Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/89EC3E027D3D11ECAEABE0A75A40D577.roa
File: 89EC3E027D3D11ECAEABE0A75A40D577.roa (raw, json)
Hash identifier: XNNAFj33RLOfIjRFdX+Hww1uAxs3zLF8CD/t2Wc1UAA=
Subject key identifier: 7A:67:61:F0:4A:C4:BB:CC:38:9D:77:27:1A:62:DC:E4:11:A2:20:66
Certificate issuer: /CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Certificate serial: 078F
Authority key identifier: 09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/89EC3E027D3D11ECAEABE0A75A40D577.roa
Signing time: Mon 24 Jan 2022 17:46:20 +0000
ROA not before: Mon 24 Jan 2022 17:46:17 +0000
ROA not after: Tue 24 Jan 2023 17:46:17 +0000
asID: 43260
IP address blocks: 154.16.189.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1935 (0x78f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Validity
Not Before: Jan 24 17:46:17 2022 GMT
Not After : Jan 24 17:46:17 2023 GMT
Subject: CN=61eee5ec-b5cd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:00:f5:d9:3d:5e:78:5f:87:4f:4c:06:14:43:
60:ad:ab:89:40:9e:cb:e0:fe:6b:29:4a:f2:22:49:
4c:a8:14:ad:a2:f4:90:2e:87:ce:fa:98:1b:0f:db:
f4:89:46:80:12:50:02:37:e0:f5:73:39:30:f4:7c:
3c:13:54:4a:fd:d3:3b:90:7f:ca:0d:5c:75:2a:ae:
80:26:00:e9:47:14:5b:4c:ea:27:4e:ef:4a:e1:9b:
9b:da:a5:1a:1b:4f:07:18:1b:4a:45:08:3c:73:e3:
16:ee:0c:60:d2:52:48:ac:4c:13:5b:e0:a2:4d:00:
a0:14:01:60:5e:68:fb:d6:ac:8b:ed:c3:11:69:d7:
73:f2:ab:01:16:dc:4c:fa:48:8b:5a:82:aa:c4:fa:
11:ca:39:7b:e7:58:44:75:b6:7f:63:4e:ef:ef:aa:
cf:16:dd:a2:5b:05:b9:76:97:8d:60:20:97:9d:dc:
d2:f5:5e:b4:29:a6:74:d8:b4:c0:98:66:a1:c0:23:
b0:db:48:52:f1:4d:86:72:83:91:5a:60:ca:93:64:
4b:11:22:61:0d:58:d5:11:5f:88:64:97:2f:44:15:
05:eb:69:38:e3:96:dc:20:2b:8d:98:c0:2c:fb:37:
f7:5b:9a:34:03:92:e7:97:3f:b6:dc:75:38:d3:10:
5e:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:67:61:F0:4A:C4:BB:CC:38:9D:77:27:1A:62:DC:E4:11:A2:20:66
X509v3 Authority Key Identifier:
keyid:09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/89EC3E027D3D11ECAEABE0A75A40D577.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.16.189.0/24
Signature Algorithm: sha256WithRSAEncryption
90:e1:54:67:4d:0e:80:1e:bc:68:5d:c9:1e:3d:87:c8:eb:ae:
22:f4:7a:e5:68:9a:f4:c0:42:16:e6:21:fc:c7:51:36:ab:13:
fc:b1:28:cb:ba:fe:28:89:c5:74:c6:7b:14:ed:3e:8b:aa:cb:
e4:6b:71:8d:77:05:f7:50:af:4b:8b:1b:9b:a9:d6:63:d3:36:
fa:24:15:8c:76:06:ca:d3:2d:18:d2:ca:7f:bc:a7:56:37:b0:
27:e3:9c:d7:f9:49:1d:89:c2:98:a9:bd:5e:ae:79:c1:eb:0d:
d5:a6:04:8e:46:cb:30:64:5b:d3:22:c2:0a:64:b0:72:ba:91:
4f:30:a6:56:63:ef:08:79:6e:e7:7f:4e:14:10:ba:3e:02:96:
fb:ef:b6:c6:bb:63:93:be:94:f8:13:49:c0:d1:87:88:51:bf:
a9:71:5a:43:32:9b:60:6f:71:5d:8c:09:36:b8:20:78:1d:bc:
81:50:ca:36:c8:f1:32:a2:8f:4e:9b:ea:02:42:26:53:aa:38:
61:14:a8:19:15:15:35:a3:39:e2:a1:52:c2:39:d8:c4:93:bd:
ae:90:ec:25:b7:45:7b:a0:5b:90:62:e9:a1:e5:4b:11:6d:37:
25:b4:d0:a4:71:5e:2a:e0:31:f9:84:69:c7:40:85:0c:63:d9:
70:48:41:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:21:58 2023 by rpki-client on console-ams.rpki-client.org