Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/CBA6DA52CCA811EEA4D9A563775412E6.roa
File: CBA6DA52CCA811EEA4D9A563775412E6.roa (raw, json)
Hash identifier: qOObaUyKiY326wFPmZZm3nPYtwwErdshonacTlHZVxQ=
Subject key identifier: 73:7A:83:CF:73:92:A2:BC:38:CB:57:64:9E:02:5F:3F:77:B8:65:8B
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 8A51
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/CBA6DA52CCA811EEA4D9A563775412E6.roa
Signing time: Fri 16 Feb 2024 08:53:04 +0000
ROA not before: Fri 16 Feb 2024 08:53:01 +0000
ROA not after: Fri 26 Apr 2024 08:53:01 +0000
asID: 9009
IP address blocks: 154.218.210.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 35409 (0x8a51)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Feb 16 08:53:01 2024 GMT
Not After : Apr 26 08:53:01 2024 GMT
Subject: CN=65cf2270-5d86
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:eb:c8:1d:f4:b9:27:04:80:7c:64:93:fc:b2:
01:aa:8b:1f:0f:82:f5:0f:6f:8c:76:b4:a4:d6:ad:
df:8d:3d:e5:24:0a:42:3c:9f:e6:02:7d:1a:76:1f:
f4:51:fe:4f:de:f7:14:7c:a0:fc:ae:47:1b:f3:48:
45:f3:e4:00:5f:65:98:5b:a9:fe:69:df:9d:f1:7b:
ac:bd:1c:9c:75:ed:c6:2e:b0:3c:6e:3e:6b:78:91:
46:8a:34:e0:85:f9:eb:dd:b7:c2:e3:fe:82:2e:67:
6d:a9:d4:02:6d:17:9b:79:27:c6:b5:24:9e:6c:9f:
3e:5b:6b:a8:b5:25:25:2b:3f:e2:bc:c0:b5:99:b6:
9a:2d:51:ca:09:7b:88:d3:b3:c6:69:d3:d7:d3:08:
d1:7f:31:80:9b:33:29:92:9e:1a:6f:93:e6:8b:99:
b7:93:2f:44:1e:97:ef:59:e2:16:d8:83:04:bb:83:
ee:73:a7:23:92:60:81:db:7d:d9:e8:fd:51:f0:4c:
38:05:25:b5:61:9c:c3:58:96:42:5f:3c:e6:73:06:
a3:a8:9f:b0:ea:80:ab:72:91:fb:f4:fc:10:a6:20:
48:87:3f:91:cd:20:d2:8b:16:97:de:60:09:ed:7e:
14:5f:b4:fd:44:6f:b6:35:c6:d2:f9:c6:3c:52:f1:
7b:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:7A:83:CF:73:92:A2:BC:38:CB:57:64:9E:02:5F:3F:77:B8:65:8B
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/CBA6DA52CCA811EEA4D9A563775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.218.210.0/24
Signature Algorithm: sha256WithRSAEncryption
22:7b:c4:64:e4:f3:87:0e:3d:99:ba:9c:ad:33:b9:2f:5d:55:
cb:00:cd:e8:de:53:56:26:ba:8d:e5:3e:88:ea:43:ae:e8:b7:
33:30:94:d3:01:d0:28:09:9d:97:10:6a:a2:2d:48:25:53:38:
60:2b:88:f1:be:fe:6f:1b:21:15:f2:39:d6:44:5f:33:b3:88:
32:6d:ad:df:5b:31:3f:ec:e7:c8:60:a0:78:c3:f2:d5:b5:a9:
25:5c:29:37:01:57:8c:29:76:ec:f1:2f:1f:51:74:8b:cd:ba:
91:72:3b:3d:1e:bf:67:59:5a:75:92:76:75:51:fe:9c:1c:19:
d2:71:c0:51:f2:d9:9e:e6:f7:a2:06:4f:5b:e7:67:a2:69:30:
50:5f:8b:c2:66:cc:aa:4a:f5:5f:17:a7:dc:69:57:5c:dc:41:
f1:c0:4c:2a:4a:9f:3e:2a:01:d0:69:43:74:f1:9e:e6:71:66:
89:a2:c5:e5:a8:73:5a:52:bb:33:a2:29:e4:fd:d4:bd:3d:f6:
44:71:39:54:08:44:7c:70:59:58:d0:60:37:96:bf:b2:1e:aa:
df:61:5e:f6:f5:d7:ff:f3:c1:20:37:03:ff:81:26:e4:75:a7:
84:73:d4:d5:f3:06:83:3b:96:03:74:80:68:cb:0d:07:a5:6c:
6f:4e:b5:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 26 11:01:49 2024 by rpki-client on console-ams.rpki-client.org