:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 26 11:01:45 2024 by rpki-client on console-ams.rpki-client.org