Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D1B9B254251811EDBD2B3394F1222468.roa
File: D1B9B254251811EDBD2B3394F1222468.roa (raw, json)
Hash identifier: tOR5bpCKrxD4blYFftcE6A2iVJDFFMHo2uYsy4WDQK4=
Subject key identifier: 13:6E:DB:9B:AF:CC:CA:38:A8:EF:EB:EF:F9:AA:8F:68:4D:0F:3D:EE
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 186F
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D1B9B254251811EDBD2B3394F1222468.roa
Signing time: Fri 26 Aug 2022 08:26:45 +0000
ROA not before: Tue 30 Aug 2022 08:26:41 +0000
ROA not after: Fri 30 Dec 2022 08:26:41 +0000
asID: 35916
IP address blocks: 154.81.8.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6255 (0x186f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Aug 30 08:26:41 2022 GMT
Not After : Dec 30 08:26:41 2022 GMT
Subject: CN=630883c5-4d04
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:29:0f:7d:d6:69:aa:87:55:9e:88:37:2d:2b:
09:cf:95:a0:98:44:53:c1:f5:95:97:d4:7b:08:ab:
bb:32:9b:99:48:83:67:dd:be:27:2f:11:e4:d4:61:
9a:d0:5a:99:df:4d:62:d5:34:b0:f7:e4:4e:f2:6d:
c0:f0:79:f8:01:2d:59:b9:c6:aa:91:79:93:ac:f8:
d3:05:20:a1:63:2f:0b:5c:04:fe:9f:a1:99:8d:af:
41:78:77:4c:91:4e:30:1b:e5:98:e2:97:c2:8d:12:
ae:18:8d:2e:8c:0e:2b:df:d3:3d:7a:47:bc:f1:f2:
38:be:94:cd:2c:25:b1:93:6e:ef:e6:e9:06:73:ff:
46:c1:44:8a:3e:f4:3a:29:dd:da:34:2a:d1:37:85:
ed:81:58:d5:25:8c:27:eb:cf:b8:61:a1:ee:9c:ec:
0f:15:15:16:78:68:e9:d2:39:5f:93:ad:be:a4:21:
9d:f1:49:92:3a:43:e4:a1:c3:c7:31:4d:c3:82:41:
08:08:54:9b:8e:84:5f:3b:90:ec:0b:e1:ff:e7:e7:
b0:88:cb:95:73:33:ee:67:fa:18:2b:aa:e8:79:fb:
65:4a:2f:82:ee:5e:40:a6:9d:eb:db:7c:0d:8c:1b:
42:e6:ae:62:5d:30:a2:12:d0:a3:07:89:e3:c2:1e:
dc:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:6E:DB:9B:AF:CC:CA:38:A8:EF:EB:EF:F9:AA:8F:68:4D:0F:3D:EE
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D1B9B254251811EDBD2B3394F1222468.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.81.8.0/21
Signature Algorithm: sha256WithRSAEncryption
7b:a5:84:8f:41:8a:87:b3:88:bc:b7:0c:da:c1:15:ec:a0:fb:
af:39:d3:eb:8d:c0:fd:62:09:6d:38:3c:3d:f6:3b:73:fc:8f:
e1:33:7c:75:b4:58:99:1c:02:99:cc:d4:48:2f:8a:b3:5d:2b:
4a:67:00:f8:bb:22:d6:e4:a6:f9:b9:ab:df:f9:b4:09:9a:ad:
3b:fb:9e:28:8b:c1:82:18:f6:bd:3c:b6:b0:c0:33:a5:7f:55:
95:bc:4b:8a:cc:49:34:cc:cc:6e:f8:46:04:13:e2:a0:e0:ae:
fb:00:7a:10:b3:27:94:6b:46:01:0a:4b:9d:5a:66:73:67:ed:
d9:65:0d:c0:6d:bd:5e:5b:90:3d:f2:c9:d5:65:c0:f6:9a:0a:
6c:2b:ea:9a:02:09:ec:56:0b:3a:41:53:e8:f2:ff:62:01:ce:
e4:80:2e:27:d6:f3:f4:8e:12:4c:21:1a:65:30:5c:c9:72:f0:
6d:a5:98:71:47:0c:e0:3d:3c:27:a5:56:21:cf:07:8a:b9:c6:
38:e1:8a:ce:b4:12:96:66:6f:0a:d8:9c:0c:06:dc:0d:c0:9b:
69:29:5a:96:63:4c:72:07:39:85:10:65:fc:f9:26:13:ba:e5:
a3:22:68:94:38:69:9d:e5:a7:d4:01:41:9a:75:8d:45:9a:99:
f9:83:0a:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:22:12 2023 by rpki-client on console-ams.rpki-client.org