Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/A9F4D1F4EF6911EAB39DFC36F8AEA228.roa
File: A9F4D1F4EF6911EAB39DFC36F8AEA228.roa (raw, json)
Hash identifier: 9IwA4WpVc0htW/dc+PoCFx8Tm2bxUCQJPR6db+Vh3gA=
Subject key identifier: DA:3F:FF:C5:BB:08:45:DC:40:F1:81:AF:F2:8F:C8:2E:D4:6A:8B:2B
Certificate issuer: /CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Certificate serial: 0386
Authority key identifier: 09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/A9F4D1F4EF6911EAB39DFC36F8AEA228.roa
Signing time: Sat 05 Sep 2020 11:19:30 +0000
ROA not before: Sat 05 Sep 2020 11:19:25 +0000
ROA not after: Mon 05 Sep 2022 11:19:25 +0000
asID: 212826
IP address blocks: 154.16.176.0/24 maxlen: 24
154.16.195.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 902 (0x386)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Validity
Not Before: Sep 5 11:19:25 2020 GMT
Not After : Sep 5 11:19:25 2022 GMT
Subject: CN=5f537441-dca4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:c0:44:53:fd:1f:d4:03:ab:97:ca:1f:7f:cc:
f1:88:d3:40:3a:a7:3e:f7:03:92:57:8d:51:79:37:
c2:40:ee:71:34:00:0f:0d:b1:a1:4c:9f:73:ae:f3:
31:01:d2:95:ab:6d:ce:2c:f8:e7:77:e3:e1:52:f3:
78:40:7d:48:ae:2d:dc:9d:1a:06:d3:e7:d3:39:38:
27:65:a4:71:9e:40:d2:9d:30:86:ca:47:d2:a0:56:
6e:a6:2b:b0:47:27:c6:f0:63:08:85:6a:37:21:d2:
3d:b4:eb:e0:9c:14:6f:68:c9:b4:31:95:12:e1:b1:
28:bc:79:ef:7d:77:58:18:4e:4b:a8:a8:d4:72:6f:
8b:4e:2a:b8:d2:96:77:d6:05:75:6a:29:34:f1:48:
34:96:47:a5:43:3d:67:3b:27:9e:0a:1a:df:8f:32:
7d:05:d1:c6:46:5b:2e:99:64:62:6d:76:74:ec:e8:
ec:ba:02:e3:52:62:e6:59:dd:53:89:b1:43:f9:67:
9f:7f:5f:ab:6b:fd:ad:de:08:06:14:14:5c:e3:9c:
3c:8d:1e:50:97:d9:39:0c:43:ca:44:af:bb:6c:ea:
f7:15:53:af:d9:d7:23:15:7d:74:92:f6:c7:0e:81:
c7:c3:a2:62:75:61:86:e4:10:b5:8d:6f:bc:fd:1c:
9b:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:3F:FF:C5:BB:08:45:DC:40:F1:81:AF:F2:8F:C8:2E:D4:6A:8B:2B
X509v3 Authority Key Identifier:
keyid:09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/A9F4D1F4EF6911EAB39DFC36F8AEA228.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.16.176.0/24
154.16.195.0/24
Signature Algorithm: sha256WithRSAEncryption
84:fe:29:ee:8c:31:2d:eb:39:10:92:aa:41:62:d9:8c:23:39:
ac:82:c8:01:93:7d:7d:7d:b3:a4:00:90:ad:19:7e:99:b1:9d:
78:9b:44:26:6e:e6:9a:29:4f:76:38:9a:06:d4:e7:fa:55:b1:
4d:9a:db:47:cc:cb:32:9d:79:a7:c4:30:e9:e7:15:37:76:d2:
79:7a:1a:fa:80:a4:16:06:23:c3:9a:8c:09:36:40:7c:e0:d4:
95:ef:af:0c:28:ec:40:74:8c:4c:8f:a8:0d:17:8e:84:02:c2:
ad:b4:83:67:b6:f2:4b:1d:dc:ec:ea:6c:ad:2d:f9:02:e0:53:
77:0c:7c:71:24:96:1b:d0:14:ec:d4:f8:81:04:b7:72:01:71:
b1:47:6b:53:a6:a5:5b:a4:78:64:7d:57:f6:cc:7a:75:92:6b:
f3:4b:77:9a:a2:24:f2:0a:dd:41:f4:3b:a7:28:62:f0:2f:a0:
5c:12:bc:74:2f:b2:89:e0:60:ac:19:58:34:fd:63:d3:48:a7:
f6:fc:82:8b:e5:2e:dd:16:e8:d5:37:4f:3e:30:f2:89:21:32:
13:7a:93:23:a4:f4:1e:68:93:ab:d6:fd:bf:8a:60:18:b0:b2:
4c:0a:1f:8f:c0:18:12:76:33:f7:6c:37:4a:a1:9b:ad:30:b6:
86:5e:ba:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:22:01 2023 by rpki-client on console-fra.rpki-client.org