Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/B3924912AE9511EBAC7B721AF8AEA228.roa
File: B3924912AE9511EBAC7B721AF8AEA228.roa (raw, json)
Hash identifier: o8wvdfjuXam6wgkEt4OpwLrhu/sQuG7wcr1TGMcFt78=
Subject key identifier: 6B:79:00:BB:55:27:A9:34:41:13:BB:C1:2F:94:6F:88:C9:95:B1:1B
Certificate issuer: /CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Certificate serial: 057A
Authority key identifier: 09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/B3924912AE9511EBAC7B721AF8AEA228.roa
Signing time: Thu 06 May 2021 18:05:55 +0000
ROA not before: Thu 06 May 2021 18:05:49 +0000
ROA not after: Fri 06 May 2022 18:05:49 +0000
asID: 3356
IP address blocks: 154.16.173.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1402 (0x57a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Validity
Not Before: May 6 18:05:49 2021 GMT
Not After : May 6 18:05:49 2022 GMT
Subject: CN=60943003-47a6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:af:21:0e:5f:4e:7d:93:fa:87:e3:b9:28:77:
9d:9b:ae:59:ea:6e:6e:87:f8:6e:e1:02:a9:86:a5:
05:bb:9f:63:77:ef:87:1d:30:c0:7f:d3:23:fa:1c:
ab:ba:e9:6c:9b:bf:2d:af:f3:95:1c:b4:5c:63:38:
36:2b:a2:9b:81:d3:e1:f2:88:d2:93:bc:60:4b:f1:
e6:09:c9:7e:c6:1e:25:1a:7f:77:54:13:8a:2b:ba:
c7:62:80:65:c6:f4:fc:e0:7b:7a:56:95:5c:b3:d1:
67:f0:0c:8c:18:fe:09:b3:17:fc:d0:a6:56:54:17:
a8:e1:da:7d:71:35:f4:da:57:3d:f3:dd:56:98:38:
d5:f1:4c:8d:90:24:62:00:48:8d:64:05:5e:10:77:
87:5d:73:8e:d5:a8:4c:3a:0c:5e:26:ee:f4:8d:3e:
29:d8:21:7e:79:9e:7e:4a:bc:8d:94:68:cf:b5:29:
d4:07:ad:53:80:cb:18:e1:06:56:c1:77:17:ba:e1:
58:5d:91:04:61:d4:75:5e:d3:87:b7:11:5a:e6:ab:
58:14:11:d5:08:52:bd:fc:a7:42:f0:df:c1:6b:7f:
06:ee:14:fb:85:06:76:a7:41:34:b6:95:29:4c:c2:
af:6a:1e:01:99:e4:68:59:52:2b:5a:1b:39:21:bd:
c2:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:79:00:BB:55:27:A9:34:41:13:BB:C1:2F:94:6F:88:C9:95:B1:1B
X509v3 Authority Key Identifier:
keyid:09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/B3924912AE9511EBAC7B721AF8AEA228.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.16.173.0/24
Signature Algorithm: sha256WithRSAEncryption
0e:45:af:44:3e:e3:88:e7:e3:03:b5:49:ec:68:8d:8c:49:ed:
37:47:0b:59:e3:26:9e:23:f0:f1:18:1d:3c:20:cb:00:79:8a:
de:63:2a:cf:55:0f:1a:53:4b:56:44:33:d4:93:c7:55:ed:3e:
9e:f6:3e:f5:e9:9b:0f:4e:12:0c:49:e8:18:c8:f4:62:13:7a:
67:11:fb:3b:a2:8e:a3:f4:84:d0:a4:9f:4b:04:10:d9:7e:45:
57:ea:2e:1b:ee:11:ec:b3:a4:a7:f9:4f:1b:92:24:bf:76:7d:
fb:bc:95:12:13:df:a4:6c:1e:a2:55:d0:0d:a4:cc:cc:a7:90:
03:ce:de:6c:d7:ad:1f:c7:0c:9f:88:3e:38:2a:10:aa:25:78:
0a:fc:2e:3a:14:06:ce:5d:f7:60:f2:c7:b3:5a:b0:9d:d3:98:
82:f1:3e:13:5a:ff:90:c0:57:f9:bb:d1:d5:9f:85:32:c3:37:
3d:1f:f9:86:e8:41:4c:15:14:a7:3d:b6:af:ca:af:5c:f5:c1:
aa:a9:b5:03:aa:7b:48:3b:3b:37:9a:a9:bf:f8:26:1f:f4:85:
b1:bf:43:9a:da:ac:f9:1b:ee:bf:b4:de:c1:1d:cf:b2:d4:6f:
08:b7:b8:30:fe:bb:99:b5:e7:0a:7f:1d:be:c9:bf:3f:43:3b:
7c:89:7a:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:22:01 2023 by rpki-client on console-fra.rpki-client.org