Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/D7F538521C4D11EC8C8B1620D8A014CE.roa
File: D7F538521C4D11EC8C8B1620D8A014CE.roa (raw, json)
Hash identifier: lagnFUouFNvdkFaAGAW0T651jLObMlP47bIx1+YkHuw=
Subject key identifier: 76:7E:6D:CD:D8:76:40:32:EE:E8:F6:15:82:90:F0:4F:C0:B3:0A:66
Certificate issuer: /CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Certificate serial: 0695
Authority key identifier: 09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/D7F538521C4D11EC8C8B1620D8A014CE.roa
Signing time: Thu 23 Sep 2021 09:08:40 +0000
ROA not before: Thu 23 Sep 2021 09:08:37 +0000
ROA not after: Fri 23 Sep 2022 09:08:37 +0000
asID: 30535
IP address blocks: 154.16.188.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1685 (0x695)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Validity
Not Before: Sep 23 09:08:37 2021 GMT
Not After : Sep 23 09:08:37 2022 GMT
Subject: CN=614c4418-2cfc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:ac:5c:f3:62:fb:cb:ca:e2:5a:0a:05:4b:40:
c2:d0:11:16:1e:88:44:c4:49:d3:e4:97:37:0e:d9:
c3:63:60:3e:72:e4:ae:a4:fe:eb:63:32:6f:57:c9:
f5:d5:37:49:2b:c7:5d:81:b8:f8:5a:11:ba:7c:ff:
d3:9a:b0:9f:55:8c:76:f7:b8:78:c1:ef:f9:61:4f:
9e:0f:fc:aa:b5:21:8d:df:3a:f3:6b:8a:9e:b0:4a:
5e:77:85:6b:23:de:2b:6e:ab:dc:5c:a7:a3:89:0b:
ad:88:7e:7b:3b:0a:11:2f:3e:fb:1e:bc:84:d8:89:
0b:01:ea:04:fc:35:41:b6:78:b7:7f:f1:f9:b4:1c:
7b:c5:bc:0e:19:4c:15:9b:fc:db:ac:6c:73:16:8e:
ab:4d:29:31:9e:7b:b0:d6:3a:e3:7e:ca:ff:1d:42:
96:4c:51:26:2a:37:52:2e:0c:0f:84:8b:68:2e:4a:
39:85:09:21:aa:6d:f3:00:d2:56:34:cd:f6:e7:95:
ee:f9:2d:3f:05:46:0f:34:a5:08:f0:49:04:dc:67:
92:4d:47:c3:bc:05:49:70:07:34:d6:a0:1a:15:15:
44:d5:39:aa:29:03:21:dc:3a:dd:22:12:6d:dc:da:
f8:f2:a1:87:b2:3a:5b:49:35:0c:14:eb:30:c8:32:
e6:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:7E:6D:CD:D8:76:40:32:EE:E8:F6:15:82:90:F0:4F:C0:B3:0A:66
X509v3 Authority Key Identifier:
keyid:09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/D7F538521C4D11EC8C8B1620D8A014CE.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.16.188.0/22
Signature Algorithm: sha256WithRSAEncryption
9a:c9:bf:e1:e6:7f:e1:38:c6:b9:1c:c1:09:ef:ff:c4:12:8a:
ab:54:e1:e5:de:f4:66:9a:45:86:4d:2a:6a:bf:e6:5a:b3:4b:
aa:db:17:7c:8a:b1:4e:8d:2e:26:83:cd:e1:d2:94:8b:0e:e4:
57:c4:ed:73:4a:d6:61:36:55:90:ae:69:b0:0e:61:ef:a5:47:
a6:89:d0:dd:fa:c8:d5:44:b8:70:b5:50:4c:ee:a7:32:fe:c1:
f0:f9:b4:31:c7:e0:20:4a:72:07:41:51:7b:33:7c:ba:3b:d8:
73:f3:9f:b1:85:ee:78:d9:f6:74:12:32:61:18:3f:97:ce:94:
f4:b1:66:fd:4f:cb:40:dc:69:92:66:af:e1:a9:c8:4e:09:56:
b7:7a:50:2c:c3:5b:c4:c2:ef:49:65:3f:e1:31:d0:60:d6:47:
ea:d2:5f:d2:40:8a:9d:2f:6d:7f:2d:15:85:1c:dd:59:2a:08:
c9:dd:25:f3:fe:62:89:f6:a7:74:ab:de:77:61:32:33:84:67:
37:c4:aa:de:aa:42:db:a6:4e:86:d8:d4:76:eb:8a:6d:af:d4:
12:34:5e:f2:c9:4f:40:58:af:17:0c:75:77:98:fe:8f:30:93:
50:40:32:74:f8:28:3e:dd:85:a7:6a:7b:2e:7c:71:90:9e:30:
90:b3:1a:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:22:02 2023 by rpki-client on console-fra.rpki-client.org