Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/899C94B2A43211EC882B329B5A40D577.roa
File: 899C94B2A43211EC882B329B5A40D577.roa (raw, json)
Hash identifier: M1iwEx5wFRhhpQjgM4jgO2rdz56zkdj79T5MI93Dab4=
Subject key identifier: 80:88:C5:25:0D:2A:75:E6:EB:6C:A4:BC:B2:52:3D:2B:4D:B0:94:D0
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 1530
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/899C94B2A43211EC882B329B5A40D577.roa
Signing time: Tue 15 Mar 2022 07:35:51 +0000
ROA not before: Tue 15 Mar 2022 07:35:47 +0000
ROA not after: Sat 31 Dec 2022 07:35:47 +0000
asID: 133201
IP address blocks: 154.205.32.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5424 (0x1530)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 15 07:35:47 2022 GMT
Not After : Dec 31 07:35:47 2022 GMT
Subject: CN=623041d6-bee5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:cd:41:6e:27:b2:87:7e:d5:3f:db:e4:77:aa:
89:9e:31:3e:41:66:0f:bb:a8:e7:c6:88:d8:df:b9:
c9:f0:fe:0e:f1:b9:f3:2e:e3:b4:87:d1:f1:0f:d6:
ab:ee:9c:67:7f:2f:6f:6f:72:cd:a0:95:a7:5b:6e:
ab:27:05:47:88:d6:74:75:60:0b:6d:0b:df:d6:36:
24:ce:ab:5d:95:81:17:73:53:99:a8:1e:85:dc:31:
aa:9c:30:e6:b8:42:71:82:6a:57:8d:c8:bf:87:39:
ba:8e:2a:5d:ed:2d:6c:6c:29:59:4e:2e:1a:40:87:
7d:03:1f:14:1b:c3:46:14:26:0e:2c:2f:20:d9:ee:
ad:d6:05:50:b4:c2:fd:a6:f8:49:9d:c7:39:1c:ce:
bd:50:9a:3b:a6:b3:6e:dd:df:2c:81:d3:f5:51:06:
ae:16:59:6b:e4:8d:8a:06:75:ee:dd:d8:7f:ab:2f:
9f:e4:bb:71:2d:be:60:91:5d:c8:02:ac:f9:df:ee:
29:2d:f0:e9:ac:e0:6e:c7:4c:70:f9:de:e1:a6:ab:
fe:4a:ac:7b:5f:d8:a8:8d:5e:7e:14:8a:f8:02:9a:
87:04:0f:7b:82:54:e6:84:5a:83:3c:69:3c:fb:6f:
64:50:0d:64:25:e9:9a:85:7a:4b:5c:34:34:9e:8f:
86:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:88:C5:25:0D:2A:75:E6:EB:6C:A4:BC:B2:52:3D:2B:4D:B0:94:D0
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/899C94B2A43211EC882B329B5A40D577.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.205.32.0/20
Signature Algorithm: sha256WithRSAEncryption
4d:f0:ba:9e:c0:73:22:9b:ed:cb:9a:1c:f8:c2:54:db:98:3c:
dd:68:8a:87:b8:a1:30:42:2e:6b:3d:e5:de:b9:ea:08:cb:b9:
68:e7:2b:ab:62:c6:94:71:8d:d9:17:75:98:24:d7:95:fe:2a:
4c:e2:ce:c1:4e:66:0d:7f:9a:47:e5:8a:99:2e:17:32:96:f4:
4b:09:3e:09:0e:de:ba:c6:cb:88:4f:bc:db:88:5f:7e:0d:ab:
9e:12:ea:54:80:00:20:24:17:87:9a:32:63:41:fd:87:a8:38:
e2:2e:c3:23:2e:90:87:95:d4:ea:47:ce:4f:dc:f1:15:a2:c3:
7c:87:be:18:ea:1f:f8:2c:6c:1e:90:7b:bc:58:52:a3:cf:bf:
64:c6:39:6a:33:b6:d7:d7:13:07:88:e3:e5:5f:e8:5e:30:31:
b4:d8:1b:99:a2:d3:73:02:03:2d:a5:a3:d2:6e:6c:c8:d2:74:
94:b0:f8:4d:0c:6d:a8:1d:74:03:c9:a8:75:40:0b:47:54:5d:
e2:51:d2:5b:53:2d:ec:27:6e:52:b3:16:a3:2c:f4:d2:63:e3:
1d:ba:11:f8:42:10:ca:59:0b:1e:14:94:07:2d:87:af:d8:a8:
9a:3e:06:aa:df:63:39:78:cb:d9:c9:fe:4c:24:36:c5:6d:fb:
33:c2:6c:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:22:09 2023 by rpki-client on console-ams.rpki-client.org