Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F361E99D/87DF1A466A0411EB9094717DF8AEA228/4E8E5B066A0611EBA329427FF8AEA228.roa
File: 4E8E5B066A0611EBA329427FF8AEA228.roa (raw, json)
Hash identifier: MMj2lsEcM3mAI/XDsBCJWgvIEZf2mI9RzWB5Rqnz6gw=
Subject key identifier: 03:43:8D:00:32:6F:A9:0E:4B:1A:21:42:C2:2D:95:FC:A9:74:35:A4
Certificate issuer: /CN=F361E99DAF/serialNumber=18DA682C1E3EC3464D391D9B71A5B852A6C9B6E3
Certificate serial: 02
Authority key identifier: 18:DA:68:2C:1E:3E:C3:46:4D:39:1D:9B:71:A5:B8:52:A6:C9:B6:E3
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/GNpoLB4-w0ZNOR2bcaW4UqbJtuM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F361E99D/87DF1A466A0411EB9094717DF8AEA228/4E8E5B066A0611EBA329427FF8AEA228.roa
Signing time: Mon 08 Feb 2021 12:08:09 +0000
ROA not before: Mon 08 Feb 2021 12:08:03 +0000
ROA not after: Wed 08 Feb 2023 12:08:03 +0000
asID: 22386
IP address blocks: 196.29.240.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2 (0x2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F361E99DAF/serialNumber=18DA682C1E3EC3464D391D9B71A5B852A6C9B6E3
Validity
Not Before: Feb 8 12:08:03 2021 GMT
Not After : Feb 8 12:08:03 2023 GMT
Subject: CN=602129a9-795e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:3e:a6:43:85:b4:d6:aa:3f:22:44:1f:92:a8:
ac:07:c4:c1:92:9e:23:a2:0c:d2:a8:c7:40:32:c4:
c1:19:eb:39:04:ec:80:ab:8c:6d:31:6c:7c:07:21:
8d:14:9d:b1:b3:a0:b0:34:1a:a4:1c:d0:1a:f1:1d:
99:7d:95:7b:d9:50:bb:29:bc:c6:a3:a2:99:1f:b0:
36:fb:1d:ec:1e:5c:0b:32:36:5c:42:9c:91:68:04:
84:0d:77:d3:28:63:24:33:94:ef:7f:8e:fb:8a:71:
c0:6f:59:8d:c4:16:74:80:e2:ba:7f:71:01:59:d6:
fc:1e:cf:f5:59:fe:ee:78:3f:dd:8c:8b:24:2c:89:
dc:2b:c2:9f:de:ff:7a:5e:08:c8:90:55:eb:3b:0c:
0c:e8:0a:9d:1b:f2:89:62:37:ea:65:47:2f:45:a8:
b3:15:57:ef:46:12:a9:c9:01:5f:97:48:48:ec:e3:
1c:80:db:10:ad:9d:cd:d1:21:22:07:d3:1e:a4:e8:
1e:4c:6e:c2:33:5d:53:56:c4:e9:5e:e4:df:64:4d:
58:a1:6a:80:fc:d3:9f:cb:c4:c4:cf:b7:86:d0:d8:
37:d1:75:db:c5:ec:18:c3:f4:41:83:14:b0:db:ec:
db:ff:e6:da:81:e3:17:55:71:1e:f1:4d:e5:e2:b1:
b2:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:43:8D:00:32:6F:A9:0E:4B:1A:21:42:C2:2D:95:FC:A9:74:35:A4
X509v3 Authority Key Identifier:
keyid:18:DA:68:2C:1E:3E:C3:46:4D:39:1D:9B:71:A5:B8:52:A6:C9:B6:E3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F361E99D/87DF1A466A0411EB9094717DF8AEA228/GNpoLB4-w0ZNOR2bcaW4UqbJtuM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/GNpoLB4-w0ZNOR2bcaW4UqbJtuM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F361E99D/87DF1A466A0411EB9094717DF8AEA228/4E8E5B066A0611EBA329427FF8AEA228.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
196.29.240.0/20
Signature Algorithm: sha256WithRSAEncryption
25:2c:59:5a:9c:e9:c9:5b:ea:23:57:48:cd:6b:da:54:05:6c:
e7:e1:c1:56:70:db:74:28:2f:66:ad:ae:91:0d:eb:d6:7d:14:
af:76:19:8e:bd:81:3e:5b:72:97:c4:88:b3:31:ec:74:4a:78:
d3:37:8a:13:cd:44:8d:25:7e:f6:37:8f:85:eb:3a:fe:e0:e4:
28:e6:c6:b2:4b:de:9d:5a:94:36:42:1e:c3:d6:dc:3b:47:e7:
3d:f7:67:75:4f:9e:44:62:d3:0f:35:9d:b0:b7:03:9c:18:a6:
3e:70:0a:81:46:43:dc:e9:88:61:0c:14:bf:e9:97:7b:ce:25:
eb:46:b5:24:76:27:80:c7:0c:37:03:35:29:03:eb:52:2e:f1:
84:7a:3f:f7:3c:4c:2c:3e:53:2c:02:a6:b7:31:1e:b1:4e:26:
cf:06:77:d9:98:0b:93:d5:51:b3:05:28:fe:ce:70:54:45:70:
8c:5b:d4:a9:25:77:80:06:20:3f:74:b6:e7:aa:03:c0:24:15:
26:fc:f0:38:ef:35:93:51:0d:18:e4:30:02:6e:fe:b1:df:b8:
a9:1c:ef:c3:ce:34:31:54:c9:1d:52:76:e0:d1:08:7f:6c:ec:
d2:3b:26:3d:91:3d:a1:7a:51:02:86:80:80:9f:f8:f9:70:6c:
fe:cc:dd:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:21:55 2023 by rpki-client on console-ams.rpki-client.org