Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D86DD3F4C1EB11ECB2AC0FF6F1222468.roa
File: D86DD3F4C1EB11ECB2AC0FF6F1222468.roa (raw, json)
Hash identifier: K9eVOs1H0vbCtGRjiSgV9qKvwsW69pMsk8htz0KInKw=
Subject key identifier: 96:44:12:43:6E:79:EF:BC:61:8F:F1:92:C3:4A:12:05:F2:7F:44:32
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 15E3
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D86DD3F4C1EB11ECB2AC0FF6F1222468.roa
Signing time: Fri 22 Apr 2022 03:25:23 +0000
ROA not before: Fri 22 Apr 2022 03:25:20 +0000
ROA not after: Fri 30 Dec 2022 03:25:20 +0000
asID: 135097
IP address blocks: 154.205.32.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5603 (0x15e3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 22 03:25:20 2022 GMT
Not After : Dec 30 03:25:20 2022 GMT
Subject: CN=62622023-e9d0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:2f:14:d4:eb:e1:fe:e0:c5:0c:7e:4f:9c:c0:
2d:f0:d4:50:ec:bb:52:b9:93:0e:05:6b:10:95:50:
f1:06:60:fc:8a:83:7e:b6:fc:b2:cb:e0:21:10:20:
0e:ca:9c:74:39:f3:d1:fd:3e:f0:8b:fd:d9:e4:fd:
8c:ad:51:ce:4c:4d:4f:91:d2:4e:5f:af:40:58:b5:
ee:ee:7a:00:c7:28:80:3b:63:3b:9a:8f:40:ce:6a:
c3:91:68:f1:98:4e:9b:dd:03:79:03:9c:80:d9:51:
b7:2d:71:04:79:d5:88:c2:ae:ac:1f:d6:14:46:c1:
55:8d:d2:ee:6c:37:54:8d:72:3b:63:5c:d9:67:09:
70:92:b1:4f:b4:16:81:52:94:c2:e8:c3:ec:b2:95:
b6:82:63:ce:6e:b8:fb:f3:08:c1:e9:a5:01:05:d8:
fd:28:b4:b0:59:86:d7:12:84:1f:0d:63:87:df:c5:
7e:b8:dc:8f:6d:51:85:65:bb:e2:b0:36:d5:79:37:
05:1a:80:24:0d:12:29:56:50:e7:3c:d4:13:fc:ff:
83:9d:23:8c:e0:14:29:6d:9f:9e:46:7b:46:71:3d:
96:20:cf:13:5f:2b:57:b6:7a:41:28:d5:59:f9:4c:
56:c9:27:b3:d3:f2:09:4a:4c:d4:7f:ce:fd:f3:39:
7d:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:44:12:43:6E:79:EF:BC:61:8F:F1:92:C3:4A:12:05:F2:7F:44:32
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D86DD3F4C1EB11ECB2AC0FF6F1222468.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.205.32.0/23
Signature Algorithm: sha256WithRSAEncryption
5b:e1:ee:2e:f7:b2:45:3f:d8:82:ad:42:e9:79:2f:79:65:a9:
a6:2c:93:00:a9:6f:f7:fe:6f:cb:10:5e:36:05:27:67:fe:6b:
3a:39:88:2f:a4:21:3f:83:12:73:31:8f:8e:81:6e:ac:f8:96:
cf:9e:70:74:48:c9:c9:1a:22:32:90:49:a4:77:7c:53:e7:04:
94:4b:a0:24:fc:03:b8:70:8f:79:bf:2d:f9:8e:c9:1e:53:fd:
9d:42:4d:15:e1:a1:69:f4:af:41:98:59:19:34:cb:df:af:ab:
6c:19:77:65:ae:41:c1:77:ea:62:ca:7b:11:89:d8:ad:2c:ea:
98:ab:68:29:99:bd:9d:1e:ea:a2:d3:98:d0:c4:eb:05:80:d5:
33:e7:07:fd:2b:ac:4d:35:d4:b3:79:42:dc:49:8b:38:d2:b0:
6b:c8:81:f9:08:30:a1:94:06:a6:18:45:1a:69:8a:14:4c:8c:
32:b4:7e:df:64:7a:5f:81:06:43:f6:7a:d4:1c:1c:98:ef:7c:
4d:80:5e:2e:d4:bf:a0:7c:35:ef:26:56:60:fd:60:a8:56:21:
20:9c:69:f5:d8:3b:56:9a:82:d0:ad:41:c0:6e:71:89:65:6f:
f0:c3:ff:05:5a:07:0f:b5:3a:64:65:ec:ba:d4:85:ff:23:19:
cc:e7:b4:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:22:12 2023 by rpki-client on console-ams.rpki-client.org