Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/AB36350C5BB611EC8B27ACC35A40D577.roa
File: AB36350C5BB611EC8B27ACC35A40D577.roa (raw, json)
Hash identifier: U1bzRfN8zi3I33XLHari0nTNaWyDltOMF5qNkMQoY8w=
Subject key identifier: A2:29:20:63:49:E4:28:20:E9:FB:FA:F7:E9:02:6D:A2:23:E5:5A:A5
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 13B3
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/AB36350C5BB611EC8B27ACC35A40D577.roa
Signing time: Mon 13 Dec 2021 01:47:46 +0000
ROA not before: Mon 13 Dec 2021 01:47:42 +0000
ROA not after: Fri 30 Dec 2022 01:47:42 +0000
asID: 133201
IP address blocks: 154.204.72.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5043 (0x13b3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Dec 13 01:47:42 2021 GMT
Not After : Dec 30 01:47:42 2022 GMT
Subject: CN=61b6a642-ee24
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:b5:de:3e:7c:45:14:b4:b3:35:30:7c:d1:5e:
e4:ad:20:3c:69:06:81:4e:12:68:1a:95:14:56:2b:
4e:5f:87:c1:92:a7:13:4a:93:6c:74:42:63:61:b6:
ea:55:f8:4b:f9:8e:2d:61:17:9b:f2:67:81:c6:8f:
42:a2:3f:d3:ce:45:60:a8:97:b6:2b:4b:6b:c8:cf:
f4:41:3b:fd:2a:87:80:9c:a6:e9:35:9f:a0:d3:6d:
4d:76:23:1d:03:f1:ac:d7:f3:41:48:5e:ab:86:c4:
f5:6a:4b:ae:64:50:87:e6:11:78:2e:73:3a:4b:7b:
98:51:ba:6b:80:ce:81:96:4f:22:cc:98:6a:50:fb:
92:3d:a3:b4:e7:62:e9:15:b5:97:74:91:f3:e4:7c:
b1:5e:27:b5:8d:19:24:0f:e0:26:40:c1:ad:3a:0c:
d2:a0:ea:86:7a:df:79:d6:8d:7a:4f:6a:43:ef:74:
98:83:95:45:7e:46:05:72:8a:0d:a2:d3:e5:de:72:
be:bb:8b:08:a9:5b:1f:6b:ab:a6:10:d8:17:be:2a:
c2:70:8e:68:25:1e:61:c6:ee:34:93:26:24:cb:4b:
0c:d2:df:99:8b:09:c0:39:48:d0:d1:f4:56:15:2a:
ad:5e:c2:71:94:c9:be:c2:35:b2:a7:c1:3f:f1:bc:
b5:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:29:20:63:49:E4:28:20:E9:FB:FA:F7:E9:02:6D:A2:23:E5:5A:A5
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/AB36350C5BB611EC8B27ACC35A40D577.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.204.72.0/24
Signature Algorithm: sha256WithRSAEncryption
33:8a:1d:9a:33:d3:78:1c:72:b0:c1:a6:f1:bd:cc:b6:29:f2:
66:ff:68:dd:f5:bd:aa:6c:d3:32:aa:b4:8b:c5:62:17:49:d1:
74:65:e8:4e:63:50:5e:ae:61:b6:c3:1a:0e:42:cf:0d:f5:81:
7b:fc:e2:c0:2a:d9:ff:89:00:6d:f3:c8:6d:74:cd:62:b2:0d:
26:57:78:38:fa:2c:84:a7:eb:92:3d:7c:ae:82:1f:e9:66:94:
e7:8b:a8:44:c6:5a:cb:b5:dd:d2:cd:5a:48:31:7e:bc:cf:39:
33:79:8d:2b:16:59:c4:df:08:5f:fa:4f:06:4c:e5:08:3d:ca:
08:06:5a:21:94:e7:71:5b:10:88:ac:dc:27:be:43:e7:5e:92:
e4:5e:f1:53:06:41:ca:d6:f0:6f:78:f0:77:3b:fc:f6:40:a7:
84:c4:c3:cb:84:d5:67:0b:48:8b:d7:5d:bd:af:b4:00:7b:39:
71:95:ed:c9:bc:18:f6:0b:99:71:38:1a:c1:02:9b:d7:29:f5:
ec:97:90:cf:9a:e4:68:0c:c8:e2:f2:78:44:19:3c:79:0b:a8:
cc:05:85:aa:21:aa:f8:22:0e:32:68:bf:81:5e:9b:20:a0:5a:
ce:e6:a1:0c:22:57:01:ec:76:8b:0a:e1:04:dc:a3:7f:ef:b9:
3c:20:f3:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:22:10 2023 by rpki-client on console-ams.rpki-client.org