Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F361ED63/BC72D6B6CAA411EB9C2A4A52F8AEA228/D052234ECAA911EB8257E558F8AEA228.roa
File: D052234ECAA911EB8257E558F8AEA228.roa (raw, json)
Hash identifier: c6UyUxWY+P1M3VKKBFYSyIp8GqBghYQDSwFrCU/fCV0=
Subject key identifier: 64:56:28:08:65:F0:65:F6:2C:B4:CA:42:25:DF:57:7F:B8:EA:64:82
Certificate issuer: /CN=F361ED63AF/serialNumber=3824AC5EE00439EEDA21A1A10109E8BF76E4FAB8
Certificate serial: 02
Authority key identifier: 38:24:AC:5E:E0:04:39:EE:DA:21:A1:A1:01:09:E8:BF:76:E4:FA:B8
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/OCSsXuAEOe7aIaGhAQnov3bk-rg.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F361ED63/BC72D6B6CAA411EB9C2A4A52F8AEA228/D052234ECAA911EB8257E558F8AEA228.roa
Signing time: Fri 11 Jun 2021 11:40:26 +0000
ROA not before: Fri 11 Jun 2021 11:40:21 +0000
ROA not after: Thu 30 Jun 2022 11:40:21 +0000
asID: 328418
IP address blocks: 41.85.4.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2 (0x2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F361ED63AF/serialNumber=3824AC5EE00439EEDA21A1A10109E8BF76E4FAB8
Validity
Not Before: Jun 11 11:40:21 2021 GMT
Not After : Jun 30 11:40:21 2022 GMT
Subject: CN=60c34baa-813c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:3e:07:a6:24:65:aa:5a:96:ce:ff:57:4c:b4:
93:f6:f8:f2:c3:68:05:1d:23:e9:cc:47:31:48:52:
47:0c:63:40:50:82:34:2e:58:23:e1:4e:4d:b5:8a:
74:58:da:35:04:bb:32:07:f8:04:c9:ae:74:16:04:
e3:ac:81:11:8f:8d:03:ba:84:a1:e2:53:70:ed:e8:
41:90:92:14:80:10:90:a7:22:b7:b2:c2:7d:16:de:
52:aa:7c:11:ef:0d:a2:f1:ad:4d:a5:8a:1c:32:da:
98:f5:1e:26:03:73:50:b6:98:f3:1b:dd:97:d9:bb:
8d:ad:0d:7a:42:a6:40:39:d8:eb:c1:23:08:87:41:
c5:eb:ab:1f:48:e1:b7:f0:c9:49:79:41:7f:17:2f:
ff:bd:d0:55:ab:80:6f:65:40:88:41:cf:ce:e4:82:
62:ce:84:42:67:bf:64:a8:b9:ac:06:28:39:f3:ab:
1a:1a:46:a7:9c:8b:00:f4:cf:cd:cd:a5:00:02:0f:
99:c3:cc:4c:ad:2a:97:6e:75:58:c8:d5:43:5d:3a:
46:1e:94:a7:01:ff:b6:d8:9e:b4:14:8d:1a:ca:29:
f3:1a:e9:d5:cd:6a:c1:42:10:60:be:08:1e:36:fe:
28:78:6c:ca:96:4d:5b:c4:1a:58:1b:12:6a:c9:aa:
6d:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:56:28:08:65:F0:65:F6:2C:B4:CA:42:25:DF:57:7F:B8:EA:64:82
X509v3 Authority Key Identifier:
keyid:38:24:AC:5E:E0:04:39:EE:DA:21:A1:A1:01:09:E8:BF:76:E4:FA:B8
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F361ED63/BC72D6B6CAA411EB9C2A4A52F8AEA228/OCSsXuAEOe7aIaGhAQnov3bk-rg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/OCSsXuAEOe7aIaGhAQnov3bk-rg.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F361ED63/BC72D6B6CAA411EB9C2A4A52F8AEA228/D052234ECAA911EB8257E558F8AEA228.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
41.85.4.0/24
Signature Algorithm: sha256WithRSAEncryption
10:4f:bf:8e:dd:7b:99:d7:7c:96:bb:38:b2:0b:87:ed:c2:a6:
4b:e7:1a:24:83:ea:7a:10:c0:7d:6b:d6:a4:39:56:d6:a5:2a:
9f:8f:6a:a5:58:4e:76:4b:75:a5:d2:9c:48:48:4e:19:0c:34:
ab:1b:f0:e2:ff:ec:ea:7e:0f:b7:70:98:ae:59:fa:bb:b1:6d:
9f:8e:96:2e:87:58:82:b7:64:9a:ef:6a:d3:cc:53:ce:da:9e:
d5:45:74:ff:a2:89:94:90:bb:a8:6e:5b:f0:b1:bb:bb:6d:73:
56:dd:3f:6a:dd:33:91:5a:c5:fd:83:47:84:2b:6e:63:b5:16:
d2:94:52:0a:94:fc:20:18:70:ee:5e:30:10:cf:33:35:c3:e6:
e1:38:7b:2f:d6:e9:d3:e9:63:b8:f0:f3:9f:c6:13:a7:6d:62:
6f:dc:da:7e:d7:ce:c3:50:10:f7:14:af:ca:c5:d1:f0:82:89:
2a:c1:bc:57:09:20:4b:8c:3b:0f:51:88:c3:3f:34:83:7e:f7:
f8:c4:58:7b:ce:20:95:1f:cd:78:cc:57:ce:12:93:e3:4b:aa:
aa:6c:07:14:db:07:e1:3b:20:f4:a5:35:ed:2e:e5:18:dd:6e:
f4:65:40:d3:a1:a7:11:24:9a:72:4f:ce:df:cd:4c:1b:1e:ea:
ba:5b:a2:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:21:58 2023 by rpki-client on console-fra.rpki-client.org