Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D0B935A4A44511ECAB802CD35A40D577.roa
File: D0B935A4A44511ECAB802CD35A40D577.roa (raw, json)
Hash identifier: qVU01TZvMdkBKjC9VdjPoURJJ0dgGbMF/bQZpZs0fOY=
Subject key identifier: 4A:2A:BB:6E:61:E1:A4:22:17:5C:B8:AC:EA:0D:12:FE:31:85:6A:D8
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 1546
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D0B935A4A44511ECAB802CD35A40D577.roa
Signing time: Tue 15 Mar 2022 09:53:50 +0000
ROA not before: Tue 15 Mar 2022 09:53:47 +0000
ROA not after: Sat 31 Dec 2022 09:53:47 +0000
asID: 135097
IP address blocks: 154.205.40.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5446 (0x1546)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 15 09:53:47 2022 GMT
Not After : Dec 31 09:53:47 2022 GMT
Subject: CN=6230622e-2116
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:23:c5:e9:11:7c:c5:ce:53:97:ed:d8:d6:e3:
98:d9:f5:5a:39:aa:d2:35:5d:f0:fb:b1:84:85:5c:
06:7a:ca:62:07:ef:03:cd:0d:22:54:12:31:19:ad:
fc:d2:b7:04:96:47:46:9a:c3:af:4f:e0:25:d7:26:
32:42:61:4e:ac:2e:6b:af:13:ac:52:ea:a7:62:19:
88:d7:60:2c:9c:0c:fb:52:f6:d8:08:be:45:44:56:
33:46:ae:a7:28:67:2c:82:c5:1f:71:9d:58:b9:9e:
8d:5f:66:b1:71:e5:7c:10:69:55:c6:d1:2f:4a:3e:
70:b2:0f:19:da:eb:1a:b5:ec:ab:dc:67:33:e7:07:
ce:7b:e2:b9:2c:a3:ff:05:ba:23:90:3f:79:3f:30:
45:8f:a1:02:60:76:02:02:a7:2b:69:3f:6a:e4:5b:
b3:99:68:37:51:8b:c6:a0:c1:ee:87:7c:a8:a0:ce:
7e:95:a4:36:83:b4:0e:3e:c7:57:c2:8b:9c:49:4a:
c0:df:53:8a:ee:1a:fd:41:38:42:dc:6b:76:68:a2:
cb:af:56:dd:7d:52:59:c2:68:69:01:3f:81:ca:9b:
f2:7d:41:4c:04:21:54:40:fb:e9:58:2b:80:38:04:
29:8e:74:11:be:05:a3:95:a7:9a:4e:a7:f7:65:f7:
45:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:2A:BB:6E:61:E1:A4:22:17:5C:B8:AC:EA:0D:12:FE:31:85:6A:D8
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D0B935A4A44511ECAB802CD35A40D577.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.205.40.0/22
Signature Algorithm: sha256WithRSAEncryption
4b:64:3d:1b:32:46:56:45:42:32:71:e1:e8:9d:fa:fb:2d:64:
de:a0:d7:33:8f:15:4b:48:a7:06:80:cd:7d:01:64:1b:1b:2d:
71:14:3b:28:b6:d6:22:b5:8a:1b:31:ff:2e:e8:d5:24:76:ed:
c7:6a:8c:6f:ac:af:a7:cc:a5:da:20:33:cd:cf:92:b6:2e:aa:
83:21:75:c8:86:69:af:24:43:09:5f:ee:60:43:53:62:43:74:
8c:e1:6c:40:87:9d:91:10:13:f7:21:8a:ef:97:18:ba:e8:42:
9c:2a:3b:18:1a:88:6d:30:88:be:d1:88:02:c2:6c:77:53:da:
99:1e:4e:19:b2:52:e7:b4:15:fc:64:24:c1:e6:d4:9e:3b:e1:
8c:ec:5d:b1:5e:56:e5:b2:eb:1b:a5:d2:e5:65:54:2a:7e:62:
e1:89:04:92:4e:e7:95:9d:72:04:f6:2f:e7:14:e3:d0:09:33:
05:30:7f:d1:b0:91:1d:a3:8a:a6:2e:f7:31:dc:db:1c:f2:a3:
92:be:ae:67:07:fa:7c:39:16:23:d1:50:5b:6d:28:ac:76:1f:
cb:65:9b:ff:92:c9:82:f5:de:ca:d7:ec:7b:8a:0c:e6:c8:fd:
7d:10:c2:82:5e:60:d0:6c:4b:e9:4a:6a:32:c0:fa:d1:80:c2:
c2:19:5f:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:22:11 2023 by rpki-client on console-ams.rpki-client.org