Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/38D74B168C8D11EBBA23137CF8AEA228.roa
File: 38D74B168C8D11EBBA23137CF8AEA228.roa (raw, json)
Hash identifier: PUjzqyaPPGnpMUu0CD40TPbT7GhkZi6/KGQGvB2DBW0=
Subject key identifier: 5E:5D:F8:3A:7B:A1:07:13:0D:7A:A6:DA:6E:62:63:8E:22:BC:20:51
Certificate issuer: /CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Certificate serial: 04FC
Authority key identifier: 09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/38D74B168C8D11EBBA23137CF8AEA228.roa
Signing time: Wed 24 Mar 2021 10:39:34 +0000
ROA not before: Wed 24 Mar 2021 10:39:29 +0000
ROA not after: Thu 24 Mar 2022 10:39:29 +0000
asID: 7922
IP address blocks: 154.16.156.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1276 (0x4fc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Validity
Not Before: Mar 24 10:39:29 2021 GMT
Not After : Mar 24 10:39:29 2022 GMT
Subject: CN=605b16e6-d670
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:f5:de:5e:f0:dc:de:69:af:db:79:3d:de:c3:
5d:cb:71:46:c3:9b:7e:bc:25:dc:e2:51:c3:25:32:
a3:fe:27:b5:4b:59:d9:9b:07:1e:f0:86:38:a2:34:
d7:df:4d:76:0e:97:83:ba:3b:08:2e:6f:7a:ed:12:
d7:b7:8d:a3:2b:4d:56:72:42:1d:eb:33:2a:1c:b6:
61:a7:1b:fe:b1:3a:7c:39:62:f8:9c:c5:56:fe:27:
65:15:41:18:ff:be:78:82:25:57:15:99:4f:53:31:
9f:ce:93:45:46:ea:a7:f1:b4:f0:89:75:df:e6:86:
22:40:8a:06:6b:5b:39:91:b8:e5:e2:6e:4c:dc:7b:
68:5d:4f:05:97:89:7a:a3:68:f5:fc:87:de:7b:0e:
36:27:31:f2:3b:9e:f5:c7:88:7e:ee:fa:6a:4c:15:
95:ab:06:18:d6:7c:18:79:e2:82:b5:3a:e9:3f:09:
2c:d7:c7:f7:73:fb:f3:2d:c0:6c:f6:b9:71:8c:e7:
bf:0e:4a:96:65:0a:ef:67:c2:94:55:65:f8:41:9d:
15:b3:15:a0:07:29:2d:74:4e:a0:ba:5c:bc:12:f4:
c7:54:ea:47:9d:85:7a:52:b2:83:86:ea:66:df:68:
ca:1f:1d:d9:c8:09:55:bf:9c:5d:66:e8:40:de:e2:
8a:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:5D:F8:3A:7B:A1:07:13:0D:7A:A6:DA:6E:62:63:8E:22:BC:20:51
X509v3 Authority Key Identifier:
keyid:09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/38D74B168C8D11EBBA23137CF8AEA228.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.16.156.0/23
Signature Algorithm: sha256WithRSAEncryption
01:57:f2:ba:3e:94:a5:ea:c6:ff:b0:e2:88:fe:92:3d:66:e8:
c6:48:57:2a:d1:d8:52:2a:99:28:9b:dc:1a:78:15:47:a9:d6:
eb:0a:4f:6e:63:14:89:16:6b:cb:cd:c7:c0:5c:f3:a9:1b:a4:
6d:5d:d1:f8:c9:b9:82:c9:b1:08:dd:7d:b0:7a:3d:75:13:23:
1b:bd:b6:ea:e5:c8:89:9b:ab:fc:9b:40:47:a9:ad:2e:74:4c:
8f:4e:09:f6:d3:2d:ed:5a:38:7b:6b:87:f2:00:dd:4c:0e:28:
d3:51:2b:73:78:91:3e:40:75:ce:31:18:83:7f:ef:c2:61:f1:
84:7c:7b:bf:50:c9:ed:e2:ef:4c:5a:b4:ff:da:33:d6:80:ab:
e5:e2:26:d9:96:80:ed:0a:11:c5:17:57:29:53:75:5b:f5:75:
b9:d5:c4:a6:78:d7:9f:2f:b8:5b:02:ab:54:a4:5a:66:ed:2a:
29:b1:dd:58:d3:0f:5b:60:5e:07:63:77:98:f0:e2:7d:b0:12:
ac:14:88:c9:b2:ed:48:b8:6c:f2:5d:05:b6:08:c3:e8:67:b2:
27:d6:d6:8f:6b:6b:8b:f1:12:40:95:76:9d:fb:ec:9f:6e:a4:
0b:88:e4:7b:92:e1:7e:94:c7:30:ee:6c:94:0a:02:28:1d:11:
0d:96:84:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:22:00 2023 by rpki-client on console-fra.rpki-client.org