Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D47AA3A6251611EDA119EC8CF1222468.roa
File: D47AA3A6251611EDA119EC8CF1222468.roa (raw, json)
Hash identifier: U4AkIP20K+5hG+gjRRr2LzIHJJGXwcYgNEcCEu62QrA=
Subject key identifier: 1B:F8:B3:01:03:64:2E:1D:10:27:01:1E:58:20:40:2E:74:E5:7B:05
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 1869
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D47AA3A6251611EDA119EC8CF1222468.roa
Signing time: Fri 26 Aug 2022 08:12:30 +0000
ROA not before: Fri 26 Aug 2022 08:12:27 +0000
ROA not after: Thu 25 May 2023 08:12:27 +0000
asID: 38638
IP address blocks: 154.91.168.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6249 (0x1869)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Aug 26 08:12:27 2022 GMT
Not After : May 25 08:12:27 2023 GMT
Subject: CN=6308806e-45a5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:6e:07:9d:05:3b:8f:72:16:d3:25:dc:89:a6:
c2:4d:df:96:c8:4e:79:1a:d1:57:e1:d9:b5:fb:d3:
2c:fd:cc:8d:45:fc:db:16:fa:af:51:43:59:6e:42:
d2:e3:50:b2:62:d8:2a:8e:b4:28:13:52:96:fa:5b:
10:29:6d:5a:43:c2:70:33:71:ee:65:eb:0d:ce:39:
d1:65:49:be:b0:63:b7:e5:4b:00:02:eb:1a:f5:82:
54:34:40:b5:b3:d0:9a:84:1b:36:b8:90:e9:40:76:
2a:9b:68:f9:db:ec:c3:87:61:e1:60:15:4e:07:a6:
6a:0d:a6:77:37:3e:d1:26:f2:f5:79:aa:88:c4:c0:
a5:02:8b:7c:e8:8a:f6:f8:8d:c9:0c:2f:77:04:6a:
96:5e:a7:d9:7e:cb:95:a2:39:45:03:a6:76:de:4e:
e6:36:bb:3f:dc:40:e5:0b:c4:51:27:71:da:7b:ed:
38:4b:a6:05:97:83:c8:40:52:b1:14:4b:c2:05:9c:
35:28:d6:03:33:63:d0:a3:73:c2:11:00:e6:0b:3c:
a1:8a:4c:6d:86:be:d9:24:00:fd:3c:e8:24:74:53:
9b:30:15:ac:2a:04:a6:b3:67:20:49:ae:ef:f7:85:
c0:1d:ae:fa:7a:cd:32:63:46:a5:ff:9d:24:19:c8:
06:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:F8:B3:01:03:64:2E:1D:10:27:01:1E:58:20:40:2E:74:E5:7B:05
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D47AA3A6251611EDA119EC8CF1222468.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.91.168.0/24
Signature Algorithm: sha256WithRSAEncryption
96:4e:97:21:29:23:a2:9f:62:3b:9e:ea:59:15:10:4b:77:1b:
6d:a2:9c:9f:d2:c5:c0:39:a2:bb:9e:a6:4a:e3:0f:ec:39:5c:
e7:6c:81:bc:1d:7e:c7:b3:7a:e7:84:0c:a8:d6:71:7b:ac:a5:
83:a0:b6:2f:e0:30:33:57:1a:7c:a4:08:99:18:e4:7a:5e:c4:
6f:de:8f:71:54:73:6a:f8:76:00:6a:b8:cf:16:7c:35:f4:97:
4a:e5:b0:03:57:96:e2:94:c8:bc:a6:cd:60:cd:05:f9:d1:4e:
3b:69:bb:e8:2c:ac:46:87:8c:3c:58:fb:f1:f6:00:f9:24:9d:
36:f7:8d:f1:72:9b:a7:66:14:f5:8a:17:2e:fe:5a:f0:83:c7:
e6:18:c4:8b:86:9e:90:31:78:18:aa:68:2b:17:2c:3f:2f:09:
68:f7:c9:bd:c4:71:fc:74:51:85:d5:85:2a:77:44:7f:3e:79:
ca:31:72:13:40:11:b7:1d:3f:52:2f:8c:44:10:fc:05:87:b5:
91:18:84:f8:b0:3f:fb:cd:dc:b9:d5:2c:43:e9:13:47:7a:49:
b6:26:e6:77:53:3b:06:6e:25:9c:83:fd:4c:bb:7d:22:6c:6b:
b0:7d:50:fd:11:81:55:c8:fc:ff:b6:f9:bc:74:f9:c7:6f:15:
ca:20:60:1c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:22:14 2023 by rpki-client on console-fra.rpki-client.org