Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/68200F68A44511ECB0BFD9D15A40D577.roa
File: 68200F68A44511ECB0BFD9D15A40D577.roa (raw, json)
Hash identifier: 2CEvkVHtERUh2uuImSkPZULXMNp4F8MlA8mRPhiMhLQ=
Subject key identifier: 56:55:C1:CE:AE:1E:8F:AE:45:F9:15:BC:67:B9:80:B5:6F:F9:E3:54
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 153C
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/68200F68A44511ECB0BFD9D15A40D577.roa
Signing time: Tue 15 Mar 2022 09:50:55 +0000
ROA not before: Tue 15 Mar 2022 09:50:52 +0000
ROA not after: Sat 31 Dec 2022 09:50:52 +0000
asID: 135097
IP address blocks: 154.205.32.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5436 (0x153c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 15 09:50:52 2022 GMT
Not After : Dec 31 09:50:52 2022 GMT
Subject: CN=6230617f-a053
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:02:82:ff:ff:7f:98:4c:50:1f:01:d4:1a:6c:
7a:dc:06:a9:42:35:c8:11:ec:f1:a8:77:60:ac:d8:
82:43:b9:9c:3c:f8:2c:a4:9f:d5:7f:fc:f7:0d:eb:
c1:d6:f1:05:08:15:81:a1:70:5a:f6:a5:d0:fb:c6:
d5:f6:bb:36:1c:05:ff:f7:bc:d9:c6:7a:b5:21:4e:
33:38:00:78:28:72:48:aa:f2:27:9b:50:ef:da:2d:
17:22:30:82:ba:3f:54:f6:c6:de:2a:d9:b0:d8:79:
93:10:ea:bd:18:13:f5:48:d4:01:be:1c:af:cd:54:
06:01:e1:ea:d9:58:49:00:03:36:39:07:6a:bf:d3:
93:43:ee:4d:48:bc:90:4e:be:08:81:d5:e1:17:de:
c1:4e:a3:24:9b:c5:aa:0f:86:c3:7a:b7:44:60:bd:
c2:d3:58:0d:c0:95:39:e6:e6:c2:c2:09:25:eb:7c:
c3:ad:67:06:dd:11:9b:2e:35:5f:a3:71:29:57:ec:
aa:89:7c:5c:ce:98:73:e2:47:bb:70:d9:dd:1d:cd:
b3:62:c7:39:7b:0d:8d:74:88:0a:a5:ed:c4:5f:37:
e6:81:09:84:a5:b1:02:f6:19:5e:30:26:0e:54:70:
cf:68:94:c1:7c:a9:bb:c3:35:bb:90:83:5a:97:fa:
d3:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:55:C1:CE:AE:1E:8F:AE:45:F9:15:BC:67:B9:80:B5:6F:F9:E3:54
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/68200F68A44511ECB0BFD9D15A40D577.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.205.32.0/22
Signature Algorithm: sha256WithRSAEncryption
ba:b4:33:df:e7:3a:40:97:b4:fe:a4:a9:4f:c9:b7:26:6a:c4:
b2:b3:30:17:04:dd:74:be:7c:bb:2f:7f:a2:a8:10:5c:8a:ee:
56:0d:08:37:bb:9a:74:ba:a0:99:f0:c6:52:b0:ad:74:d8:58:
fc:53:aa:e2:97:50:cd:0e:da:a8:26:83:45:f8:a7:73:bf:70:
b0:2a:37:18:1e:d6:47:db:b3:5b:4b:4a:1c:65:11:96:b9:6e:
f6:dc:64:48:1d:5a:d1:33:25:95:59:98:3c:fb:2e:34:27:7c:
46:e5:cd:41:b3:73:c4:4a:59:cb:e2:b9:ff:1a:49:f6:23:5e:
f0:d4:32:78:27:11:51:12:6e:94:7e:5f:49:fb:82:41:6e:2c:
92:17:e2:e7:68:42:12:9f:91:cc:dc:72:5c:d1:01:61:cd:96:
88:3a:1a:7e:3c:ed:11:ad:00:8e:a1:df:19:6b:fc:1e:58:23:
22:f9:9f:e5:52:7a:45:7c:5f:4f:31:9f:ee:b0:ee:71:02:56:
4b:a8:6b:10:2f:c5:83:38:4c:f5:8e:47:e7:56:69:dd:65:f1:
66:53:93:e3:c3:50:12:bf:85:86:5a:62:63:84:f8:3d:e3:ef:
cb:df:e8:02:01:bd:5c:3e:53:a5:c1:3f:6a:c6:86:6d:06:c8:
09:15:d3:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:22:07 2023 by rpki-client on console-ams.rpki-client.org