Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/38643558A4CA11EC82E29ED95A40D577.roa
File: 38643558A4CA11EC82E29ED95A40D577.roa (raw, json)
Hash identifier: oXn1GS9aBLzrVL+DqTf5fFA+fxjgVDlSaryWR/50I+0=
Subject key identifier: 21:B3:76:E3:E1:BC:E8:7C:E0:12:4B:DA:B7:E6:E7:75:76:13:EF:20
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 154E
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/38643558A4CA11EC82E29ED95A40D577.roa
Signing time: Wed 16 Mar 2022 01:41:38 +0000
ROA not before: Wed 16 Mar 2022 01:41:33 +0000
ROA not after: Sat 31 Dec 2022 01:41:33 +0000
asID: 328608
IP address blocks: 154.212.139.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5454 (0x154e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 16 01:41:33 2022 GMT
Not After : Dec 31 01:41:33 2022 GMT
Subject: CN=62314052-51c4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:6f:92:ce:87:f5:75:e6:d3:23:10:a2:ab:92:
d7:a3:6f:93:fb:f5:c2:a2:8d:47:57:41:ec:e6:69:
bd:de:75:81:5f:79:cb:2e:3d:97:0a:ec:ef:b7:85:
f7:cd:13:51:7d:5f:c9:4b:bb:61:46:7d:9a:d8:a1:
95:57:78:d1:f7:98:88:77:06:b3:a3:ae:42:c8:75:
69:6b:51:db:b0:e7:53:c9:7d:13:0e:0a:b9:5f:93:
24:50:b7:5e:95:11:ae:9b:f6:aa:b5:c4:5e:48:d0:
25:f7:ff:ad:8b:a0:64:43:30:09:43:75:3e:8b:d2:
be:9a:f0:a2:29:a8:8e:12:d2:f6:25:ea:a1:f0:5e:
0a:a4:6f:7b:36:e6:94:32:11:76:fb:35:d6:f0:09:
6f:0a:eb:53:b8:bb:31:d9:cd:b2:58:56:7e:63:92:
d7:3f:c7:77:d5:d5:85:2a:f1:e9:ef:d1:b7:13:12:
a5:01:2d:67:3e:db:b1:32:4d:a9:10:1a:ac:60:39:
a2:64:67:0b:9e:ea:c1:fb:eb:4c:83:d7:4a:90:99:
70:3d:42:de:48:11:93:f8:be:b7:7c:8e:da:e6:17:
0b:11:14:cc:f5:49:70:ed:5a:05:85:a2:97:ab:88:
d7:d3:62:fc:60:e1:5b:4e:01:39:33:3c:29:69:30:
0c:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:B3:76:E3:E1:BC:E8:7C:E0:12:4B:DA:B7:E6:E7:75:76:13:EF:20
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/38643558A4CA11EC82E29ED95A40D577.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.212.139.0/24
Signature Algorithm: sha256WithRSAEncryption
19:98:fd:2d:53:04:45:23:d5:2c:41:f5:de:54:c1:3a:c5:7a:
d5:1a:c0:fa:be:6c:d4:e6:ef:ba:d9:f8:fa:87:da:2b:e5:6b:
e5:1a:af:86:51:62:e5:1b:d5:e1:88:2f:6b:47:9c:0b:73:1f:
76:46:58:31:b2:4b:14:1d:79:d2:55:56:7e:ba:82:87:c0:3b:
f1:41:4d:c7:56:91:17:3f:4c:9b:cf:3e:f8:bc:aa:fc:c1:67:
7e:a7:5b:20:37:96:cb:99:72:78:c4:85:d5:62:2c:03:f6:ff:
13:a2:d9:52:6e:6c:64:24:0e:07:07:e1:f2:ff:0c:34:5f:bc:
27:ba:a1:3c:0d:d1:b4:90:0b:67:e9:81:de:41:fc:51:54:df:
6d:59:b6:8f:a6:0d:4c:40:56:ef:26:78:78:57:58:a5:04:8e:
cb:e0:21:a9:1a:ea:82:de:a9:f8:c6:cd:4c:5d:c5:d0:3c:af:
09:3a:8a:fd:b3:40:62:db:d6:0d:c2:0b:e3:3e:c1:46:d0:ef:
22:95:93:7d:0e:3c:63:59:3c:cd:9b:cd:69:5d:82:47:18:22:
d4:51:56:6b:4d:77:81:a4:c6:6d:59:93:71:0b:86:21:f8:7f:
e8:f8:3a:a4:d6:b5:47:f4:1c:5b:a8:0d:bf:9e:d9:6a:0d:d3:
9a:c1:da:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:22:08 2023 by rpki-client on console-fra.rpki-client.org