Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C7EC3C5A5BB611EC9C4A11C45A40D577.roa
File: C7EC3C5A5BB611EC9C4A11C45A40D577.roa (raw, json)
Hash identifier: 2dPDLxIux0U32DuBDfW7Kyma+qcCJ041TTLxvlO8VV8=
Subject key identifier: 76:B0:0C:1C:C8:47:CC:48:65:72:B6:5E:85:F4:0A:C5:BF:B4:F1:5E
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 13B7
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C7EC3C5A5BB611EC9C4A11C45A40D577.roa
Signing time: Mon 13 Dec 2021 01:48:34 +0000
ROA not before: Mon 13 Dec 2021 01:48:30 +0000
ROA not after: Fri 30 Dec 2022 01:48:30 +0000
asID: 133201
IP address blocks: 154.204.73.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5047 (0x13b7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Dec 13 01:48:30 2021 GMT
Not After : Dec 30 01:48:30 2022 GMT
Subject: CN=61b6a672-da40
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:e6:c6:7e:15:5f:ca:ed:70:17:b2:13:3d:a7:
38:a4:bf:57:bc:37:63:e4:23:92:ad:cc:b3:4f:74:
45:55:6e:94:fd:de:37:33:98:4e:61:39:3e:8d:bb:
82:fb:04:cd:70:1d:60:52:a2:2e:67:0f:6a:4b:de:
cf:c9:19:a5:db:08:38:36:5c:d9:5c:65:4e:71:e6:
51:04:d7:66:69:d3:bb:d6:ea:57:50:7a:c3:9f:5a:
57:aa:f9:02:63:15:eb:0f:29:94:51:9a:52:f5:15:
c8:ec:d5:96:c6:a4:90:13:72:eb:e5:77:79:e4:08:
6f:5a:22:3c:87:dc:fb:3f:18:a7:00:16:42:f5:e8:
1b:a5:67:a4:57:1c:87:ac:9f:9c:d4:1a:ad:cb:cb:
cc:a3:46:7a:2e:d3:8d:ce:4d:90:25:09:b5:fb:a1:
8e:94:4c:d6:88:0e:01:da:3b:f1:4a:d8:a1:54:1c:
eb:94:b3:18:5f:46:b6:03:70:1f:84:10:14:93:77:
c2:f1:6e:d1:31:15:3f:7b:f0:b9:a6:9a:1e:82:0f:
90:1d:56:56:70:b2:f8:ab:0b:1d:d1:58:13:b3:b8:
ad:62:44:bc:00:b9:d3:f0:ee:64:9a:ca:cb:29:c9:
84:e8:ff:d8:3a:91:fe:c4:e5:26:ca:15:5a:a9:ad:
90:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:B0:0C:1C:C8:47:CC:48:65:72:B6:5E:85:F4:0A:C5:BF:B4:F1:5E
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C7EC3C5A5BB611EC9C4A11C45A40D577.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.204.73.0/24
Signature Algorithm: sha256WithRSAEncryption
af:bb:b3:0b:4c:d2:1c:3f:7f:c3:ea:5b:88:a6:79:ee:57:69:
66:51:32:6a:5e:93:0b:27:17:71:a4:fc:2f:9e:96:42:c6:d4:
b5:fd:4f:c2:e6:06:41:fc:1f:1a:3d:65:08:ae:f4:07:38:17:
bf:cb:71:59:f6:be:bf:1e:89:c6:51:0d:09:c9:c6:f0:75:1c:
c9:0b:48:85:79:61:d3:57:21:62:5d:88:b3:c4:88:d1:d7:6c:
7c:fd:84:27:35:38:e2:1a:83:97:ed:bd:e0:10:15:05:be:59:
ef:7a:25:43:61:7b:58:63:80:a9:e9:d6:3e:fe:f2:95:3e:52:
8f:30:33:c7:30:e0:8d:6b:cd:e6:87:90:fc:d2:e7:30:e9:1b:
5f:0a:f1:16:03:2b:3a:74:e3:89:89:7b:c7:f9:60:f2:94:69:
44:55:fc:27:f9:aa:8d:d4:70:62:34:51:56:1f:74:04:2d:43:
52:e2:4f:44:89:ed:9e:c3:58:d0:72:37:10:0b:cc:25:e1:32:
94:3a:95:f4:77:cf:a6:c8:ed:d6:90:11:40:88:da:e3:3f:ae:
fb:aa:30:8e:f3:94:b0:eb:18:0a:2f:f9:4b:aa:bb:5b:71:01:
34:59:99:3d:e0:86:47:3b:2d:0f:1b:b7:18:8d:a0:42:0d:3b:
05:96:10:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:22:11 2023 by rpki-client on console-ams.rpki-client.org