Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/75C49726302F11ED9B5BE8C3F1222468.roa
File: 75C49726302F11ED9B5BE8C3F1222468.roa (raw, json)
Hash identifier: OhimAbP+FgMDf7cLXwvMMByllqQbR98hBlz7IJ3+7UI=
Subject key identifier: 62:1E:D7:1B:98:D7:B0:0A:BB:02:86:4B:87:CC:58:97:AD:14:6F:DE
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 18A1
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/75C49726302F11ED9B5BE8C3F1222468.roa
Signing time: Fri 09 Sep 2022 11:06:32 +0000
ROA not before: Fri 09 Sep 2022 11:06:27 +0000
ROA not after: Fri 30 Dec 2022 11:06:27 +0000
asID: 328608
IP address blocks: 154.83.64.0/18 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6305 (0x18a1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Sep 9 11:06:27 2022 GMT
Not After : Dec 30 11:06:27 2022 GMT
Subject: CN=631b1e38-622c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:fd:70:e6:70:f1:ea:a5:99:b3:d0:84:c1:a6:
ab:f7:ef:0b:0b:84:0a:97:25:a2:29:86:8a:02:23:
7a:92:1e:48:d2:bc:02:3b:26:c5:95:44:a6:2c:e4:
1b:d8:ed:a6:a5:05:31:e0:6e:4c:22:e5:ca:fa:86:
fc:63:fc:c7:9d:f2:39:ab:b3:53:70:27:b9:56:44:
35:bb:57:3b:c3:2e:c3:3e:a6:12:a1:3e:1b:ef:7f:
fd:b1:e4:24:49:a3:df:19:6f:3b:23:4b:90:b9:15:
b1:f6:bd:f3:a4:c2:c9:17:e5:aa:19:ae:3d:52:97:
9c:af:29:90:e1:1f:a2:05:45:f3:e6:ab:ce:e4:b1:
1e:ea:8d:97:4a:8f:41:d8:0b:ca:bc:b7:7d:a9:e0:
d5:d7:9e:b8:a2:85:16:0a:e1:c7:d9:e9:09:48:a8:
63:c7:d8:23:38:1d:7a:13:aa:e0:1b:1d:67:0c:9d:
25:af:79:7f:fc:8b:58:04:23:31:ba:88:56:fb:52:
d3:a8:b0:90:2d:a3:44:ee:f6:5b:42:0f:6d:3a:23:
79:ac:4b:8d:b3:bf:65:32:cc:f1:6b:9c:3c:a4:e9:
f4:47:02:d0:ff:6d:7a:c2:08:f6:20:a6:81:89:b3:
78:40:19:dc:6d:f2:c3:48:b7:62:e9:59:54:13:82:
e1:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:1E:D7:1B:98:D7:B0:0A:BB:02:86:4B:87:CC:58:97:AD:14:6F:DE
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/75C49726302F11ED9B5BE8C3F1222468.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.83.64.0/18
Signature Algorithm: sha256WithRSAEncryption
4e:9d:5d:fa:5b:41:37:0c:e0:b8:75:61:9e:96:ad:5b:ad:0b:
0f:89:ab:6b:dc:7e:dc:36:05:71:5b:a9:5d:a2:a2:95:fc:67:
6c:e6:f9:3b:12:02:18:0e:09:3c:13:dc:51:7b:d0:a2:9a:b5:
69:a6:dd:3b:72:87:e3:1f:a9:72:29:da:4c:45:89:9d:71:bf:
6e:9b:62:6f:0d:8c:35:fd:2d:21:ee:a1:b6:78:21:bd:24:84:
d2:5c:85:84:ba:20:0a:65:5b:f6:fd:18:c9:41:dc:b8:72:56:
84:9d:bc:53:2e:75:0f:bd:d3:43:ec:82:3e:1b:20:12:ef:22:
ab:55:af:88:8f:4d:6c:51:69:5d:f4:b8:42:c2:6f:e0:ee:72:
9f:4c:d5:be:8d:5b:e0:0f:6a:ad:67:a3:cc:ab:13:ab:bd:28:
b4:cf:31:54:cb:2d:d4:11:e5:6a:ed:8b:d9:eb:13:66:8f:6e:
e6:56:10:f1:a7:53:0e:30:fa:51:4a:d1:be:6c:0f:a1:84:52:
5f:db:ac:8d:b5:c1:3e:37:05:f9:df:85:f0:a0:ea:56:c8:44:
27:88:a4:37:d4:29:dc:75:26:03:72:ad:61:91:b7:ed:e1:a1:
c5:c4:86:6f:77:9c:52:a0:34:c0:e6:ef:3b:ef:59:01:ef:51:
af:6e:e6:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:22:08 2023 by rpki-client on console-ams.rpki-client.org