Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/FAF0CF94CCB611EE923BD179775412E6.roa
File: FAF0CF94CCB611EE923BD179775412E6.roa (raw, json)
Hash identifier: l5D3ku6Yh99nGadG7pLqyuqRKWCbI2UD1wqGQuOCn5Y=
Subject key identifier: 95:49:73:E9:D3:6E:86:07:ED:E3:7E:1F:13:15:D4:A0:83:BB:A1:F1
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 8AD1
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/FAF0CF94CCB611EE923BD179775412E6.roa
Signing time: Fri 16 Feb 2024 10:34:36 +0000
ROA not before: Fri 16 Feb 2024 10:34:33 +0000
ROA not after: Fri 26 Apr 2024 10:34:33 +0000
asID: 9009
IP address blocks: 154.218.246.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 35537 (0x8ad1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Feb 16 10:34:33 2024 GMT
Not After : Apr 26 10:34:33 2024 GMT
Subject: CN=65cf3a3c-c27d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:fa:3e:85:4c:99:b2:78:9c:8c:b1:82:e7:19:
87:57:f3:5d:f8:4f:b9:8b:5f:b8:5b:82:9f:5d:d9:
b3:72:7c:05:88:ca:47:c9:de:d0:4c:9c:e3:f6:00:
93:73:16:ba:5b:d9:8e:6d:3d:83:49:e4:b7:3d:55:
0f:0e:1f:47:1c:db:64:ab:63:f7:da:c5:32:36:6e:
05:a4:dd:60:2d:1a:4a:cb:a1:cb:96:8d:79:c0:8d:
c9:12:dc:3d:ac:6e:89:83:d5:8e:fa:00:dc:56:13:
92:67:c6:3f:68:3e:bf:a9:aa:d1:03:f9:5e:27:cc:
82:fe:16:cb:fb:a3:87:f1:69:69:50:ab:63:ef:50:
b3:25:4c:9e:e3:57:74:f9:99:93:f3:f6:6f:05:3a:
ba:cf:7c:37:00:af:24:0f:b7:81:50:05:e6:57:1d:
b2:82:b1:57:31:03:84:bb:44:b0:22:c3:a4:8d:fb:
61:2e:d5:c4:db:54:81:b2:53:c8:3b:f2:bf:a6:34:
86:04:a1:a1:21:bc:c4:68:3b:5c:11:1e:af:f6:4c:
3c:54:37:2d:a4:f2:a4:6e:6f:29:9c:22:1f:a4:6a:
d5:f4:ba:46:72:4b:71:78:b6:c1:0d:e2:18:0f:d9:
50:6a:cd:44:b3:c4:b8:66:b3:45:ce:bb:fb:e1:ab:
36:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:49:73:E9:D3:6E:86:07:ED:E3:7E:1F:13:15:D4:A0:83:BB:A1:F1
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/FAF0CF94CCB611EE923BD179775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.218.246.0/24
Signature Algorithm: sha256WithRSAEncryption
8b:b1:ef:89:bc:6b:3b:c6:c0:f2:82:0e:87:2a:d0:8d:2a:78:
8e:8f:a8:54:13:55:1d:5e:16:68:21:49:34:e0:14:84:97:fb:
63:c8:c8:93:8e:78:58:ca:e9:ed:8a:b0:8f:a6:eb:86:b0:2f:
65:17:06:67:34:03:2e:86:fc:82:3e:a0:f4:72:e9:c4:11:b2:
73:a4:56:1b:07:23:7b:28:b4:03:72:17:43:8c:78:cc:82:5a:
66:23:d7:3c:d3:a1:55:2d:34:fd:c0:8f:a5:ac:84:00:d9:13:
da:a1:d2:21:bc:90:54:e6:c9:b5:98:12:b6:79:39:50:c4:21:
72:e7:1c:8e:86:94:02:0f:3c:be:1f:a2:7b:84:d1:92:be:92:
e3:d1:32:a0:aa:9d:db:c8:13:54:36:17:e5:36:18:3f:fe:d5:
84:05:9b:7b:06:3f:55:99:08:3a:24:c0:15:6a:48:86:64:27:
3f:70:25:d2:71:c7:02:f3:35:88:48:26:f2:78:24:f9:17:ba:
6e:82:7f:d2:28:87:dc:66:94:4b:a1:a2:04:4a:5e:ba:07:4b:
37:2b:90:93:27:48:36:3c:2e:37:ed:4b:da:9f:98:22:71:96:
e9:f7:7c:d5:86:a2:10:a7:e9:33:9b:32:5c:1b:b4:4c:a2:e7:
47:70:82:84
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 26 11:01:50 2024 by rpki-client on console-ams.rpki-client.org