Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/CCFB5054EAF511EC9B5D0DD1F1222468.roa
File: CCFB5054EAF511EC9B5D0DD1F1222468.roa (raw, json)
Hash identifier: U8VfIDLWMD1GAsY6RSq1ZR9BB5qFGiPCxFoDNQ/8Oy0=
Subject key identifier: 0E:7D:87:8F:7C:9A:13:50:23:B4:F6:73:1F:89:61:3D:96:DE:E5:11
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 16DE
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/CCFB5054EAF511EC9B5D0DD1F1222468.roa
Signing time: Mon 13 Jun 2022 08:49:57 +0000
ROA not before: Mon 13 Jun 2022 08:49:53 +0000
ROA not after: Fri 30 Dec 2022 08:49:53 +0000
asID: 328608
IP address blocks: 154.194.16.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5854 (0x16de)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jun 13 08:49:53 2022 GMT
Not After : Dec 30 08:49:53 2022 GMT
Subject: CN=62a6fa35-1024
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:2e:87:40:d4:f6:6d:a7:88:cb:56:36:95:28:
f8:d4:4e:a1:1e:56:0b:ba:ba:93:56:d9:56:83:f1:
e9:6f:d4:e2:31:01:61:4b:66:ef:c2:7a:87:1b:85:
67:9d:20:12:c1:96:d5:20:e5:0f:44:13:9f:47:da:
43:2a:e9:f2:dc:d1:19:4b:0a:c3:5c:b4:92:14:f3:
ea:d9:ef:75:1d:32:66:d8:be:77:4f:c0:20:37:80:
5d:1f:25:82:d3:46:e3:d8:4c:30:5d:22:8d:2b:2b:
f6:a6:4d:2f:8a:bd:04:62:29:73:fa:1d:31:b9:25:
b5:a4:46:3b:1d:1b:04:06:dd:39:a5:11:7d:d5:d8:
a4:fa:b5:a5:55:3d:23:52:36:e8:f1:9e:63:14:bd:
34:cf:5a:c0:16:42:0f:f7:1d:20:c0:8c:51:60:50:
1e:25:51:e2:08:6e:d4:93:d9:83:1d:b1:90:71:03:
6b:67:e3:11:80:18:53:0f:5f:08:5c:23:af:68:21:
94:e0:7d:05:cb:e2:91:c4:b7:14:f9:41:fd:27:38:
44:91:d6:1a:50:28:ed:60:59:16:01:73:ce:6d:0e:
ae:52:ad:3b:d5:1a:bd:89:4c:b4:15:18:15:93:79:
0b:6b:2c:b4:4b:05:d5:2f:14:3d:0c:dc:9c:a8:46:
1d:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:7D:87:8F:7C:9A:13:50:23:B4:F6:73:1F:89:61:3D:96:DE:E5:11
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/CCFB5054EAF511EC9B5D0DD1F1222468.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.194.16.0/21
Signature Algorithm: sha256WithRSAEncryption
2a:a9:df:c6:ef:9c:84:c5:2a:07:ff:ee:cd:91:bd:f6:b6:fa:
ee:6a:de:ef:07:43:09:30:55:9a:7b:82:a2:91:23:cb:17:c6:
2c:4f:d8:91:db:cf:0f:ae:99:20:b1:f5:9d:23:f1:ab:a1:c8:
2a:da:87:0f:ea:47:d1:d2:67:e6:01:6a:a8:cc:80:a0:a8:1e:
d2:5a:2a:29:be:b3:39:73:5d:58:a9:3e:d0:3f:74:b0:5d:23:
e8:0e:3f:35:d6:c1:0e:8d:f7:84:c5:35:0a:a0:07:ca:a4:bf:
76:bc:db:55:47:29:a8:e8:28:fd:30:2d:95:12:98:c3:cd:6a:
4b:4b:f5:bc:56:d3:b5:d0:e7:8b:91:ed:09:a5:ba:91:41:f5:
a2:c1:85:83:22:7a:49:19:bd:f0:99:f6:ca:4f:b8:dd:74:76:
5c:c5:3a:c3:6a:5f:ce:63:af:ae:1c:e3:f4:12:40:77:a3:e8:
14:60:b5:91:f6:28:3d:5f:e9:c6:82:8a:b4:5a:90:82:7c:50:
75:ba:27:62:1e:45:b5:33:dd:97:19:e5:2c:75:fc:80:65:44:
ad:60:2b:fd:d1:d9:83:96:29:33:14:80:a4:f6:c5:4d:1f:1a:
a4:9c:2a:d3:47:08:07:46:67:57:18:7c:50:2e:2c:13:d0:bb:
b0:fb:f6:af
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:22:11 2023 by rpki-client on console-ams.rpki-client.org