Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/227F83FCE47711EEB703968C775412E6.roa
File: 227F83FCE47711EEB703968C775412E6.roa (raw, json)
Hash identifier: YW0kDDXuQXQABum5Kx6iS9h3lzUO63+GFbT/fiaNsBk=
Subject key identifier: 7A:44:35:A0:51:E9:27:D0:B3:15:75:10:3C:CF:8B:6D:C9:65:23:49
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A261
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/227F83FCE47711EEB703968C775412E6.roa
Signing time: Sun 17 Mar 2024 15:58:03 +0000
ROA not before: Sun 17 Mar 2024 15:57:59 +0000
ROA not after: Tue 30 Apr 2024 15:57:59 +0000
asID: 63139
IP address blocks: 154.94.98.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 41569 (0xa261)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 17 15:57:59 2024 GMT
Not After : Apr 30 15:57:59 2024 GMT
Subject: CN=65f7130a-cbea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:d2:c6:d3:f6:8c:3b:00:dc:1d:72:5c:f4:4f:
a6:5e:d1:89:b5:fe:4e:f2:8f:34:d5:b9:35:97:ef:
83:46:32:26:5a:c5:c0:2b:0a:ad:f1:95:8d:89:13:
6c:92:e6:68:00:b7:cc:f2:55:51:75:de:cb:f0:14:
01:f0:ca:77:88:2c:a7:a5:3d:d8:e8:aa:91:d5:d2:
4c:43:78:8f:3a:d7:73:88:07:e6:10:e1:eb:56:23:
3e:d5:fb:d9:f8:a8:4e:2c:6d:c1:a1:1b:f7:4a:c8:
1a:fe:fc:e5:58:9c:f3:5d:97:2e:35:71:9f:18:4c:
41:9c:50:b7:e3:e5:5f:ad:3c:86:0e:f1:6b:0a:00:
13:28:03:43:50:f9:49:d3:a8:05:07:3f:bd:d8:ba:
c7:35:c1:8f:c1:b7:a2:7c:05:53:fb:af:55:e8:10:
cd:a3:3c:1f:a1:ba:cd:26:bb:81:c0:7a:46:9b:93:
dc:ed:c2:a9:5a:b8:76:22:ab:4a:93:fa:97:76:69:
9f:2e:02:1c:67:26:35:de:21:44:80:75:d3:31:b6:
71:3b:e9:61:b3:f9:14:b2:34:4c:6e:7e:03:35:8f:
2b:ea:2f:6b:53:9e:93:f4:1f:a4:a4:8c:8c:90:b1:
b7:e6:ec:ef:a2:ba:7d:cd:67:69:23:ce:15:0a:dd:
4d:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:44:35:A0:51:E9:27:D0:B3:15:75:10:3C:CF:8B:6D:C9:65:23:49
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/227F83FCE47711EEB703968C775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.94.98.0/24
Signature Algorithm: sha256WithRSAEncryption
cd:af:f7:e4:e7:91:66:87:df:41:e9:a3:d8:fd:30:9e:ed:c2:
a7:53:07:2c:fd:4a:26:2f:f0:5f:f2:77:d1:c8:2b:03:32:6a:
4f:52:f6:25:39:56:b8:db:22:13:44:26:e9:7e:be:43:87:a5:
12:7c:b5:d0:1a:5a:e5:54:6b:45:30:40:0b:ec:cc:1b:a9:58:
82:c9:ea:e8:34:bc:44:22:52:de:97:3c:42:01:0a:41:21:40:
fc:a3:ee:af:67:7b:62:04:ea:27:b0:51:eb:0f:35:7f:cc:37:
20:5e:ab:2e:32:81:93:b5:c4:b6:5c:42:2f:ed:5d:c2:01:81:
71:db:67:88:40:4e:61:09:dd:a4:04:b2:8d:0b:51:66:a5:90:
7f:fa:09:60:90:0d:06:fb:23:a0:46:9f:07:bd:7c:0f:5e:65:
aa:98:1f:3f:e9:54:50:c8:a0:0f:0e:41:81:6d:5c:71:df:01:
2c:42:df:2a:1e:58:2c:99:08:2f:5a:08:de:13:49:83:c1:2a:
4d:22:8d:29:93:23:2b:b8:73:fb:b3:11:a5:91:b6:62:74:17:
46:39:f2:ec:a5:58:04:a3:a5:b5:ac:58:b7:4a:dd:ae:b2:63:
c6:cd:90:09:f1:c2:40:12:cb:b1:35:a5:ec:30:8a:34:90:ee:
70:01:46:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 1 02:03:19 2024 by rpki-client on console-ams.rpki-client.org