Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D8CC1A7ACCA411EEB82D355D775412E6.roa
File: D8CC1A7ACCA411EEB82D355D775412E6.roa (raw, json)
Hash identifier: eNeM9S1I1Kr9OfEO0zV1ceA7cbtSq8JndabH0HjlVBc=
Subject key identifier: 5B:9A:41:89:71:96:FE:6F:CB:D8:EF:BD:6C:84:F5:9F:A6:40:88:A2
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 8A2D
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D8CC1A7ACCA411EEB82D355D775412E6.roa
Signing time: Fri 16 Feb 2024 08:24:48 +0000
ROA not before: Fri 16 Feb 2024 08:24:44 +0000
ROA not after: Fri 26 Apr 2024 08:24:44 +0000
asID: 9009
IP address blocks: 154.218.198.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 35373 (0x8a2d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Feb 16 08:24:44 2024 GMT
Not After : Apr 26 08:24:44 2024 GMT
Subject: CN=65cf1bd0-4850
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:a8:95:d9:26:1b:4b:b4:14:28:ae:1a:f5:1c:
f6:28:8f:47:c0:64:be:e1:7b:d7:3c:36:3d:ae:d6:
a1:7b:eb:5d:72:de:ed:6a:fc:78:a6:d1:52:5f:be:
ac:6d:0a:46:bc:82:95:bf:34:54:07:a9:cd:f1:b1:
63:17:c8:fc:d1:f8:c0:09:72:92:4e:b5:fc:52:4f:
44:34:a5:dd:d8:55:8c:83:dd:4b:70:3a:a7:f2:1d:
d1:58:77:1d:c2:4c:4b:21:be:83:af:b3:d8:b6:cd:
ee:88:7c:dd:78:27:ac:40:b9:27:8c:15:6d:c9:67:
88:7b:48:67:b1:2d:92:1e:44:25:38:47:fe:97:bc:
ca:b1:71:dc:59:94:55:f1:15:f6:b4:1b:c6:d7:60:
55:7e:d5:00:09:6b:17:d5:86:17:d7:46:fc:bd:fd:
bc:8e:87:f8:5d:d4:12:ad:bf:37:a7:9b:61:93:38:
6a:28:08:90:de:3b:55:5d:cc:4d:4e:cc:7d:97:91:
d1:68:1f:bd:79:59:ae:60:80:9f:49:80:ad:5b:cf:
15:d4:08:94:27:8b:7d:64:43:d6:35:83:07:ec:87:
ae:f5:1e:0f:1e:d5:fd:50:53:96:7c:ba:29:5b:20:
61:22:63:47:e4:ed:41:26:ed:3f:d3:48:8b:1a:1c:
8c:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:9A:41:89:71:96:FE:6F:CB:D8:EF:BD:6C:84:F5:9F:A6:40:88:A2
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D8CC1A7ACCA411EEB82D355D775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.218.198.0/24
Signature Algorithm: sha256WithRSAEncryption
c1:bd:96:ea:3d:b7:cf:a9:c9:07:fd:92:91:eb:4c:8d:56:4a:
a2:06:b0:b4:fe:84:b3:a4:af:6f:52:5d:de:43:21:0b:68:0a:
a1:d6:b4:43:a8:e7:52:d9:da:a2:09:a1:d0:8d:f1:2d:7b:81:
44:7d:b3:b3:8e:d8:ba:57:89:95:8a:a7:71:69:f8:f6:3a:82:
47:43:40:b4:47:ed:c1:9b:b2:0b:a6:f0:94:9b:c1:31:cf:8c:
07:64:a9:30:27:d7:4e:f6:2c:38:f9:15:e0:e4:01:7f:a8:ec:
cf:a4:d6:0b:29:86:98:90:8b:d3:e0:7e:f8:85:16:78:fa:0a:
1a:21:f4:08:a7:16:74:78:f6:26:8e:12:e7:f5:44:fe:57:7a:
55:3a:87:6c:5a:06:a6:cc:ea:b4:cb:d4:09:44:09:3c:22:e3:
3a:d2:ca:d3:f0:b9:ee:80:45:be:c5:6d:fd:78:83:6e:12:04:
06:ab:1a:4d:b9:40:c9:54:52:d3:c1:e3:13:80:22:ba:f8:ff:
c3:3f:21:f5:59:e7:27:78:33:fe:a1:65:65:60:71:ac:16:1c:
53:b3:3b:7d:ac:89:b8:08:2e:07:54:45:45:2f:2b:8c:58:78:
ba:10:ef:94:1b:66:13:89:ec:67:87:6a:d4:34:ef:5f:b1:16:
71:0d:9e:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 26 11:01:49 2024 by rpki-client on console-ams.rpki-client.org