Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C851A8F6CCB111EE876C9271775412E6.roa
File: C851A8F6CCB111EE876C9271775412E6.roa (raw, json)
Hash identifier: daizCCBIfj52BLM0o3HBAM4HO8B4/sctTnbnFeI+J7M=
Subject key identifier: 14:48:C4:AB:47:A7:A8:C3:46:49:E1:5F:04:0C:C9:B6:A8:43:49:89
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 8AA1
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C851A8F6CCB111EE876C9271775412E6.roa
Signing time: Fri 16 Feb 2024 09:57:24 +0000
ROA not before: Fri 16 Feb 2024 09:57:20 +0000
ROA not after: Fri 26 Apr 2024 09:57:20 +0000
asID: 9009
IP address blocks: 154.218.230.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 35489 (0x8aa1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Feb 16 09:57:20 2024 GMT
Not After : Apr 26 09:57:20 2024 GMT
Subject: CN=65cf3184-750b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:68:e7:51:3f:d4:f1:20:0a:9e:51:e0:ac:2a:
e8:6f:c4:87:07:1e:2c:76:4a:ae:71:d8:40:20:7a:
cc:3f:b8:b6:e6:1d:d9:74:32:7a:77:49:66:c9:85:
94:ee:bc:60:c7:27:a1:b3:68:53:a7:16:a6:b6:cd:
7f:77:8f:3c:f4:7f:d9:74:b4:32:ac:0c:18:ca:58:
86:7f:b1:7b:ed:7f:24:e4:9e:32:c6:ef:d3:20:81:
aa:32:1a:5d:f1:17:6f:fb:86:c0:2d:75:3e:0d:06:
78:50:22:3f:c7:8d:60:d9:5c:c3:98:14:f9:64:d4:
4f:bd:aa:6f:14:e8:a3:91:7b:54:e3:10:54:c1:d2:
6c:1e:6d:e7:07:af:9b:10:13:5d:0c:ac:0b:91:64:
57:1e:8b:93:25:87:69:f0:fb:28:28:8b:4a:c8:74:
f2:c6:de:20:05:a8:54:4b:19:1e:7c:c5:d2:65:85:
09:dd:de:03:43:b1:fb:04:fa:ea:63:f1:f4:ca:b0:
5d:e5:6d:48:e4:ad:d8:98:e5:ca:31:c1:4a:7c:2b:
46:07:bb:d4:88:91:fc:96:a0:99:43:96:8b:82:e9:
84:49:75:b2:21:1b:c2:8e:91:2d:ba:2c:58:53:00:
56:6a:5b:3a:c2:5a:5d:84:c6:a3:3b:3e:ed:2e:8e:
8c:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:48:C4:AB:47:A7:A8:C3:46:49:E1:5F:04:0C:C9:B6:A8:43:49:89
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C851A8F6CCB111EE876C9271775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.218.230.0/24
Signature Algorithm: sha256WithRSAEncryption
78:62:30:89:76:fe:e3:14:35:41:95:cc:8b:d2:0c:75:50:d6:
18:03:39:ad:fe:96:26:42:48:1d:a8:4e:35:be:39:d1:a3:99:
1a:14:f7:c0:a1:46:5f:96:18:ae:ab:44:ee:47:d3:12:ee:c8:
4d:b3:82:71:7c:3e:a8:9b:a1:d7:40:cd:1c:fb:b4:d7:d1:c3:
47:3e:6d:51:ad:b0:b9:3b:aa:ef:65:cf:1a:87:25:01:c2:b0:
46:2f:53:b9:99:71:3c:de:c6:5a:27:f0:84:3a:56:4a:2d:35:
de:3d:8f:14:bb:81:02:0e:50:f2:69:f2:4f:71:fb:6c:48:3b:
4d:b0:7d:98:c6:0c:54:6f:de:98:25:a8:32:44:57:ef:19:1e:
a0:0e:55:c3:51:56:b8:fd:8e:93:fe:14:fb:1c:d0:04:46:a6:
33:8e:25:d7:eb:e1:d3:77:fb:40:00:04:62:fb:ab:27:cd:d8:
49:73:a8:62:93:57:57:f8:a0:8d:d4:c3:46:da:40:47:6c:8d:
40:9d:e2:e3:d0:3e:ca:7f:0b:c2:b9:00:66:54:65:76:96:72:
91:9f:57:3d:66:75:53:78:12:4e:c9:65:aa:63:f9:1f:58:ad:
ec:2b:98:34:7a:fb:56:71:2a:1e:c7:62:84:eb:ff:83:0f:e5:
1c:a7:7d:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 26 11:01:49 2024 by rpki-client on console-ams.rpki-client.org