Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/4FD0B9E80E5411ED9EDD22B2F1222468.roa
File: 4FD0B9E80E5411ED9EDD22B2F1222468.roa (raw, json)
Hash identifier: 8Bgnm8zE1IVFgkHSipe2y2LwsbMcN4i7Bdnn78zmNNo=
Subject key identifier: 21:6B:92:5F:B5:87:F2:CF:D0:9E:1A:2A:2D:AD:43:8B:02:46:CE:D5
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 17C8
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/4FD0B9E80E5411ED9EDD22B2F1222468.roa
Signing time: Thu 28 Jul 2022 09:04:40 +0000
ROA not before: Thu 28 Jul 2022 09:04:36 +0000
ROA not after: Mon 15 May 2023 09:04:36 +0000
asID: 397630
IP address blocks: 154.202.100.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6088 (0x17c8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jul 28 09:04:36 2022 GMT
Not After : May 15 09:04:36 2023 GMT
Subject: CN=62e25128-44ed
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:f9:8b:0c:3d:38:bf:e6:15:2f:6a:82:64:be:
c9:24:d9:7c:c0:44:02:d0:01:45:4f:98:3b:05:3e:
5f:2b:d5:f2:6a:cb:28:77:c0:c1:50:c8:5e:0f:cf:
1e:1f:cf:42:9f:b2:e0:00:ff:0f:41:02:97:4f:75:
77:8b:1f:82:eb:95:e7:e0:6a:59:33:e5:f2:fc:b3:
b2:44:4d:79:c6:89:08:8d:c5:55:86:0c:1c:a7:81:
64:70:7f:c1:e7:b6:c3:12:96:25:7d:45:ef:db:1d:
fa:3f:7c:61:59:d8:50:2c:3b:43:18:90:38:6a:81:
6b:87:de:c4:ba:e7:00:80:1d:8c:9f:a0:40:52:bd:
1a:b2:d5:d2:95:54:d9:f2:7d:a6:5e:cf:a9:fa:f7:
e8:50:1d:93:7d:ef:b9:7e:c6:86:4f:39:8c:a5:46:
46:04:bd:5f:75:04:4d:3d:4a:38:04:a5:95:bc:03:
d7:55:23:74:ed:28:ed:fe:d3:dd:c4:3e:cb:b2:43:
39:54:91:fa:16:34:95:bb:d5:5f:31:ef:60:0b:7f:
0b:e9:1e:6b:1d:7f:16:0a:46:1c:fe:e5:66:d8:b1:
16:02:56:75:a8:a1:1a:85:4a:18:b1:ab:6b:71:f7:
ac:8e:98:77:31:03:25:63:a7:6d:76:49:ba:c6:c0:
32:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:6B:92:5F:B5:87:F2:CF:D0:9E:1A:2A:2D:AD:43:8B:02:46:CE:D5
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/4FD0B9E80E5411ED9EDD22B2F1222468.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.202.100.0/24
Signature Algorithm: sha256WithRSAEncryption
08:25:92:5a:b3:ac:d6:29:5f:7e:ec:d8:ad:db:ae:24:f9:9d:
31:67:6c:8e:1f:8f:49:7f:76:ac:3e:db:00:36:05:2a:12:f4:
85:86:0c:ed:7d:8f:54:5a:f9:ce:57:80:2a:78:40:fe:81:47:
b6:b1:d0:6e:89:62:56:a1:df:19:cb:82:c3:4e:62:df:e5:8c:
75:1d:36:22:8d:86:32:39:2f:aa:22:6e:97:83:41:87:a6:de:
4e:e9:90:26:94:90:72:52:75:06:72:28:15:6d:3c:3e:f8:1c:
04:7a:d0:fe:4a:b1:ba:9a:a1:c1:68:56:83:53:05:2a:a5:d2:
4f:7b:ea:7b:a8:33:bd:8f:18:44:a5:63:28:79:8a:8d:38:a8:
1c:d3:32:9d:f8:18:ae:91:8e:fc:03:d0:f8:b2:63:cd:46:e0:
5d:40:ad:6a:92:ea:bb:0f:27:ec:9e:00:43:ac:cc:6e:45:ed:
0a:fe:1c:36:3e:f1:a1:0a:a0:d5:80:25:4b:dc:ae:71:4d:f1:
68:8f:fc:e1:8b:dc:2b:7d:54:81:c9:ea:82:42:dc:28:da:c9:
f2:d4:67:80:42:fc:09:a0:95:37:ca:e9:34:1a:83:41:06:6e:
38:78:3d:ce:93:39:16:19:6a:bb:81:48:d3:dc:44:b8:c9:34:
dc:7b:95:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:22:09 2023 by rpki-client on console-fra.rpki-client.org