Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/873FF4B6F81A11EC9D31F394F1222468.roa
File: 873FF4B6F81A11EC9D31F394F1222468.roa (raw, json)
Hash identifier: kKF/R1H2M0BHDBd5G6VrW6CNbS3tVtawJhPLAmsJZC8=
Subject key identifier: 4A:F4:E1:30:54:2C:22:1D:3D:5E:56:EF:4D:69:DD:0A:8A:14:69:BD
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 1709
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/873FF4B6F81A11EC9D31F394F1222468.roa
Signing time: Thu 30 Jun 2022 02:15:36 +0000
ROA not before: Thu 30 Jun 2022 02:15:31 +0000
ROA not after: Fri 30 Dec 2022 02:15:31 +0000
asID: 328608
IP address blocks: 154.194.24.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5897 (0x1709)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jun 30 02:15:31 2022 GMT
Not After : Dec 30 02:15:31 2022 GMT
Subject: CN=62bd0748-8e29
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:d2:e4:d1:ac:7e:6a:16:9e:8d:0e:6f:88:72:
e5:94:e6:57:67:f8:ae:f2:fc:b2:f8:a6:08:c6:fd:
36:ac:3f:24:33:b4:22:34:7e:e1:0d:d7:2b:31:2a:
70:b0:f9:3e:1d:c2:e1:b8:3a:32:30:7a:f0:8b:f5:
f6:ba:ed:e2:29:a7:95:49:57:d6:b1:74:e4:db:3c:
8e:d5:59:c7:9b:26:51:c1:1f:4c:65:2e:3a:05:e7:
b3:c7:73:2c:b5:97:e1:7a:ba:74:13:c5:07:45:8b:
93:66:96:4d:a2:fa:05:f4:83:41:46:76:93:9c:f6:
0b:4f:e7:d1:a4:84:77:7a:ed:d5:95:fe:5c:2a:76:
d1:31:11:69:bc:4e:6d:f3:63:28:de:d5:fc:bd:69:
78:c7:e5:be:ac:b8:6f:09:82:1c:3c:92:a1:9e:fc:
7e:ca:73:cb:30:7e:4b:4e:49:5b:24:cf:c1:f5:c1:
2b:53:97:a4:c9:4c:0c:c3:5b:b4:6b:3b:4a:88:03:
2c:3b:0a:12:4f:9b:cb:1c:08:3b:77:dd:cb:36:5f:
1d:0a:b9:27:d7:fe:e3:22:7f:55:5f:f7:bb:8b:e5:
4d:37:3f:83:6e:1b:72:2e:99:b6:47:c1:60:66:03:
83:f7:ba:47:c1:6a:7b:32:49:62:e8:62:fa:f9:3c:
df:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:F4:E1:30:54:2C:22:1D:3D:5E:56:EF:4D:69:DD:0A:8A:14:69:BD
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/873FF4B6F81A11EC9D31F394F1222468.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.194.24.0/22
Signature Algorithm: sha256WithRSAEncryption
7f:ea:23:d3:59:fc:51:02:b8:71:2f:8b:9f:ff:99:8f:90:3d:
c3:9a:34:19:03:8c:6e:c5:e6:b6:4d:ca:ef:4c:a3:e6:63:cc:
5c:f0:18:c2:3d:43:c9:dc:a5:49:f4:24:07:96:32:d3:fd:82:
93:88:e8:87:3b:97:6b:ed:c9:6b:d4:89:f7:2c:cf:4b:0c:f5:
cd:72:66:9e:c9:f7:cb:f3:4d:fb:77:8f:01:6c:81:fd:20:50:
3c:71:f6:d1:2e:5a:aa:82:34:70:02:52:03:40:25:93:28:61:
0d:00:84:df:eb:2d:2f:12:ce:37:57:1f:53:64:e7:e1:c3:4c:
37:ea:38:3f:4b:84:7c:9a:a1:c1:dd:22:4a:d1:96:be:12:0b:
b1:f9:67:4e:28:06:22:c2:32:88:bb:a4:30:87:60:85:ae:1b:
6a:1e:fd:5e:33:42:07:8b:55:e3:0b:3e:ff:e9:9a:b8:97:b7:
ed:62:15:0a:2f:c0:64:b1:68:2c:37:fd:a7:2a:25:e6:55:bb:
9e:fd:c9:e5:25:94:39:95:a0:d5:f7:e0:f9:4d:c7:12:03:9b:
b5:e5:56:2b:58:a3:e5:58:ef:69:d2:c2:ec:d8:54:d4:7c:7a:
71:20:26:6b:b2:de:77:f3:c8:2e:c8:c4:36:4f:e9:1b:d2:a5:
79:08:5f:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:22:11 2023 by rpki-client on console-fra.rpki-client.org