Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0C6141ACE46111EE9265937E775412E6.roa
File: 0C6141ACE46111EE9265937E775412E6.roa (raw, json)
Hash identifier: 8mgRf9TIaiCV3TB6sfUVQZodfOYd8kCkXfpfme/8N60=
Subject key identifier: AD:36:11:0B:FA:6F:EE:04:D6:75:39:45:FC:18:8D:0F:AD:BD:8E:4A
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A1CF
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0C6141ACE46111EE9265937E775412E6.roa
Signing time: Sun 17 Mar 2024 13:19:57 +0000
ROA not before: Sun 17 Mar 2024 13:19:53 +0000
ROA not after: Tue 30 Apr 2024 13:19:53 +0000
asID: 63139
IP address blocks: 154.94.118.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 41423 (0xa1cf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 17 13:19:53 2024 GMT
Not After : Apr 30 13:19:53 2024 GMT
Subject: CN=65f6edfc-5e04
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:54:5a:e6:7e:e4:ef:9c:78:9d:c3:92:ed:40:
19:18:a6:db:5a:35:7d:f1:8b:3d:18:6c:55:b7:da:
c2:40:7b:9c:f8:e3:23:e1:87:3b:de:6d:93:13:c6:
f9:1a:c4:dd:4f:68:03:40:8f:d4:d7:74:09:0b:e5:
93:72:61:f0:62:cd:57:a3:8d:74:e4:b5:92:ad:ef:
2d:ff:5d:d0:e3:21:63:f1:5f:ad:92:07:12:13:32:
17:c1:6e:30:d4:aa:0f:56:a5:9f:89:1e:77:3f:89:
ab:1b:15:cc:fe:80:11:48:e8:4f:38:43:c5:c8:72:
38:d8:45:68:2e:ec:3b:7c:cd:3d:7b:70:cc:58:22:
c1:75:7f:48:1f:68:ff:a8:29:37:c3:cf:d5:db:99:
24:b0:fe:26:eb:9d:41:68:6b:d1:46:69:7c:4a:38:
aa:95:87:0c:32:af:7d:da:5f:76:61:5c:e5:b2:c1:
82:fd:f2:ac:1b:3e:6b:82:97:f9:92:28:67:38:e6:
a5:c0:68:d2:f9:60:68:35:e0:ce:f5:1f:bb:b7:10:
be:6e:36:6d:78:85:4b:88:07:9a:12:d2:14:cc:e9:
d5:62:8d:48:59:b1:06:c9:ae:82:15:52:6f:d0:e2:
d5:4d:05:17:c3:3c:43:dd:f6:75:88:17:8c:ff:6d:
fd:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:36:11:0B:FA:6F:EE:04:D6:75:39:45:FC:18:8D:0F:AD:BD:8E:4A
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0C6141ACE46111EE9265937E775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.94.118.0/24
Signature Algorithm: sha256WithRSAEncryption
b1:c6:38:b2:de:38:fa:4e:12:76:49:85:d6:d1:95:31:a9:d1:
3d:b6:9d:65:a7:3f:a1:e4:e7:d7:4c:33:eb:b2:2e:f7:2d:93:
31:19:df:91:4c:79:a1:f6:a8:2d:42:bb:b8:4c:89:21:fb:5f:
23:00:18:2a:d0:97:01:80:1b:a1:d1:6f:22:95:93:e5:a4:07:
2a:76:b1:b4:20:e5:02:50:0e:fd:8e:8d:9f:04:a6:66:70:e9:
24:86:19:4c:5c:4d:ed:2d:b7:97:54:6c:1f:ae:a8:f5:0e:63:
7a:b2:db:50:a1:2b:6f:71:0f:be:fe:83:26:1b:72:7a:ca:2c:
ba:dd:ce:4f:44:ce:14:73:c4:ab:a6:3c:98:1c:18:e7:86:3c:
7a:43:c6:8a:72:99:4b:bc:6a:c5:4a:35:c2:0a:08:71:bc:47:
cc:fd:29:5f:7b:bb:8d:eb:0f:46:c6:bc:9e:45:8c:37:54:aa:
06:fd:6a:18:22:5d:85:58:d3:5d:f0:e7:fd:05:0d:3d:4b:3a:
b6:41:e3:24:e5:8f:bc:e3:02:a9:de:8b:47:7f:8e:46:28:e2:
a8:33:f5:5a:c7:d8:e9:18:ca:17:60:ec:6f:9b:ab:3f:fb:77:
b5:22:2b:63:d5:6a:74:ee:9e:e6:1c:f7:67:7a:7d:49:2e:a0:
d8:76:f3:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 1 02:40:36 2024 by rpki-client on console-fra.rpki-client.org