Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B2E28650391C11EC9D28816BD8A014CE.roa
File: B2E28650391C11EC9D28816BD8A014CE.roa (raw, json)
Hash identifier: RIcLUxom5jIgsCh0wh4FFQvAZSqiD8FuGg8RjKJltvw=
Subject key identifier: 84:29:CB:F6:D1:16:F9:1D:E0:35:D9:4B:BD:42:DA:3D:BE:53:48:96
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0CB4
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B2E28650391C11EC9D28816BD8A014CE.roa
Signing time: Sat 30 Oct 2021 00:59:56 +0000
ROA not before: Sat 30 Oct 2021 00:00:53 +0000
ROA not after: Sun 30 Oct 2022 00:00:53 +0000
asID: 139879
IP address blocks: 154.194.128.0/17 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3252 (0xcb4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Oct 30 00:00:53 2021 GMT
Not After : Oct 30 00:00:53 2022 GMT
Subject: CN=617c990c-1325
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:72:41:ae:14:a9:58:e7:95:3e:22:c0:1d:55:
93:0b:3e:0a:d8:a8:f6:7f:5d:41:6c:d7:de:db:e8:
a2:99:db:1c:e3:1f:85:9b:98:7d:c2:34:ad:e6:23:
2c:0e:a4:21:f8:b4:87:dc:c4:66:6f:25:98:7e:78:
ea:64:0e:61:a1:dc:4b:5f:eb:1a:28:8e:34:89:67:
bf:d6:3f:9a:49:28:29:a3:64:33:0f:21:69:52:a6:
ca:80:de:f6:f2:8e:11:a5:e0:21:4a:a8:2f:6f:8d:
b2:c5:23:7d:8a:8e:12:ea:8a:cd:cb:9a:8e:a8:b4:
b8:ee:10:95:50:70:f7:4e:59:c0:3c:35:6b:08:5e:
d7:51:f8:1b:f9:fc:3c:04:f9:9b:ed:ce:fe:61:fb:
9e:c2:01:b7:c6:cb:02:5e:95:e9:bc:ec:80:85:98:
34:fe:d9:08:02:3d:7e:ca:82:33:50:74:5f:32:bd:
d7:35:13:ad:28:11:9e:95:9e:12:ae:21:ff:98:f6:
39:79:74:27:a2:4c:08:86:54:29:48:91:a7:8d:4b:
06:ad:21:ed:34:94:55:c4:28:45:98:83:46:d9:ba:
be:b0:96:32:05:94:80:87:e6:36:9c:49:a2:2f:5b:
1a:78:3a:ad:f8:12:65:5a:9c:fb:7f:ab:e6:13:e5:
4e:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:29:CB:F6:D1:16:F9:1D:E0:35:D9:4B:BD:42:DA:3D:BE:53:48:96
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B2E28650391C11EC9D28816BD8A014CE.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.194.128.0/17
Signature Algorithm: sha256WithRSAEncryption
aa:a5:d1:a6:75:fe:66:58:97:52:44:46:31:a4:8e:06:1e:4e:
6a:87:5b:e5:81:67:b2:cd:a2:9f:00:f0:4a:c5:9b:32:68:d4:
bd:a9:79:f0:57:1f:9e:c1:46:70:40:2f:64:f8:f8:fa:e7:76:
e2:d1:2b:86:ad:3a:d3:83:9e:aa:8b:fc:bb:41:fe:3e:af:1a:
e3:fc:68:45:0e:27:73:4c:87:20:fb:03:a9:2d:e8:56:73:6d:
bd:1c:f6:5e:43:96:5b:04:10:06:8e:a9:09:bb:b7:6f:36:a1:
ea:0b:10:ec:10:cb:c8:ed:c1:a4:65:e5:d0:f1:41:2d:20:66:
1a:7b:b0:65:17:26:3b:4d:61:65:2d:52:d9:6f:65:a7:92:03:
1b:91:4e:69:34:7b:4b:b8:30:96:00:74:e3:d6:42:fe:a1:da:
41:6d:4b:b7:a8:4b:ca:de:57:2f:a6:6b:73:44:67:39:65:9f:
4c:54:e4:26:d5:c6:01:29:b3:6b:f5:89:dd:c2:35:3f:7b:bb:
80:53:7f:2d:e6:ce:bb:69:29:9b:6f:38:b0:91:5f:c9:19:08:
7d:83:72:53:65:fa:59:53:a7:90:f2:03:ca:04:57:91:fe:5b:
a4:28:90:67:94:cc:a9:0a:49:92:af:74:eb:85:9e:18:4e:19:
75:14:5f:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:22:13 2023 by rpki-client on console-fra.rpki-client.org