Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/02835EA8C1D311EBA82E0F16F8AEA228.roa
File: 02835EA8C1D311EBA82E0F16F8AEA228.roa (raw, json)
Hash identifier: kF6/mLZJd/TFwvbSNVHKQGoQDeS2Zpg2HQbER5y/7gg=
Subject key identifier: AB:86:83:24:06:2C:44:11:7B:E2:6B:77:78:38:80:25:EA:F7:17:1B
Certificate issuer: /CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Certificate serial: 05A0
Authority key identifier: 09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/02835EA8C1D311EBA82E0F16F8AEA228.roa
Signing time: Mon 31 May 2021 05:42:39 +0000
ROA not before: Mon 31 May 2021 05:42:34 +0000
ROA not after: Wed 31 May 2023 05:42:34 +0000
asID: 46844
IP address blocks: 154.16.108.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1440 (0x5a0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Validity
Not Before: May 31 05:42:34 2021 GMT
Not After : May 31 05:42:34 2023 GMT
Subject: CN=60b4774f-ea30
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:29:12:e3:7a:22:6a:b1:4f:69:cd:ff:90:5c:
b1:b7:82:57:76:b8:ff:5d:94:19:af:6a:89:bf:90:
69:9a:87:8a:7b:6a:ba:ba:7e:32:c0:e7:5d:33:a2:
ef:11:19:28:e8:43:96:99:98:94:e6:5b:f9:be:84:
8e:45:ea:50:e9:d8:4c:6c:ac:be:33:5c:82:c1:d1:
83:44:e3:e2:35:a0:63:74:ea:60:e1:43:de:86:aa:
b5:85:d6:10:50:fa:77:03:46:cf:a8:7f:f6:d8:fb:
e4:c2:32:4b:f2:fc:4a:31:86:11:b0:e6:fc:e0:3b:
a3:b8:40:31:e5:c5:2e:b4:ee:09:c7:d3:14:99:d2:
40:5d:d4:37:d5:30:58:3e:e0:4c:f4:43:b8:ff:0a:
35:5c:51:e3:fa:46:f1:e7:60:1a:71:9a:ff:83:6a:
2e:08:a8:5e:16:88:a0:14:f5:9a:f3:e4:ee:29:b2:
67:a1:b1:d4:27:23:1a:c9:0d:ca:88:86:80:9c:1f:
0a:9a:1b:61:dc:71:53:ef:7b:75:33:ec:68:0f:1f:
74:61:35:c7:75:26:9c:ce:1e:70:74:b5:4e:28:bc:
b2:39:b1:7c:fc:b7:26:64:d6:04:e0:dc:a6:37:1f:
10:38:e1:a8:4f:fc:57:cd:a3:4b:d3:8e:a8:17:30:
80:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:86:83:24:06:2C:44:11:7B:E2:6B:77:78:38:80:25:EA:F7:17:1B
X509v3 Authority Key Identifier:
keyid:09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/02835EA8C1D311EBA82E0F16F8AEA228.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.16.108.0/24
Signature Algorithm: sha256WithRSAEncryption
3b:60:b9:72:e9:22:5e:f0:4e:78:0a:3a:0b:ba:72:5c:45:1f:
1f:23:05:30:7c:58:fc:fc:b1:71:5f:c0:7c:db:df:0b:ea:3b:
49:8d:a3:bc:62:32:91:c4:cb:83:df:59:c6:8a:a4:00:a3:6b:
d7:5f:0c:8b:ae:bd:37:28:07:57:55:21:3f:a7:0c:ee:20:2b:
d6:c3:06:e4:8d:75:e4:ec:c3:3b:cf:6e:e3:48:d8:c7:40:3c:
1a:7c:07:65:6f:7a:3a:2a:2b:a5:9c:dc:96:c4:d2:8e:7b:33:
bc:2d:6f:47:d4:7c:bc:f7:09:31:8b:36:e4:31:4f:d5:59:05:
8e:73:a7:fc:91:84:fd:46:39:e5:b9:bf:de:3f:94:11:b3:4c:
09:78:01:af:f2:61:f5:4b:8e:a1:aa:64:ce:ea:e7:b7:d1:bd:
a1:e7:de:24:14:c8:75:ce:05:c5:e3:4b:a3:5f:a0:23:c0:26:
88:1f:52:f0:c8:40:3d:e4:b5:e6:52:f5:5a:08:ff:6c:d0:e3:
75:72:7c:86:79:c6:d7:3f:93:aa:9d:55:e5:2b:85:fd:3d:ca:
8a:33:8e:4a:ab:dc:20:32:ce:5c:9e:73:df:63:38:b0:d0:fa:
f7:6f:0e:84:30:9c:10:85:74:9a:1f:45:ed:23:a5:d7:f0:98:
65:87:b8:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:22:00 2023 by rpki-client on console-fra.rpki-client.org