Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D18C037E0E5011EDA3C72EA7F1222468.roa
File: D18C037E0E5011EDA3C72EA7F1222468.roa (raw, json)
Hash identifier: REGOYNMJJczYkC8xn7QaDu62/6vvYIBopr4vqbczyE4=
Subject key identifier: 31:A4:87:A1:3D:85:CE:02:C2:42:71:8F:DC:E5:B5:2E:6C:7D:6E:94
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 17AA
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D18C037E0E5011EDA3C72EA7F1222468.roa
Signing time: Thu 28 Jul 2022 08:39:39 +0000
ROA not before: Thu 28 Jul 2022 08:39:36 +0000
ROA not after: Mon 15 May 2023 08:39:36 +0000
asID: 397630
IP address blocks: 154.201.41.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6058 (0x17aa)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jul 28 08:39:36 2022 GMT
Not After : May 15 08:39:36 2023 GMT
Subject: CN=62e24b4b-d028
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:76:46:df:3f:ae:9c:1b:1d:89:d5:1b:e5:ea:
8f:7e:60:13:73:91:b1:41:ab:14:e3:fe:12:5f:b3:
c6:b3:b1:17:83:be:07:88:a2:df:b3:56:fa:1b:b3:
2c:dc:06:03:76:16:da:45:c8:87:21:8a:67:5d:3d:
0b:3c:ef:3b:d0:a4:e8:7c:c8:96:ee:15:f0:a9:97:
3b:75:83:5f:3d:6f:29:8a:f4:2e:0a:2b:7c:b6:99:
5a:ad:50:62:35:8f:22:cb:bd:ce:d3:dd:bf:e5:cd:
00:f7:bd:22:cb:40:21:78:ab:45:21:bf:d0:99:1c:
ee:62:51:d4:a0:06:aa:87:89:3c:28:2e:be:60:a0:
dc:f8:fc:92:69:0a:df:6b:62:65:60:a7:88:76:85:
c2:15:c8:a6:17:2a:90:58:21:90:86:7f:2d:88:30:
ff:18:45:f6:b4:58:be:d0:90:63:54:c0:bb:c5:1c:
77:cd:1a:ba:89:a5:bb:b0:8c:ba:7a:44:8e:82:f7:
2c:6e:09:c2:16:de:1d:89:28:74:02:74:30:a5:77:
8a:2a:2d:2f:d8:7e:5b:1c:cd:22:e0:f2:25:89:47:
3f:ca:25:50:c1:32:2c:43:cd:4b:5b:f7:be:77:b9:
81:a3:28:06:b7:81:58:6f:34:1b:d6:d1:bf:81:40:
b0:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:A4:87:A1:3D:85:CE:02:C2:42:71:8F:DC:E5:B5:2E:6C:7D:6E:94
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D18C037E0E5011EDA3C72EA7F1222468.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.201.41.0/24
Signature Algorithm: sha256WithRSAEncryption
41:92:0d:12:eb:d0:6a:c8:6c:8e:14:c9:8c:5b:ec:bc:b4:ad:
64:b7:7d:fb:45:c3:88:fd:b5:49:5a:ee:a4:47:9f:f2:bf:4e:
c8:e2:a8:74:8f:fc:89:50:99:13:77:91:87:29:32:09:4d:fd:
d1:b2:6b:73:0e:b8:b4:69:f9:18:20:13:ff:6a:96:88:62:83:
4e:cc:2d:95:f0:9d:ea:26:a3:56:33:dd:6d:e7:c7:be:14:46:
e9:81:7d:94:76:22:8f:19:85:3f:bb:85:e3:7b:a6:94:1b:bd:
35:36:38:25:9b:05:b3:6d:dc:01:60:19:9d:75:7a:c4:21:28:
89:28:9e:ae:df:38:fe:92:ed:57:6a:d3:99:f9:ff:60:e0:c9:
1f:18:ee:2a:ea:58:9e:7b:49:c8:b2:34:f6:69:24:d9:f0:f6:
f5:33:10:9f:77:51:aa:28:dc:b3:1e:2b:69:85:45:8d:c6:db:
5b:c9:50:ba:e4:65:61:20:b3:82:00:50:df:69:09:70:1e:a1:
07:10:8e:03:f2:d8:e3:ca:40:b5:ee:e5:96:f9:b5:be:de:ff:
1f:bd:06:c0:e6:10:65:8e:a3:19:00:24:dc:04:4d:8d:95:4f:
6a:89:16:ae:1e:51:9c:a8:74:c5:de:54:2b:dd:e3:e4:1f:e0:
ff:47:e0:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:22:12 2023 by rpki-client on console-ams.rpki-client.org