Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7E020A34630411EC96F9D5CE5A40D577.roa
File: 7E020A34630411EC96F9D5CE5A40D577.roa (raw, json)
Hash identifier: tte3tD3IzI2MW57H1O1pZ841WO9LZmxaLSXJIAtg07o=
Subject key identifier: 5B:34:A2:59:B6:47:19:57:44:49:8D:24:96:D3:C5:BC:07:B5:71:3F
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 140F
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7E020A34630411EC96F9D5CE5A40D577.roa
Signing time: Wed 22 Dec 2021 08:52:29 +0000
ROA not before: Wed 22 Dec 2021 08:52:25 +0000
ROA not after: Fri 30 Dec 2022 08:52:25 +0000
asID: 212552
IP address blocks: 154.91.171.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5135 (0x140f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Dec 22 08:52:25 2021 GMT
Not After : Dec 30 08:52:25 2022 GMT
Subject: CN=61c2e74d-c599
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:d1:fa:b7:82:ad:2d:82:68:02:13:c4:71:67:
c1:df:a3:b8:cb:01:33:f8:c7:2b:f5:ef:43:a3:f4:
d0:7c:ad:69:43:22:a8:9e:40:44:3b:09:6d:3e:95:
2b:3e:1c:e4:0f:d1:c6:8a:ae:8f:b0:a5:39:56:65:
5f:41:d3:73:d3:4e:46:7a:87:9d:de:b5:69:66:3e:
4e:c0:8f:63:06:b4:0d:c3:3b:46:63:e7:be:3e:ca:
be:d1:e6:b1:ec:59:70:f7:40:68:08:6d:c7:08:ba:
a8:bc:9b:e5:a6:e7:e8:89:0b:4f:fc:21:31:93:ee:
9e:d0:73:30:c5:17:ff:a3:67:74:63:77:22:8c:c2:
9c:f2:bf:c2:f6:03:d5:48:d3:93:e9:f7:6c:df:e6:
00:46:f2:d1:20:3d:10:74:5c:cf:2d:3d:f2:0b:a9:
eb:1e:4d:f7:1c:3f:6f:a1:bb:71:f4:68:9b:12:e3:
cc:af:40:85:de:2c:c0:f1:ab:eb:32:fe:8b:92:ef:
ce:a7:fb:16:90:2b:b9:e0:70:a5:3b:05:e7:ca:1d:
b9:38:26:cf:ee:db:27:d3:fa:e2:30:5c:a8:17:6f:
26:71:3b:72:7a:75:33:f4:fe:28:3b:03:d0:7f:8b:
94:d8:1e:4e:f5:d7:ed:05:ae:2c:47:08:9e:f7:2b:
bc:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:34:A2:59:B6:47:19:57:44:49:8D:24:96:D3:C5:BC:07:B5:71:3F
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7E020A34630411EC96F9D5CE5A40D577.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.91.171.0/24
Signature Algorithm: sha256WithRSAEncryption
90:8f:02:65:90:8a:52:5d:26:9e:51:98:03:af:e8:98:a9:c3:
96:ab:51:e5:ba:6f:5e:97:62:f8:f6:8c:e9:ec:67:a8:a4:98:
26:e2:43:c1:2c:f7:1e:3a:48:b9:5e:21:7b:5e:c0:3e:e7:9e:
f3:81:42:b2:c4:85:83:92:95:9e:89:79:7a:e4:c8:38:69:1f:
1a:b4:a5:5c:43:4a:55:f5:70:4d:f5:aa:bc:64:6e:da:3f:42:
8f:cb:4d:70:6b:e1:36:72:03:a8:b5:82:1d:0a:a3:0e:ec:9c:
ba:89:b9:37:6c:40:b8:12:01:37:f1:c1:e5:b9:33:60:32:66:
85:5b:c3:dd:60:bb:c1:70:2c:20:93:f2:96:5c:60:ef:9e:84:
af:ac:a0:de:7d:42:e0:5b:0c:0f:76:61:c7:95:32:8b:62:ed:
dc:5d:94:98:1f:a8:fa:6f:7b:20:b7:2c:70:65:f9:60:63:f9:
b3:41:39:84:1a:be:70:b5:f1:b7:c1:c0:c0:73:c0:84:aa:6c:
23:02:43:6f:3d:3e:fa:7c:9f:ee:47:31:4c:0c:08:bc:ad:03:
82:a4:96:3a:aa:4f:5e:d9:c8:10:e8:12:65:02:28:9a:cc:8f:
af:e4:0c:21:c0:65:de:00:4a:1e:d9:dd:74:d3:bb:eb:a7:60:
ca:05:4d:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:22:08 2023 by rpki-client on console-ams.rpki-client.org