Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/852A06E4E06811EDA7E0F8C82F6D8C1D.roa
File: 852A06E4E06811EDA7E0F8C82F6D8C1D.roa (raw, json)
Hash identifier: WOGVmEoCykTX6PsiAgl4cG3w2D7RvIAT2lbE0Roryh0=
Subject key identifier: 7E:E3:0C:7B:69:0F:7C:44:8B:90:95:0A:AA:57:B4:6B:A2:0B:5E:E2
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 1F9B
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/852A06E4E06811EDA7E0F8C82F6D8C1D.roa
Signing time: Fri 21 Apr 2023 17:18:23 +0000
ROA not before: Sat 22 Apr 2023 17:18:20 +0000
ROA not after: Thu 25 Apr 2024 17:18:20 +0000
asID: 63888
IP address blocks: 154.209.64.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8091 (0x1f9b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 22 17:18:20 2023 GMT
Not After : Apr 25 17:18:20 2024 GMT
Subject: CN=6442c55f-8e55
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:7d:2e:41:a6:26:da:aa:cf:b2:0b:56:b9:ae:
94:0c:e4:3f:c6:f7:55:9d:6b:45:02:8a:86:03:42:
9d:55:0c:2a:d4:9e:9a:df:c9:30:82:8d:5e:12:99:
71:66:c0:75:a5:50:d0:e5:48:c8:a5:65:d6:3a:1a:
8c:bd:42:3e:4a:01:49:16:52:c8:d8:69:0e:bd:4c:
8a:c6:1f:10:64:45:fd:06:90:bf:f4:1f:2e:35:07:
c3:82:23:e9:af:6b:5f:1d:18:63:c4:64:30:72:01:
dc:aa:1d:7b:2f:5e:15:55:9a:85:78:a9:1f:00:13:
67:73:00:5d:9f:67:d9:22:03:35:d2:e0:c9:c8:94:
25:02:82:ab:de:e0:32:5f:94:a2:a8:d7:e6:ce:17:
03:a4:28:f8:00:f3:9a:35:fc:5b:cb:67:75:1d:32:
44:1e:1a:84:12:56:41:cc:a6:dc:39:ff:51:dd:2c:
0b:6c:09:39:98:49:e3:e4:69:64:63:0f:c7:56:97:
08:2f:96:d7:7b:7d:76:ed:53:21:43:78:12:86:03:
8a:b3:ea:e2:4e:7f:f9:46:c2:38:1f:4a:71:cd:11:
5d:db:97:4f:14:3d:79:16:ae:a9:48:da:86:03:80:
4e:7d:8c:1a:76:e6:0a:d2:bc:b8:9f:ff:fc:b9:96:
9c:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:E3:0C:7B:69:0F:7C:44:8B:90:95:0A:AA:57:B4:6B:A2:0B:5E:E2
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/852A06E4E06811EDA7E0F8C82F6D8C1D.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.209.64.0/21
Signature Algorithm: sha256WithRSAEncryption
2c:82:c3:0b:95:1b:1f:25:8b:3c:a8:7a:6e:b6:f8:20:59:6f:
95:29:90:21:be:61:04:9b:4a:14:94:d8:28:64:90:76:8f:67:
97:55:dd:0e:09:58:8f:ae:a3:44:65:39:e3:cc:b1:30:da:28:
b7:f0:48:b4:46:4b:65:48:94:5c:66:39:f0:36:b7:d1:58:13:
42:8f:ce:c8:37:53:ce:7f:14:76:34:c7:86:9b:29:57:71:90:
14:d1:8c:92:ed:53:c6:5f:93:cf:4d:11:7a:bf:fb:7a:ac:19:
41:16:3a:9c:9d:61:bf:9e:57:22:80:e8:eb:8b:67:92:ee:12:
03:8e:23:d4:09:f5:a8:02:2a:ad:78:e7:fc:f0:68:52:da:d5:
1c:66:25:8f:af:1d:15:40:c1:58:99:d6:6b:5b:16:81:8a:6e:
a0:86:43:08:eb:44:7e:59:5e:f9:96:83:8e:08:77:05:21:14:
c2:5c:64:0d:59:fb:ac:2b:8c:a5:76:c9:a1:e8:94:41:ff:83:
cc:96:5d:0d:ff:f4:17:69:a4:72:10:e5:74:13:d3:25:0a:25:
d5:d0:bd:3a:bd:7d:c9:8a:85:d8:7c:a1:61:17:96:a2:14:3f:
3e:fa:eb:8a:a2:28:17:92:62:d7:cd:90:cb:1c:df:4a:a1:18:
b1:a2:4f:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 25 22:33:37 2024 by rpki-client on console-fra.rpki-client.org