Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B8015B2A57D011ECBD7F13B85A40D577.roa
File: B8015B2A57D011ECBD7F13B85A40D577.roa (raw, json)
Hash identifier: hOK47jjIp3EadphWCSFjFlDxLdMw7Xqcd1Eak7Ccu+A=
Subject key identifier: A8:26:C4:CA:D6:4D:7C:EC:01:17:CD:F5:8A:C8:5A:89:F6:5F:CE:21
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 132D
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B8015B2A57D011ECBD7F13B85A40D577.roa
Signing time: Wed 08 Dec 2021 02:44:09 +0000
ROA not before: Wed 08 Dec 2021 02:44:06 +0000
ROA not after: Fri 30 Dec 2022 02:44:06 +0000
asID: 9009
IP address blocks: 154.95.37.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4909 (0x132d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Dec 8 02:44:06 2021 GMT
Not After : Dec 30 02:44:06 2022 GMT
Subject: CN=61b01bf9-7daf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:e3:ff:5c:22:a4:48:bc:02:f6:d7:c1:f0:d9:
dc:e5:4c:4a:f5:6b:8e:0f:fa:68:35:08:3f:1d:d0:
32:17:dc:cb:df:87:fc:af:89:81:94:68:af:e1:ab:
d0:2b:20:49:7c:b5:1b:13:f0:a4:e6:a2:4d:b8:6e:
62:91:95:72:37:f0:e9:3f:c9:20:a3:8e:26:8e:5d:
a0:d9:0d:c3:e3:7d:1d:d9:48:52:f1:75:5c:79:ae:
43:fb:e1:74:dc:39:99:65:80:bb:02:b2:cb:66:68:
89:26:71:de:94:f5:dd:2c:f2:4e:55:35:c8:2c:c3:
c5:2f:d9:a4:0d:f4:96:0b:dd:ac:94:d9:ba:e8:01:
3a:f9:95:bf:26:8a:bf:d3:cc:a1:89:fe:90:80:14:
f4:83:ca:3c:d1:ad:12:4a:69:57:7f:c6:02:90:55:
41:d5:1f:99:15:cd:66:46:a2:e1:ac:87:78:ba:12:
13:21:10:18:f2:26:62:58:5e:4b:a6:88:63:3d:af:
d0:9b:e3:c5:1c:c1:ef:a4:57:c6:5c:5c:25:76:fe:
43:f5:13:91:b5:16:a2:94:2b:fe:90:61:a1:63:dc:
53:c9:11:03:a0:f4:82:26:63:12:50:5f:d1:69:56:
9f:cd:e8:5f:27:2d:15:77:3e:96:5a:fb:64:3d:14:
97:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:26:C4:CA:D6:4D:7C:EC:01:17:CD:F5:8A:C8:5A:89:F6:5F:CE:21
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B8015B2A57D011ECBD7F13B85A40D577.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.95.37.0/24
Signature Algorithm: sha256WithRSAEncryption
d1:8a:b0:f5:e0:44:c3:4a:40:11:ae:c5:d4:76:a8:e6:71:ad:
f5:0d:83:56:13:ce:20:5f:4b:6d:9e:fb:47:c8:a0:db:cf:ed:
a7:ac:f1:02:92:0b:e4:21:94:1b:64:49:19:d8:cf:11:06:9d:
f7:08:8b:e8:1a:5c:d0:e7:d2:61:86:52:6d:98:5a:09:48:42:
89:0c:b3:3b:34:4a:c4:c5:e6:8c:9b:f3:c3:4a:f6:30:64:98:
ed:70:43:f7:b7:94:96:55:98:a1:2e:05:c8:69:1b:ab:07:c7:
b6:d5:11:b4:21:5f:a6:86:be:c6:65:22:e0:78:52:61:de:3d:
b7:98:ba:1f:48:31:5c:3b:9b:27:23:3a:f7:06:5d:46:60:9c:
54:db:95:12:23:c3:3d:83:ef:a0:99:a2:5d:93:32:a0:00:aa:
64:9f:0d:97:ca:f7:62:b8:63:fa:80:11:98:fa:e9:fc:bc:44:
37:09:08:ad:3a:cf:c0:08:9a:41:9e:0b:b0:d9:bd:59:f7:8f:
70:24:b5:9e:79:de:79:ea:37:fc:77:73:38:eb:cc:98:7a:ec:
56:d4:34:70:85:de:f9:aa:1e:06:22:d8:fe:90:d0:21:8a:b2:
0c:b4:1c:de:7f:02:49:bd:05:60:00:22:ff:4b:c2:64:ac:c6:
2f:ea:0d:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:22:13 2023 by rpki-client on console-fra.rpki-client.org