Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A3DE01FA695711EC88B72DDE5A40D577.roa
File: A3DE01FA695711EC88B72DDE5A40D577.roa (raw, json)
Hash identifier: NTgFNR4FhuXtKmxzJ1vXOtAjTK0yn4K38mDHUiUHzyg=
Subject key identifier: 65:A4:16:CB:8B:01:43:AB:5E:0E:AC:64:F3:6B:98:1F:AE:63:9A:9D
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 1426
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A3DE01FA695711EC88B72DDE5A40D577.roa
Signing time: Thu 30 Dec 2021 10:02:48 +0000
ROA not before: Thu 30 Dec 2021 10:02:43 +0000
ROA not after: Fri 30 Dec 2022 10:02:43 +0000
asID: 328608
IP address blocks: 154.209.18.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5158 (0x1426)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Dec 30 10:02:43 2021 GMT
Not After : Dec 30 10:02:43 2022 GMT
Subject: CN=61cd83c8-85d4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:13:be:72:e0:22:6d:44:c5:b1:dc:e3:b1:26:
0a:28:12:3a:a7:2d:4c:77:dd:c7:68:77:ef:36:6c:
9f:36:90:d8:a8:03:a1:cb:e0:6f:7a:14:29:14:74:
8f:40:7a:6c:74:f8:46:06:3c:10:7c:73:5e:b5:04:
e3:1a:9c:a4:fc:56:b2:af:09:0a:4b:5a:c2:48:95:
c3:61:f5:73:29:4a:ed:02:f3:04:5f:95:42:cf:14:
ff:83:2d:b4:fc:de:61:7b:ac:d9:6e:4d:d6:2f:0e:
73:42:13:79:c8:ec:ef:38:e6:d0:78:13:96:d4:e6:
eb:40:89:99:b9:79:1d:5e:18:06:5b:c2:f2:eb:c2:
97:11:3c:f6:71:16:24:9b:eb:d3:ea:67:27:0f:17:
40:16:71:d5:88:54:ae:89:65:0b:bc:05:54:71:f1:
f0:ca:de:b4:3d:64:2e:56:f7:98:7f:a9:cf:e3:b6:
0d:1b:11:cd:0f:8b:09:25:2b:8c:ac:7f:c8:45:f2:
83:7a:35:0a:34:75:b7:38:f3:46:3c:38:16:e3:6c:
4e:5e:86:4d:97:88:a1:3c:4a:a2:42:62:4c:2e:16:
04:a2:3a:00:2e:a3:e6:03:93:b9:ce:66:9b:e9:5e:
f2:14:18:aa:dc:08:3c:d5:ed:e3:7e:28:2e:b1:da:
87:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:A4:16:CB:8B:01:43:AB:5E:0E:AC:64:F3:6B:98:1F:AE:63:9A:9D
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A3DE01FA695711EC88B72DDE5A40D577.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.209.18.0/23
Signature Algorithm: sha256WithRSAEncryption
ce:e0:5d:80:e6:48:60:d9:a8:19:1e:d8:6c:e4:0d:f5:47:d8:
61:3d:87:4f:eb:db:13:48:bd:c5:e0:a1:1d:f6:66:6d:1f:68:
62:a1:51:0c:c8:5f:36:84:77:8c:37:d8:b1:de:c0:11:ba:43:
c9:8e:07:5d:ee:ae:de:fe:8b:a3:9c:51:e4:1a:2d:e4:2f:11:
e9:9b:a1:13:90:cd:65:ac:19:66:da:01:47:74:a7:68:ae:aa:
ca:0f:09:ce:ec:e6:2c:3c:0d:35:43:3f:ae:6c:c1:b0:36:1d:
f2:d5:00:9c:4b:f3:3a:be:9f:34:48:83:09:af:d2:3b:8e:7c:
d5:2b:d6:65:97:26:e3:3b:04:f6:b6:92:e0:5b:bf:59:d4:3c:
f6:b9:d3:1d:ee:8a:75:90:cb:c0:48:5f:4d:24:4d:61:a4:03:
0e:aa:37:09:ed:61:20:fd:d8:f2:5c:cc:c8:3c:a2:05:af:ba:
c3:fd:94:f5:ae:2c:81:50:6a:58:e4:30:6b:56:e9:39:03:fc:
6a:8b:b4:68:41:a1:39:f9:11:de:76:26:eb:2a:09:c7:99:3e:
53:fe:a7:ec:29:b2:9d:ad:15:5d:d8:3a:65:36:ac:b1:2f:1d:
cf:b1:4a:c2:8d:2a:ce:44:c9:14:1f:47:73:7f:f3:f6:99:0b:
fa:17:ae:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:22:12 2023 by rpki-client on console-fra.rpki-client.org