Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A09B0082EDB311EE878A2491775412E6.roa
File: A09B0082EDB311EE878A2491775412E6.roa (raw, json)
Hash identifier: cHeROIwxaK8sO3rp5iHIzA0yf0uD/GeCFpn64fBTEP0=
Subject key identifier: 1C:B8:45:09:12:B8:BA:C5:DF:05:4A:D8:D5:5B:E5:59:05:EB:79:02
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A70F
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A09B0082EDB311EE878A2491775412E6.roa
Signing time: Fri 29 Mar 2024 10:03:44 +0000
ROA not before: Fri 29 Mar 2024 10:03:41 +0000
ROA not after: Thu 02 May 2024 10:03:41 +0000
asID: 147176
IP address blocks: 154.197.69.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 42767 (0xa70f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 29 10:03:41 2024 GMT
Not After : May 2 10:03:41 2024 GMT
Subject: CN=66069200-08f4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:49:43:9d:c6:96:13:03:d8:f6:45:ff:d5:0d:
cc:4b:dc:ae:2e:6c:56:21:8e:e3:cd:5d:62:3b:f4:
a6:1d:48:a3:62:65:f7:71:43:ab:15:93:32:88:0a:
2b:e9:61:7b:12:77:92:02:44:e7:94:b0:b3:a4:be:
19:08:eb:88:89:4c:71:44:fc:c1:6e:cc:86:7d:87:
e4:a3:36:36:f7:53:6c:df:93:5a:00:77:1f:24:72:
24:95:e2:be:3c:0e:96:2a:9d:51:3c:e5:97:cf:ef:
85:05:ba:60:31:35:ef:89:a2:8e:1a:e3:b7:90:fc:
d4:2b:3d:70:70:56:6a:0b:c5:ab:4c:bf:7c:b2:bf:
6e:45:ac:f2:a0:cd:63:9b:1f:fc:e3:c7:85:49:fa:
25:cf:55:aa:d6:b0:ae:d2:c5:5b:06:bb:47:e2:ab:
5a:a5:a3:11:2f:cb:d7:aa:87:0c:6d:bc:ec:ed:30:
3e:0d:4e:a3:d9:6f:7b:39:0d:a3:5f:b1:8c:02:f9:
12:15:76:c0:9e:69:52:80:82:54:eb:ad:33:4c:b9:
86:97:90:3d:d6:7d:48:d1:05:ca:5b:bb:ca:82:1f:
2d:55:67:4e:92:d8:c0:13:4b:89:f5:cc:5f:6f:93:
80:1d:cf:68:56:24:a3:08:1e:8e:73:d3:93:73:30:
8e:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:B8:45:09:12:B8:BA:C5:DF:05:4A:D8:D5:5B:E5:59:05:EB:79:02
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A09B0082EDB311EE878A2491775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.197.69.0/24
Signature Algorithm: sha256WithRSAEncryption
33:9d:6c:f6:4a:bf:2b:c3:04:e5:b5:a3:87:28:74:51:8e:d0:
4b:ae:06:8d:db:45:3d:e1:e4:e3:de:f0:42:56:53:f0:e7:94:
34:76:74:06:72:8a:9d:3c:f3:af:92:d5:84:55:93:3d:36:28:
68:45:fd:18:f4:d9:9b:0a:d2:81:da:5b:db:89:a0:64:ad:67:
6f:fa:e3:e3:08:8f:42:75:38:e0:0f:cc:2e:f3:37:60:69:47:
03:1d:b3:92:f8:fd:ef:1c:19:cc:bf:98:fd:29:9c:62:af:8a:
a9:e3:12:59:db:bd:40:c2:8b:df:b8:71:ae:14:ee:b2:c7:b1:
6b:11:34:89:f2:a8:a0:da:1d:48:f2:88:e9:c0:a0:d2:29:70:
93:53:5c:af:d4:20:8d:20:a2:7f:2f:77:27:20:c3:c7:08:7c:
94:f0:e3:a3:a4:93:e9:af:07:7a:df:2b:39:cb:1f:e3:d9:97:
10:a6:51:8a:e6:96:8c:db:07:b1:b3:e1:c0:cd:4a:43:00:b8:
55:f6:95:ca:0f:2a:f7:3e:f9:2f:ec:2a:13:b0:cc:52:ff:00:
81:1e:2a:da:98:31:a8:74:0f:66:eb:6a:ec:72:99:fd:6a:2a:
1f:17:28:88:8a:c1:ae:bd:dd:a3:a1:f7:15:53:9e:34:cb:51:
be:57:56:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 2 16:58:41 2024 by rpki-client on console-fra.rpki-client.org