Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F67A01F2CCA611EE95998B60775412E6.roa
File: F67A01F2CCA611EE95998B60775412E6.roa (raw, json)
Hash identifier: aAenvv6Jyu2n7RZLYNjpJ14WyESyHkZ3Vq43SmglukM=
Subject key identifier: 2B:F7:8A:AE:E9:97:B5:A4:1F:81:5C:21:A6:CB:21:F7:0B:02:7A:6C
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 8A3D
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F67A01F2CCA611EE95998B60775412E6.roa
Signing time: Fri 16 Feb 2024 08:39:57 +0000
ROA not before: Fri 16 Feb 2024 08:39:53 +0000
ROA not after: Fri 26 Apr 2024 08:39:53 +0000
asID: 9009
IP address blocks: 154.218.205.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 35389 (0x8a3d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Feb 16 08:39:53 2024 GMT
Not After : Apr 26 08:39:53 2024 GMT
Subject: CN=65cf1f5d-27cf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:05:ff:fc:3f:26:73:23:e9:57:a5:69:f5:1a:
87:ed:58:6c:fb:c9:4f:1b:65:8c:73:d5:f2:f7:ec:
e9:a8:b7:fd:46:7b:31:73:d9:5b:92:40:3e:30:e3:
43:78:b3:0c:c6:c4:55:5e:7e:a0:7c:18:cc:67:ee:
78:7e:85:6b:be:dd:7b:eb:b2:6b:a6:60:35:73:63:
08:5f:19:ca:2f:ee:65:d0:77:b1:5b:25:87:c2:7f:
fa:a6:7b:00:f9:c9:35:a3:49:57:eb:52:e8:37:29:
ab:6a:a5:a5:d3:c7:3d:01:ba:8b:36:aa:44:4a:11:
46:1e:4d:dd:46:35:cc:77:48:47:b0:4f:12:c2:cd:
3a:1f:59:76:2f:74:ff:10:e6:61:8f:15:01:04:e1:
ad:51:53:26:50:7b:12:45:8e:fd:90:f1:73:06:f1:
88:80:a9:38:73:c3:37:f3:04:81:96:7b:4b:59:68:
ff:1a:c8:48:03:9e:90:a3:00:58:da:8f:c6:6b:2a:
b1:07:9a:96:92:75:06:78:63:93:fc:8a:84:12:30:
38:ec:34:f3:70:f0:2b:a2:c0:d1:53:1b:3f:ea:ba:
a8:29:a9:83:e8:d6:4a:9b:ab:ea:e5:90:3a:8b:80:
aa:be:97:14:1b:dd:57:a7:e4:f7:c3:0f:dd:a8:92:
b9:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:F7:8A:AE:E9:97:B5:A4:1F:81:5C:21:A6:CB:21:F7:0B:02:7A:6C
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F67A01F2CCA611EE95998B60775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.218.205.0/24
Signature Algorithm: sha256WithRSAEncryption
13:e6:72:ac:47:d9:b2:e7:4b:b0:c0:0a:3b:db:05:fb:51:cd:
19:26:05:40:71:a7:9b:ef:44:1d:16:86:a9:17:55:3d:56:18:
0c:bd:75:3f:2a:5d:59:6c:fc:20:74:fb:3b:57:03:96:f8:f1:
26:63:45:9f:77:32:c8:6c:a1:85:2d:a3:41:18:a9:0f:ff:3b:
54:ff:39:98:d8:5f:3f:27:da:1b:68:5b:52:cb:ec:f2:86:6b:
ce:34:13:bd:a6:5a:05:8c:a4:44:09:4d:9a:38:34:cd:f2:02:
90:07:b4:87:bd:c1:8c:77:35:6c:c9:af:28:6c:aa:70:6e:e9:
fe:57:c1:93:e6:9b:d1:07:6c:36:dc:7b:b8:37:08:52:0c:19:
6b:52:39:91:93:d5:25:7b:2d:21:27:b9:29:a7:a8:68:83:c6:
9a:09:12:a0:81:32:58:08:1f:df:30:f0:38:b3:8f:74:1e:4d:
8c:0a:c2:1d:fb:e3:a1:43:cc:a7:de:84:e0:75:51:be:56:e6:
20:42:33:c5:db:a0:64:9e:1c:4e:fa:f1:2e:08:3a:23:6b:b9:
66:35:d4:85:ee:d6:55:c5:41:cb:06:9f:f6:68:47:25:19:c4:
b8:20:b8:20:7c:fd:d5:15:a3:c0:f4:4b:31:d9:2a:cb:49:20:
a3:12:43:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 26 11:01:50 2024 by rpki-client on console-ams.rpki-client.org