Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/DE91798CE57F11EB8CA5E62DF8AEA228.roa
File: DE91798CE57F11EB8CA5E62DF8AEA228.roa (raw, json)
Hash identifier: y+GNBuZIaAHwNnRnOGV3p19P3rfe27b+Kr15eCGVVeE=
Subject key identifier: 65:8F:86:40:E3:57:83:E0:16:92:B7:7D:E1:D0:9B:05:74:4F:D7:21
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 07EE
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/DE91798CE57F11EB8CA5E62DF8AEA228.roa
Signing time: Thu 15 Jul 2021 15:18:12 +0000
ROA not before: Thu 15 Jul 2021 15:18:08 +0000
ROA not after: Sat 09 Jul 2022 15:18:08 +0000
asID: 397630
IP address blocks: 154.202.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2030 (0x7ee)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jul 15 15:18:08 2021 GMT
Not After : Jul 9 15:18:08 2022 GMT
Subject: CN=60f051b4-4c83
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:2e:cc:c7:2a:5e:87:10:20:34:3c:5e:6d:27:
b1:62:1e:59:75:15:6d:d9:e6:99:7f:d2:c9:08:8b:
c2:82:9a:f5:3f:1e:66:5e:27:4c:36:fb:8c:a5:0b:
8b:66:1a:f9:59:38:06:20:55:fb:3a:a4:aa:47:52:
fd:d3:b3:c8:fa:25:89:c5:45:b0:70:3a:d2:41:37:
e1:20:42:47:e3:6d:78:fb:ae:e5:1d:4c:a2:67:11:
6a:37:fb:e1:9a:6e:0a:47:1c:ed:ea:69:ef:7a:67:
cc:35:c9:40:b4:fb:cd:38:92:83:6e:e9:6d:77:49:
2f:18:b9:da:20:80:d9:cf:78:01:78:1a:68:96:06:
f6:e0:c2:25:18:0b:12:65:f8:14:48:ce:b3:8d:64:
95:a6:97:44:de:f9:3c:e1:c3:bc:35:f5:20:2d:09:
7f:62:83:40:15:8f:36:69:5c:b8:34:82:73:b5:6c:
6b:56:42:75:27:be:08:c7:df:a4:bf:f7:e3:35:68:
73:c4:e4:aa:4a:50:f3:ef:e2:19:11:8b:c4:f5:55:
a6:a2:2b:b1:8d:24:4a:a0:8b:92:1f:91:8b:92:b7:
09:0e:a6:8e:76:7d:14:0d:26:07:d8:55:35:82:2f:
74:65:c8:c2:0f:ad:96:d5:c8:03:f3:1e:ae:2c:05:
97:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:8F:86:40:E3:57:83:E0:16:92:B7:7D:E1:D0:9B:05:74:4F:D7:21
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/DE91798CE57F11EB8CA5E62DF8AEA228.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.202.120.0/24
Signature Algorithm: sha256WithRSAEncryption
bf:ee:ff:22:04:68:39:09:e6:dc:f4:e2:33:5f:21:d7:ba:29:
f9:f2:11:38:dc:26:af:7c:cb:33:a6:19:e3:0b:2e:94:d4:f6:
f8:92:01:86:75:b8:dd:cf:6d:84:a6:e5:c7:01:97:d5:6e:c0:
65:96:57:d3:52:e4:24:16:e4:7c:ac:d1:35:68:ad:e3:48:e7:
d9:80:3f:87:3c:f1:2a:84:0f:44:fe:72:ef:fa:e4:68:da:48:
46:df:6f:a8:94:c6:47:b3:6e:48:c5:6b:d6:36:0d:1e:80:85:
2b:f4:7a:17:fe:69:9d:5e:8c:43:48:73:66:0e:b1:3d:2d:cb:
29:97:1f:56:6e:75:99:13:94:e7:b2:61:e2:36:b0:ee:99:84:
cd:fd:ae:22:24:70:70:82:9d:78:30:49:d3:7d:b9:04:57:ab:
ac:2d:2a:bf:b7:e8:3a:51:a0:5c:0d:7c:ba:ce:1c:0b:a9:56:
6e:22:75:fe:28:0f:11:80:b0:47:88:5b:8a:a4:d7:f6:2e:cb:
b5:c1:92:91:2c:77:cc:d6:30:e8:74:b5:96:02:7e:2c:7f:81:
46:7a:d4:78:71:6f:74:0e:d2:28:03:92:41:af:37:3b:40:5d:
1f:07:16:fc:46:21:0e:23:37:5a:b0:f3:1f:92:3c:be:dd:c4:
4a:b4:04:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:22:14 2023 by rpki-client on console-fra.rpki-client.org