Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F6223FA4CCAA11EEBDC30967775412E6.roa
File: F6223FA4CCAA11EEBDC30967775412E6.roa (raw, json)
Hash identifier: npy97i7fWb+3WvPbzvLsnC+/d1/1tY2nCQx4xEqroOg=
Subject key identifier: 90:01:0C:16:27:BA:EA:CB:8F:44:76:8B:6C:14:69:FF:C5:17:8A:75
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 8A65
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F6223FA4CCAA11EEBDC30967775412E6.roa
Signing time: Fri 16 Feb 2024 09:08:34 +0000
ROA not before: Fri 16 Feb 2024 09:08:31 +0000
ROA not after: Fri 26 Apr 2024 09:08:31 +0000
asID: 9009
IP address blocks: 154.218.215.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 35429 (0x8a65)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Feb 16 09:08:31 2024 GMT
Not After : Apr 26 09:08:31 2024 GMT
Subject: CN=65cf2612-b712
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:d1:44:1b:82:b5:7a:1a:c6:4e:c1:e7:ba:8b:
17:5b:00:a1:39:0a:a5:35:09:95:48:8c:8a:c5:74:
5c:4f:18:10:c0:fb:73:de:6d:b4:15:71:79:bc:21:
37:93:21:17:e0:b2:37:d5:03:70:2f:e8:f8:ee:c1:
6f:3b:f3:cd:e2:e3:8e:1a:f8:ca:e2:69:b0:74:b6:
c2:16:85:fd:03:65:76:3b:23:ae:72:69:b4:d2:f5:
da:7e:9a:06:3a:ad:12:81:28:86:a7:ee:4a:a5:dc:
71:5b:de:59:76:e5:9d:c4:fa:1f:f5:98:30:eb:1e:
60:a3:3d:80:54:20:95:13:10:28:06:32:a4:a9:6b:
ae:cb:af:e0:50:af:57:40:98:13:ea:24:b0:fd:72:
00:56:d6:71:20:e3:95:13:58:f4:00:3d:05:c1:cd:
16:53:dd:ad:47:3b:83:9d:25:51:a7:dd:4b:f6:8b:
7b:cb:9c:82:2a:f2:41:cb:6a:c3:33:be:58:fc:17:
91:87:f1:02:43:98:ac:7e:ce:67:ad:44:4b:72:d9:
22:d0:c1:de:7c:13:bd:1f:de:85:4c:08:05:99:1b:
ad:9a:13:7b:8d:8c:a8:72:2c:35:83:3a:44:c2:a4:
12:b7:76:53:cd:d0:2d:47:6a:76:17:f9:d3:3e:29:
b9:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:01:0C:16:27:BA:EA:CB:8F:44:76:8B:6C:14:69:FF:C5:17:8A:75
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F6223FA4CCAA11EEBDC30967775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.218.215.0/24
Signature Algorithm: sha256WithRSAEncryption
8a:4b:ef:18:36:a4:ef:8d:da:7e:af:55:4b:15:6c:4d:c7:fd:
a0:08:64:c3:9c:7d:62:04:0b:3d:6a:f0:a3:e5:bf:76:af:d4:
83:72:89:61:d5:ca:52:5b:e8:16:ef:5d:66:a4:21:50:6f:40:
0e:71:a3:05:d6:46:3e:e1:da:a4:bf:08:48:db:93:45:0c:8d:
ad:00:67:d0:1f:6b:e5:3d:1a:df:f0:e7:8d:a4:b2:d8:34:59:
34:ce:fd:3c:38:e2:e8:8a:fb:4a:6b:51:80:52:83:40:a1:e3:
cc:c9:b7:41:33:00:ff:b6:79:a0:a9:f0:dc:94:07:f7:cc:0d:
e8:ac:17:c2:16:e9:17:fc:86:21:cb:64:0d:66:ef:6a:e8:15:
77:f6:c1:6c:88:0b:83:3f:d4:1d:c6:04:02:82:75:da:40:61:
10:25:20:da:56:21:30:1c:9e:40:8c:6f:21:cf:6e:b6:62:d4:
4d:81:84:79:7b:a5:4a:dc:13:f9:9b:67:25:09:39:cb:20:ff:
c2:35:bd:f5:64:15:2d:0e:a7:78:6c:c4:32:dc:b2:b5:62:d6:
e7:8d:40:7c:21:95:57:30:2e:ca:33:c3:c8:db:ed:78:36:d9:
03:2a:23:c3:c4:cc:e4:95:83:54:43:e2:ed:7e:d3:15:6a:8d:
73:b2:86:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 26 11:01:50 2024 by rpki-client on console-ams.rpki-client.org