Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0C9FEE74FBA011EE88810E40017001B1.roa
File: 0C9FEE74FBA011EE88810E40017001B1.roa (raw, json)
Hash identifier: fyuCMHty3dOz3wcPS00cqDGKB1lByq7mJSMPytNMykE=
Subject key identifier: 33:56:52:C9:4F:73:57:57:CA:1E:52:BA:4E:35:4B:04:90:3D:7E:31
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: AD3B
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0C9FEE74FBA011EE88810E40017001B1.roa
Signing time: Tue 16 Apr 2024 03:18:52 +0000
ROA not before: Tue 16 Apr 2024 03:18:49 +0000
ROA not after: Wed 24 Apr 2024 03:18:49 +0000
asID: 136950
IP address blocks: 154.213.29.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 44347 (0xad3b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 16 03:18:49 2024 GMT
Not After : Apr 24 03:18:49 2024 GMT
Subject: CN=661dee1c-8e80
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:1e:51:40:cd:e0:18:d9:68:b9:d3:ec:e4:c5:
67:38:ed:23:ce:19:47:cc:a7:85:81:99:b6:90:bc:
70:f7:98:d3:b5:d2:55:7b:62:63:ba:17:f8:3d:d2:
3c:8b:e3:8d:2e:55:a4:74:93:a3:53:12:b3:34:1a:
e0:15:47:78:89:3f:6c:4d:8d:7f:db:55:75:cd:f5:
be:05:06:db:04:7b:05:a3:fd:32:68:63:c1:76:65:
a4:72:c5:40:26:89:44:27:4f:89:c1:18:d4:bf:6d:
e0:ec:60:be:1d:25:4d:41:ac:c9:1c:5b:0e:2f:1a:
03:1d:7b:eb:94:86:d4:d2:94:be:41:b0:eb:08:41:
6e:73:10:3c:03:5a:33:be:ff:cd:41:b3:63:d6:92:
5f:f5:3a:84:0c:7d:18:54:4a:24:10:df:36:9a:31:
e9:c3:95:57:56:30:84:ca:63:24:37:cc:bb:30:45:
21:f1:71:65:0b:35:42:aa:45:58:ff:53:f8:62:3a:
c4:d4:11:6f:bc:8d:be:4e:b2:d1:7b:50:86:a4:76:
33:87:89:24:7a:90:23:45:00:0a:c9:96:61:a8:47:
98:58:62:0a:37:61:a2:c3:dc:48:5f:2e:d2:5c:22:
a9:bd:56:13:68:ec:b9:cc:ff:b2:7b:8e:ff:ce:97:
18:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:56:52:C9:4F:73:57:57:CA:1E:52:BA:4E:35:4B:04:90:3D:7E:31
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0C9FEE74FBA011EE88810E40017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.213.29.0/24
Signature Algorithm: sha256WithRSAEncryption
18:f3:40:f2:3f:92:39:6c:0a:4c:73:30:6a:48:3b:92:63:b2:
85:59:f2:e9:6b:57:c5:7d:a3:c9:b1:17:2a:e0:5a:47:8e:f4:
e0:19:08:94:c0:01:25:c5:d6:e1:77:66:18:9c:7a:3f:ba:6d:
46:ca:91:7f:ee:17:1b:2e:d0:e7:40:20:db:3e:d1:15:69:76:
ce:c3:94:d6:08:3b:e8:81:07:89:88:0a:7e:b8:48:a1:a2:7d:
ca:80:88:5f:17:99:9e:70:06:9c:cf:98:f1:e0:d8:ea:76:39:
08:a2:b9:86:6a:db:c5:24:95:e4:0e:c5:2d:72:63:41:16:f4:
88:fe:c2:c3:e1:05:82:ae:22:15:b7:b9:63:e9:c1:7e:9e:68:
7c:90:b4:b5:87:98:4b:72:27:a5:2c:0b:ad:ce:57:30:b7:ed:
69:d2:18:4f:3b:50:e1:57:8d:c5:4d:12:91:44:bf:7f:a8:4c:
5c:98:16:a4:69:8d:6d:9a:cf:e2:dd:ca:40:38:eb:9d:55:a1:
3a:23:e6:11:03:76:dd:61:c8:8a:26:72:08:70:67:ad:dc:a5:
21:ee:d7:4a:42:8b:d6:6b:26:a2:60:b0:79:6b:80:2e:e3:10:
d3:f5:49:01:4c:61:0a:aa:8f:d8:0e:79:4b:09:de:17:c5:7f:
a6:60:5f:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 24 09:55:38 2024 by rpki-client on console-fra.rpki-client.org