Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/88623EDEE7D611ECA773E3E2F1222468.roa
File: 88623EDEE7D611ECA773E3E2F1222468.roa (raw, json)
Hash identifier: N6CS2aCULHln9Cf3rWzkPRoCEDYsh8uFmEupqkqqYVA=
Subject key identifier: CF:B7:0E:43:D4:68:8D:24:6D:D3:B1:1D:65:02:41:5D:09:52:E9:A9
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 16B2
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/88623EDEE7D611ECA773E3E2F1222468.roa
Signing time: Thu 09 Jun 2022 09:28:34 +0000
ROA not before: Thu 09 Jun 2022 09:28:30 +0000
ROA not after: Wed 30 Aug 2023 09:28:30 +0000
asID: 133199
IP address blocks: 154.204.34.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5810 (0x16b2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jun 9 09:28:30 2022 GMT
Not After : Aug 30 09:28:30 2023 GMT
Subject: CN=62a1bd42-fe1f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:96:9e:2e:ca:39:5c:70:ff:99:a1:e8:d7:43:
71:67:03:95:29:67:a8:e8:24:ff:a4:d6:b6:1c:bb:
6e:bf:8b:90:14:38:d3:a3:ef:65:34:26:d3:45:65:
af:b6:8e:85:8d:83:3d:0d:af:1d:16:9f:1a:40:72:
d6:e4:cc:50:33:ec:1b:e0:e9:4a:6a:f3:e7:a4:e5:
65:09:bb:a9:3f:f4:99:c0:fd:e1:44:6b:2b:86:c5:
50:ae:3c:52:ca:55:9a:28:6f:b8:8c:59:44:dd:3d:
a6:37:c9:4f:98:d4:59:45:07:b2:52:a6:9a:8a:6e:
14:c5:05:76:a8:30:ee:14:04:67:ec:38:c4:35:c2:
29:7d:25:57:d1:c7:5a:37:7e:17:a3:bb:62:14:59:
b5:d4:8c:14:50:8f:5e:87:b5:8e:b2:6a:36:9d:d4:
af:73:17:63:48:81:9d:ce:9e:4b:99:53:05:ee:f7:
d7:f2:4d:54:ce:c3:fe:d2:64:f9:eb:76:49:81:cb:
9b:b9:4d:2f:87:4b:49:65:be:73:bc:de:80:9c:19:
fc:b8:c3:9e:eb:aa:d4:65:fe:84:56:01:8e:7e:fb:
a5:37:fc:6c:83:cb:64:58:26:90:4c:00:45:2d:d8:
e5:54:b1:81:37:ed:c9:c2:3d:b8:de:49:b3:48:c3:
27:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:B7:0E:43:D4:68:8D:24:6D:D3:B1:1D:65:02:41:5D:09:52:E9:A9
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/88623EDEE7D611ECA773E3E2F1222468.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.204.34.0/24
Signature Algorithm: sha256WithRSAEncryption
8d:39:56:55:fa:46:b7:b6:b2:9b:1b:33:17:3c:20:b0:b3:26:
32:5a:aa:c2:4a:a3:db:20:22:4d:d0:a7:db:8f:ff:2b:2c:fd:
65:24:23:58:ea:a3:2e:b9:f4:05:32:7d:76:e2:b5:e0:d2:db:
67:a3:d5:f8:40:81:79:46:17:7f:dd:fc:5c:80:f6:9b:fe:42:
82:02:ff:34:a5:0d:fa:ea:36:2c:9e:ca:f5:c5:2c:1a:17:2b:
26:f0:b2:ef:ad:04:f0:8f:ba:46:c5:b4:d7:c0:0d:b8:5f:22:
8e:ab:ea:5b:de:6d:c8:1d:0a:80:8d:52:da:9e:03:a7:47:18:
9a:6b:d6:24:89:75:fb:c2:a3:fa:51:70:b9:8f:9f:a6:ff:f0:
b6:b1:da:82:f2:28:f2:2a:e7:4d:da:26:cf:b8:5a:e8:bc:09:
d1:72:0c:9b:37:23:aa:80:6a:b7:14:48:4e:bd:10:30:b6:1d:
cd:1b:3d:89:6c:db:fe:f5:7c:22:f5:1b:21:9a:04:41:3f:ce:
f2:33:be:9a:60:64:8b:d9:da:98:d4:6c:09:1c:b3:e0:09:18:
5f:c1:25:ea:c9:07:77:48:a3:6a:4f:06:3d:58:fc:a0:7f:b8:
7c:d8:36:b9:4e:27:35:a2:43:79:c9:71:8c:cc:2f:59:59:5f:
25:45:5b:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 30 13:21:34 2023 by rpki-client on console-ams.rpki-client.org