Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/13AA604490AB11ECA29A8CBA5A40D577.roa
File: 13AA604490AB11ECA29A8CBA5A40D577.roa (raw, json)
Hash identifier: xN9JQUuVnXwAxzOSCpY/Zm7BGsfJY3pYEQUDW+Nqr1A=
Subject key identifier: D2:D3:23:8C:61:E1:AD:1C:BB:42:DC:55:CC:DF:E6:AD:A7:01:D9:89
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 14DE
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/13AA604490AB11ECA29A8CBA5A40D577.roa
Signing time: Fri 18 Feb 2022 11:08:19 +0000
ROA not before: Fri 18 Feb 2022 11:08:15 +0000
ROA not after: Fri 30 Dec 2022 11:08:15 +0000
asID: 137951
IP address blocks: 154.209.188.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5342 (0x14de)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Feb 18 11:08:15 2022 GMT
Not After : Dec 30 11:08:15 2022 GMT
Subject: CN=620f7e22-7c9c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:ce:96:e4:55:0c:c7:b9:51:fe:c0:47:7e:84:
94:e0:99:3e:fd:ae:00:64:c5:c1:1a:17:58:04:5e:
b3:a8:d9:28:b4:13:89:a9:89:ac:5f:f6:d9:ec:62:
54:77:79:b7:e1:82:ac:48:50:24:c3:92:d9:6d:af:
68:7c:a7:dd:ae:9b:41:1a:a8:ec:66:49:8f:93:13:
38:76:2d:70:37:46:2a:eb:a0:7c:60:d7:e0:00:6a:
64:88:e7:9e:5d:92:cd:ff:6c:7c:c2:cb:c1:b4:d2:
f7:24:56:ce:89:6d:b4:e4:26:d1:bb:56:11:30:a7:
72:96:f5:da:29:09:96:05:7a:6a:ce:7e:f2:e5:44:
b7:07:0a:d0:f3:c8:48:b4:0f:d2:ce:d4:30:12:54:
96:99:72:c5:ee:41:9c:c9:a5:cc:8f:bd:3e:57:90:
d5:17:99:ef:87:6e:61:fd:40:3f:27:5e:35:ca:7b:
8a:10:55:40:4c:e8:e3:7d:5f:77:03:30:14:c4:3d:
70:52:0d:48:5b:d1:a5:74:75:07:01:2e:27:6c:5a:
3d:70:fe:61:d8:e3:c7:b0:ec:0e:0c:89:09:0c:69:
23:96:93:c4:67:df:80:b0:f3:b1:31:cd:68:2c:6c:
0f:51:9d:ce:24:ca:37:c5:7c:68:d2:dc:5c:62:56:
1c:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:D3:23:8C:61:E1:AD:1C:BB:42:DC:55:CC:DF:E6:AD:A7:01:D9:89
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/13AA604490AB11ECA29A8CBA5A40D577.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.209.188.0/24
Signature Algorithm: sha256WithRSAEncryption
3d:98:ce:ed:5f:e7:c2:9d:9d:b5:27:b3:fc:1e:22:5c:84:45:
30:35:98:e5:0c:c2:ee:cf:55:3f:6b:1d:ce:ef:36:8e:10:b0:
db:97:71:4b:f8:76:ad:2a:31:96:89:01:94:b2:4e:42:ad:33:
d1:00:a8:0f:c1:12:b1:a0:11:7e:8b:28:2d:ac:fd:ef:b4:da:
58:12:3c:14:0e:a8:70:b7:4d:aa:b6:f5:5f:a9:93:29:a2:9d:
aa:76:59:ad:94:a0:60:d4:8b:3d:cd:a8:17:8a:5d:2c:39:c8:
05:79:28:79:5e:e1:2d:33:e2:f4:69:de:53:76:26:01:4a:ff:
10:46:83:53:df:20:fa:23:6f:7b:ab:5d:bb:65:f3:84:de:80:
1a:a6:02:76:bc:8e:7e:1e:8d:6a:59:03:14:1e:cd:4c:c2:86:
bc:13:fd:8f:da:d0:3a:6c:43:c1:c8:ce:c5:76:0b:5b:f0:96:
32:08:95:1b:20:67:63:19:1d:cc:b9:8f:98:5b:84:0b:1c:77:
22:8a:b9:8f:d8:17:8f:d5:20:b1:bb:6a:9d:ad:8c:bd:71:34:
fe:1f:49:09:d2:d7:8f:c8:7b:c0:23:11:92:61:c4:17:22:37:
19:a5:8c:19:4b:bc:77:5b:c6:1b:0c:cb:89:cc:40:f2:6e:9e:
63:71:b7:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:22:07 2023 by rpki-client on console-fra.rpki-client.org