Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/653E9F5ED5AE11EC8E9D4AA0F1222468.roa
File: 653E9F5ED5AE11EC8E9D4AA0F1222468.roa (raw, json)
Hash identifier: t3JeB5yVg+i343HE0L9ovZJvUjuSi5TRXBneVRXLwcA=
Subject key identifier: 37:C4:5D:F1:7D:9F:4E:24:2E:D2:06:AC:B9:04:2A:5D:CC:01:E8:AE
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 1657
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/653E9F5ED5AE11EC8E9D4AA0F1222468.roa
Signing time: Tue 17 May 2022 06:55:54 +0000
ROA not before: Tue 17 May 2022 06:55:51 +0000
ROA not after: Wed 30 Nov 2022 06:55:51 +0000
asID: 35916
IP address blocks: 154.95.2.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5719 (0x1657)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 17 06:55:51 2022 GMT
Not After : Nov 30 06:55:51 2022 GMT
Subject: CN=628346fa-b236
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:62:33:8a:35:19:17:17:2b:23:6c:b7:29:1d:
c2:0e:c1:1d:6a:ba:8e:7e:2e:81:fd:41:28:77:8a:
e0:2c:f7:eb:8d:21:2e:ab:33:e7:13:bc:b7:7d:c8:
8b:07:cb:1c:f8:ac:7e:3d:fe:f0:cf:f3:d9:39:41:
6e:f5:11:ac:86:7b:a6:06:2f:83:cd:00:50:73:1f:
00:d4:65:f8:e1:3e:aa:8b:40:62:80:de:3c:26:4e:
65:17:6d:23:dd:f3:7b:79:aa:07:10:44:64:44:14:
dd:6f:ce:b7:24:e9:4e:9e:9b:ba:99:f0:18:93:b8:
4d:da:39:df:05:c7:29:b4:3d:53:64:e9:00:2b:75:
48:17:9f:58:42:a9:eb:98:af:c1:fc:ac:d8:9c:51:
e4:d7:e8:45:54:a4:3d:38:7d:dc:46:4c:d3:e5:6e:
bf:9c:01:01:e8:67:0f:8a:ab:a3:a1:4b:4c:a4:fd:
a3:d2:96:ad:e1:b7:f7:67:d4:d7:6e:7d:74:58:80:
bd:be:00:18:3b:55:00:0e:dc:a8:93:f8:e0:52:f3:
b8:b6:a7:86:dd:3e:9d:d9:3e:25:85:c3:d1:82:d9:
31:db:36:63:7f:7d:41:7b:74:d0:49:f4:45:4a:95:
1b:c0:23:4b:dd:d2:cb:c6:c8:c4:15:46:53:08:41:
f9:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:C4:5D:F1:7D:9F:4E:24:2E:D2:06:AC:B9:04:2A:5D:CC:01:E8:AE
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/653E9F5ED5AE11EC8E9D4AA0F1222468.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.95.2.0/23
Signature Algorithm: sha256WithRSAEncryption
2d:d7:e4:6e:0a:40:67:a9:64:5e:1b:e1:4a:e7:b2:d0:2a:d9:
06:61:61:30:1a:e1:f0:7d:d1:92:ce:b5:38:f2:b5:b6:9f:b4:
b6:26:11:c2:c9:a0:bf:45:49:67:c9:12:bb:80:d7:99:b7:4c:
fc:a7:7e:e7:3d:51:09:76:92:74:86:20:5f:82:c0:e2:8b:70:
68:64:52:58:e1:d3:5f:16:8c:b3:2d:50:68:e8:10:3a:94:d5:
3b:b5:44:0a:b1:6e:06:cb:7b:a2:c3:27:23:f0:2e:14:f5:fa:
e8:80:1c:a0:02:e2:a9:8c:8a:67:d3:f3:c8:b1:af:8f:ba:8b:
e4:6b:b0:fb:9a:30:08:7d:e5:7b:d3:3e:72:a7:a3:bb:1e:dd:
64:bd:14:c9:f8:aa:4f:12:30:79:e2:03:fa:18:e8:7a:04:cd:
55:6e:6f:5f:44:c9:18:54:ce:5c:d4:0a:08:32:02:04:58:72:
35:8d:a6:11:ac:e2:db:5d:95:83:58:85:cf:4c:e5:7f:12:7e:
a5:a1:aa:1e:b2:70:b2:68:d9:df:d4:68:e1:b2:3f:89:7f:a7:
4f:6d:1b:67:12:d4:12:d3:82:0f:e4:46:29:52:5e:2f:fd:84:
7f:ce:62:1d:8e:da:49:ff:5f:e7:0d:10:ba:5f:04:7e:ae:3e:
9d:c8:09:a8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:22:10 2023 by rpki-client on console-fra.rpki-client.org