Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/28E99EAC14B211EEB017FD384AD9E6FC.roa
File: 28E99EAC14B211EEB017FD384AD9E6FC.roa (raw, json)
Hash identifier: dD2LIjNtFKA4adZvSadTKi4ZPc2XPJdy8Y75RwyKhbs=
Subject key identifier: 42:94:BD:CE:FB:D8:D2:EF:76:BF:9B:00:FE:69:96:62:49:25:D5:11
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 2DC2
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/28E99EAC14B211EEB017FD384AD9E6FC.roa
Signing time: Tue 27 Jun 2023 06:16:32 +0000
ROA not before: Tue 27 Jun 2023 06:16:28 +0000
ROA not after: Wed 01 May 2024 06:16:28 +0000
asID: 140227
IP address blocks: 154.197.18.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 11714 (0x2dc2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jun 27 06:16:28 2023 GMT
Not After : May 1 06:16:28 2024 GMT
Subject: CN=649a7ec0-7df2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:94:af:67:c6:12:09:b6:c2:ea:8d:7b:42:c3:
fd:e4:a5:fc:f9:f6:45:a1:ec:d0:1d:9b:db:0c:e9:
b5:15:82:6e:cc:08:35:c6:33:57:e5:9e:0d:7e:d9:
cb:5d:cf:74:b2:b0:96:64:09:55:ef:fc:d9:10:45:
67:68:24:d0:1b:7a:d9:da:94:a8:d4:82:ad:cc:8b:
86:1f:ef:3e:95:91:43:57:5e:7f:b3:10:e8:89:48:
2e:dc:34:e2:8d:4b:75:87:88:7a:6f:58:a7:c4:0e:
84:ff:73:a7:73:65:94:8f:ee:1e:45:17:2a:58:4f:
ce:35:c6:3b:67:17:41:25:0c:68:28:a0:97:68:8f:
c4:fa:ce:a0:cb:dc:71:83:74:3a:e5:3c:6e:ff:e2:
98:5e:25:ea:e3:29:d3:56:b2:a7:2e:18:37:fa:6f:
9b:a7:c2:86:25:71:c1:97:0a:d2:03:19:bc:90:77:
19:4c:cd:59:ea:c9:b1:4d:04:da:5c:5b:2c:8e:98:
5e:9b:10:b3:de:c2:95:41:81:c6:da:e1:0d:25:4e:
d9:b4:11:08:d2:d9:65:72:74:f8:4d:d6:ee:4e:eb:
ed:ed:cd:fb:2b:eb:28:79:25:a1:db:ab:21:54:13:
ce:0e:a4:1e:b2:2a:45:05:92:40:94:50:28:68:ce:
3c:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:94:BD:CE:FB:D8:D2:EF:76:BF:9B:00:FE:69:96:62:49:25:D5:11
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/28E99EAC14B211EEB017FD384AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.197.18.0/24
Signature Algorithm: sha256WithRSAEncryption
30:fa:f3:1b:58:42:7f:bc:13:e8:e1:cc:8d:07:e6:75:78:ee:
14:47:23:f3:40:3e:25:6b:32:83:06:be:5b:5f:8b:bb:e8:e2:
c0:c1:77:a6:d2:6e:01:a2:46:76:a9:be:d1:0f:3d:b0:c7:4f:
d7:59:ae:e8:a9:be:93:01:86:93:57:da:7c:22:ea:a0:c6:83:
02:e1:fc:0b:d0:ed:c9:9f:75:74:a3:16:42:86:ff:e3:d6:4c:
c4:fc:4c:73:48:2b:c6:9b:db:4d:1e:c1:be:8e:7a:4d:3f:d3:
1b:03:bf:10:ce:e7:7c:85:80:3d:d5:81:e1:00:8b:f8:fa:5a:
9c:ad:f0:fa:89:87:ff:f0:13:60:3f:b3:16:02:95:80:3e:0a:
97:e0:b9:f6:15:8c:3e:3e:c7:6a:43:94:57:33:00:fb:c1:28:
75:8d:f3:0c:5a:b6:d3:a0:b3:96:d6:6e:46:35:6a:f4:5c:ec:
ba:f2:0f:86:38:44:58:d3:74:08:1a:3c:48:c4:a9:ed:00:f7:
2a:43:da:75:39:0c:6b:0d:8e:82:5b:1d:36:cd:f9:fc:45:3c:
f5:03:ca:66:55:16:bc:c2:45:7a:8c:d8:72:7c:cb:d1:8c:9c:
41:9e:5f:1d:1f:44:1c:40:8a:b9:7c:a6:5e:c6:ed:37:f0:3b:
bc:36:e6:ce
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 1 15:29:50 2024 by rpki-client on console-fra.rpki-client.org