Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/ECB42A80CCB511EE9F6D1678775412E6.roa
File: ECB42A80CCB511EE9F6D1678775412E6.roa (raw, json)
Hash identifier: dOekVFmvMoHoEd80VqmePAhCjmXnFXWtUnAohm9hAII=
Subject key identifier: C1:66:C9:B3:70:0A:D4:5E:8F:68:C6:A3:10:F7:3C:F3:AD:96:18:53
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 8AC7
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/ECB42A80CCB511EE9F6D1678775412E6.roa
Signing time: Fri 16 Feb 2024 10:27:03 +0000
ROA not before: Fri 16 Feb 2024 10:26:59 +0000
ROA not after: Fri 26 Apr 2024 10:26:59 +0000
asID: 9009
IP address blocks: 154.218.241.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 35527 (0x8ac7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Feb 16 10:26:59 2024 GMT
Not After : Apr 26 10:26:59 2024 GMT
Subject: CN=65cf3877-ac20
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:a4:81:dc:e6:de:67:b1:99:f0:f1:72:4d:2c:
68:bb:5e:6c:0b:5b:15:06:84:17:13:12:96:1a:4f:
cc:df:96:b7:10:ba:a3:c5:78:70:4a:27:1a:6d:f6:
43:0c:36:b5:6b:75:85:66:f7:10:5f:de:ce:1f:38:
fa:75:75:5d:08:2c:48:ab:84:d0:a1:57:96:64:55:
a4:5c:5f:6c:a6:c1:a9:bb:6d:9e:26:6e:a7:da:cf:
b3:c4:8e:d0:ea:31:c4:6d:df:44:4d:ba:06:f4:f2:
11:41:20:9d:a3:45:61:e4:81:9b:7a:0b:e7:8a:3f:
dc:00:9f:02:96:ea:41:e6:97:20:9d:c7:28:e8:eb:
41:0a:c5:e9:e7:9e:ee:e6:63:17:d5:5a:54:cf:f9:
cc:eb:42:36:10:34:34:e8:75:c5:1c:d7:a5:c9:e4:
4b:3a:a0:1a:6a:24:cb:cb:17:c6:c8:6c:bd:be:75:
e0:53:5e:6e:cc:c2:90:32:13:b4:06:67:f1:0e:7b:
40:45:99:b1:6d:a6:a5:bc:74:35:64:e6:4f:62:7d:
34:e9:d9:56:be:74:bd:e8:6f:fe:66:c3:eb:77:14:
51:8d:70:d2:51:86:a2:01:e4:e9:fd:e5:b3:e7:41:
84:95:14:4d:b9:16:88:c9:35:29:9b:4c:bd:a2:73:
65:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:66:C9:B3:70:0A:D4:5E:8F:68:C6:A3:10:F7:3C:F3:AD:96:18:53
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/ECB42A80CCB511EE9F6D1678775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.218.241.0/24
Signature Algorithm: sha256WithRSAEncryption
54:ca:56:20:c0:37:57:9f:af:34:8a:b2:37:b4:e5:34:19:d7:
3c:2c:5c:c9:45:eb:54:b8:6f:15:36:f3:69:19:d0:f6:eb:9e:
11:00:e4:70:0e:31:ca:61:02:27:00:9d:fe:dd:fa:fb:63:76:
e7:8e:ac:94:97:aa:31:5a:16:b0:4d:1b:b3:3c:53:93:f4:22:
32:de:f5:d0:b5:c8:78:a7:33:5b:9b:b3:68:9c:05:45:48:17:
a2:a2:e8:05:da:42:41:68:0b:bd:1a:57:56:ee:e9:c5:d2:59:
a3:6a:39:58:48:97:84:e8:26:11:e7:c4:bc:aa:e7:28:03:e6:
6a:7c:99:8d:f1:5a:2d:58:fa:3f:55:e4:c0:18:95:48:16:8e:
2a:ba:81:64:df:d9:83:e6:69:17:53:f4:63:91:22:bf:9e:2a:
9f:8d:2f:20:e9:7f:33:68:c0:5d:d9:17:7b:9f:ca:bb:97:10:
93:ba:20:3d:60:89:72:e2:0b:a5:b0:c2:7d:c2:3b:0c:b1:bb:
7d:eb:e0:cc:10:06:ab:f5:b0:43:3b:61:66:a0:8a:39:ce:16:
e8:0a:13:cc:01:76:d2:5b:74:6a:c1:dd:e8:ac:1f:38:ca:ae:
45:78:60:e8:cd:54:60:e5:e3:8a:34:86:08:56:fe:60:b0:5e:
92:0f:d6:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 26 11:01:50 2024 by rpki-client on console-ams.rpki-client.org