Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0EB385D4E78911EEBDC4A74C775412E6.roa
File: 0EB385D4E78911EEBDC4A74C775412E6.roa (raw, json)
Hash identifier: cB/GyXypzgAECi/Yj2XbZRPCutnVWOMcXSoVaGwJ7Ys=
Subject key identifier: FA:4F:E4:BA:9B:37:C8:AB:6A:1A:EB:ED:56:D7:3E:B0:42:B0:61:9E
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A5C3
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0EB385D4E78911EEBDC4A74C775412E6.roa
Signing time: Thu 21 Mar 2024 13:43:54 +0000
ROA not before: Thu 21 Mar 2024 13:43:50 +0000
ROA not after: Thu 25 Apr 2024 13:43:50 +0000
asID: 5065
IP address blocks: 154.206.32.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 42435 (0xa5c3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 21 13:43:50 2024 GMT
Not After : Apr 25 13:43:50 2024 GMT
Subject: CN=65fc399a-1b3e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:51:ef:de:58:3d:a9:b0:73:ce:a3:5d:90:5a:
3d:76:c4:e4:79:e8:51:95:61:88:79:66:91:c8:8c:
96:2d:07:20:af:c4:42:11:3f:3c:a2:87:e4:9d:67:
99:e8:2d:c2:c7:cb:25:32:45:49:ee:bc:73:5c:53:
3e:c9:ad:65:15:2f:19:24:53:2c:50:05:c6:3d:d5:
60:9b:6c:c1:96:4d:e5:dd:53:bb:56:36:7a:98:84:
5e:15:d7:0e:95:39:a7:06:ea:10:63:41:1e:f3:b1:
13:87:93:8b:14:29:d0:8f:90:47:58:c8:c7:20:29:
4a:66:05:d4:c9:13:17:0c:90:4d:ec:a7:5d:5b:01:
68:f3:10:7a:4c:69:ce:2e:40:0a:26:b5:14:36:88:
41:fc:05:ef:8c:0f:b3:2a:38:5e:61:21:c2:ad:ab:
ce:ad:f7:e5:d3:5b:17:fe:3a:39:2c:29:b6:b0:58:
15:60:2c:fe:26:81:0a:83:64:ed:64:57:39:eb:9e:
a1:b8:99:23:82:57:73:44:4a:16:b4:6b:13:d7:79:
46:41:39:71:7e:7c:25:02:c2:15:d4:92:74:56:0c:
25:a1:31:ab:b0:2c:eb:c5:e4:51:88:0b:a6:46:bf:
75:bb:36:b2:3a:cc:45:81:ae:bd:2b:ef:61:f4:eb:
43:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:4F:E4:BA:9B:37:C8:AB:6A:1A:EB:ED:56:D7:3E:B0:42:B0:61:9E
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0EB385D4E78911EEBDC4A74C775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.206.32.0/24
Signature Algorithm: sha256WithRSAEncryption
4b:82:48:b5:f6:36:dc:c7:67:85:ee:7b:cd:55:9c:70:ab:a4:
d6:c3:d2:3a:da:42:21:d7:6f:86:77:ee:7e:f0:8f:03:d2:bf:
52:c3:0e:99:0b:af:25:fc:15:49:84:d2:53:fe:22:2d:17:a4:
b1:62:b5:48:c0:0a:bf:8e:fd:d9:92:29:ec:e1:f8:65:1d:40:
79:92:3b:ca:75:6a:e9:65:b3:ab:f3:a7:98:48:d6:99:8f:69:
13:39:b9:1e:ce:13:5b:4c:a5:ae:75:e9:ad:56:53:49:f7:89:
b4:71:52:1d:aa:f5:5e:1c:02:61:04:7f:97:ff:2b:13:f0:56:
9e:bc:99:2b:1e:3f:47:6d:9f:67:2f:b4:6a:a1:05:b2:fe:06:
73:03:55:ad:88:63:bb:97:62:c2:2a:8f:5d:cb:5c:a8:cc:2a:
e6:a0:67:f9:1d:e8:63:6b:74:fc:6c:71:02:f1:de:9a:26:df:
3f:74:e7:a0:f6:0c:d9:c5:11:fa:2c:e2:1d:60:74:ec:37:41:
a6:a6:26:7b:89:ce:74:f1:42:18:55:eb:29:3a:76:b0:90:41:
f6:ea:50:4d:27:97:44:9c:7a:b8:c0:a2:fa:87:ef:98:af:05:
3e:49:d7:f4:f7:b0:56:c1:58:aa:f6:20:fe:4a:12:f2:fc:c3:
14:67:93:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 26 01:59:41 2024 by rpki-client on console-ams.rpki-client.org