Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1D02CD00E58111EB926D1E30F8AEA228.roa
File: 1D02CD00E58111EB926D1E30F8AEA228.roa (raw, json)
Hash identifier: TfIwRZ080Hdf1+DX0ehMpg1Twj4IYRon9+mKbcAdjU0=
Subject key identifier: 36:E4:8A:60:5E:2B:15:03:3F:BC:6F:08:CF:E1:5C:06:DA:7C:9A:7B
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0816
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1D02CD00E58111EB926D1E30F8AEA228.roa
Signing time: Thu 15 Jul 2021 15:27:07 +0000
ROA not before: Thu 15 Jul 2021 15:27:02 +0000
ROA not after: Sat 09 Jul 2022 15:27:02 +0000
asID: 397630
IP address blocks: 154.84.140.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2070 (0x816)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jul 15 15:27:02 2021 GMT
Not After : Jul 9 15:27:02 2022 GMT
Subject: CN=60f053ca-79fe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:73:fc:3e:bd:15:bc:7d:a1:0b:45:2e:4f:17:
cd:e2:1b:b2:82:33:7b:a2:0e:f6:b7:7e:22:2a:55:
83:53:fd:78:54:75:59:c4:03:45:d8:5c:ac:3d:ff:
89:b2:d5:f4:96:b6:50:ce:c5:e2:b4:b2:f7:6b:f4:
fb:05:6d:b0:78:4f:f4:a3:96:52:56:aa:69:0b:06:
27:8d:80:fe:8c:49:c8:0c:97:56:ed:a3:81:41:f6:
9b:e5:2b:a4:cb:3e:c9:12:3f:a9:5d:2e:e3:f6:1b:
60:7d:f0:41:91:f8:0b:74:ff:46:af:cf:5d:dc:a3:
d4:28:23:90:10:2b:01:9e:a4:c2:ff:6a:81:a5:4f:
e5:02:c2:55:42:ec:ab:cd:71:62:f3:cf:cc:42:82:
f6:76:c6:b7:88:70:be:e6:cd:14:cb:05:ca:da:7d:
3a:62:fb:f8:c5:54:0a:88:61:dd:65:ff:07:fb:2b:
f1:4d:88:8e:f2:73:ea:27:a7:76:ec:00:84:6b:5a:
97:26:c7:12:86:ff:45:86:21:31:da:a8:2a:b3:1c:
72:3e:1b:49:62:b7:24:57:9a:d6:21:3d:59:c3:c2:
ae:ba:b6:00:36:45:71:08:ef:26:e3:db:0a:ba:14:
6f:f6:ef:65:de:d7:08:f8:4c:ad:20:2f:97:3a:08:
e8:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:E4:8A:60:5E:2B:15:03:3F:BC:6F:08:CF:E1:5C:06:DA:7C:9A:7B
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1D02CD00E58111EB926D1E30F8AEA228.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.84.140.0/24
Signature Algorithm: sha256WithRSAEncryption
b4:86:42:3b:00:a0:2f:4f:04:8c:1f:5e:8c:4f:b5:16:57:33:
c6:18:e6:28:8f:7d:8d:f6:b7:96:78:29:be:a7:b3:c8:86:5f:
07:02:7a:60:4c:64:66:fd:0d:03:cd:46:80:fa:9b:35:b2:bd:
37:6e:dd:7a:a0:8a:f2:cc:02:4c:5c:85:11:af:e9:43:8e:58:
46:79:bf:0e:a7:28:55:3d:73:de:dd:80:cb:14:40:2b:dd:44:
f9:18:66:89:12:97:2c:e1:f5:0d:d1:1d:58:55:49:98:3e:9a:
8a:0e:87:f3:c2:81:7a:be:10:d5:f6:79:c1:51:fc:e8:c1:51:
15:2d:74:b6:fd:6c:62:2f:40:10:2d:a4:d5:4f:5a:32:cb:df:
01:e5:1f:19:8f:41:ce:03:da:06:2b:6d:54:76:0b:76:48:e6:
3d:6d:fe:2c:71:29:69:c7:d2:93:10:c1:bc:b8:99:27:5d:fa:
24:77:1b:fd:e6:4f:d5:f4:2c:49:04:90:05:2d:dd:0b:6c:b6:
56:1d:83:f4:78:5c:da:95:33:e1:b7:fe:bd:b0:4b:4f:5d:a6:
86:2a:1b:88:de:70:b7:77:87:2d:26:c4:6b:07:0b:b5:15:bd:
b4:f1:18:55:b2:81:0e:83:24:32:3e:5d:d2:f3:c8:59:7d:43:
f5:a5:2a:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:22:04 2023 by rpki-client on console-ams.rpki-client.org