Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F361F5C9/C6A3DD50A37711EBBC09D782F8AEA228/A6C6607CA37A11EB9E80E107F8AEA228.roa
File: A6C6607CA37A11EB9E80E107F8AEA228.roa (raw, json)
Hash identifier: QZIPfb0H25fOzCZhzsgnLhhG46PT9Pa+iDqWY2ywUwY=
Subject key identifier: 67:80:B0:C4:77:EF:5C:56:8A:FC:B1:9B:C5:31:BF:EC:EA:EA:FE:45
Certificate issuer: /CN=F361F5C9AF/serialNumber=B7DEB01BACBB4B5A7E9C782FFF99FD8E5DC06CB2
Certificate serial: 03
Authority key identifier: B7:DE:B0:1B:AC:BB:4B:5A:7E:9C:78:2F:FF:99:FD:8E:5D:C0:6C:B2
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/t96wG6y7S1p-nHgv_5n9jl3AbLI.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F361F5C9/C6A3DD50A37711EBBC09D782F8AEA228/A6C6607CA37A11EB9E80E107F8AEA228.roa
Signing time: Thu 22 Apr 2021 14:54:35 +0000
ROA not before: Thu 22 Apr 2021 14:54:30 +0000
ROA not after: Fri 22 Apr 2022 14:54:30 +0000
asID: 328475
IP address blocks: 102.69.224.0/21 maxlen: 21
102.69.224.0/24 maxlen: 24
102.69.225.0/24 maxlen: 24
102.69.226.0/24 maxlen: 24
102.69.227.0/24 maxlen: 24
102.69.228.0/24 maxlen: 24
102.69.229.0/24 maxlen: 24
102.69.230.0/24 maxlen: 24
102.69.231.0/24 maxlen: 24
102.220.36.0/22 maxlen: 22
102.220.36.0/24 maxlen: 24
102.220.37.0/24 maxlen: 24
102.220.38.0/24 maxlen: 24
102.220.39.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3 (0x3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F361F5C9AF/serialNumber=B7DEB01BACBB4B5A7E9C782FFF99FD8E5DC06CB2
Validity
Not Before: Apr 22 14:54:30 2021 GMT
Not After : Apr 22 14:54:30 2022 GMT
Subject: CN=60818e2a-68a6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:d9:3b:e3:9e:a9:a3:ec:e6:a5:13:0e:1c:98:
b6:17:6e:b6:85:12:84:0f:80:28:ad:94:62:f5:c0:
1b:6d:64:bc:c9:09:df:d8:b5:91:28:ad:dc:2f:24:
6c:dc:be:86:d3:ac:75:f9:ac:1a:b4:b7:fc:74:f9:
1a:d5:24:ae:7a:d4:10:a7:8d:c9:f7:70:d0:c8:e7:
5f:59:dc:cd:db:30:0a:b7:00:ef:4c:99:1d:36:32:
bc:b3:d4:ea:51:2f:47:47:67:7b:78:56:f1:fb:5d:
12:a2:05:d2:c1:bd:c3:b7:27:f2:df:1f:11:f6:d9:
04:0b:56:32:79:a4:4c:0a:97:dd:8f:97:b2:be:d9:
64:16:22:96:8e:c5:6a:a7:d2:25:bb:5e:96:41:9b:
d8:39:cd:12:32:56:bf:74:e8:43:cb:6d:cf:d5:d7:
57:2d:48:08:62:54:d3:34:73:20:34:76:76:4c:b4:
b9:9a:c4:20:72:ea:29:9e:99:9a:a1:86:bc:9a:26:
88:ba:4b:1c:98:b7:2f:e5:18:62:ae:db:e3:7e:ea:
51:6d:45:eb:b5:d4:5c:b8:f3:7d:64:1f:35:40:cd:
18:d8:b0:9a:c0:bc:8b:29:5b:c2:72:eb:cb:74:85:
74:a3:82:d1:4a:33:a7:35:38:89:65:1f:fe:61:8d:
67:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:80:B0:C4:77:EF:5C:56:8A:FC:B1:9B:C5:31:BF:EC:EA:EA:FE:45
X509v3 Authority Key Identifier:
keyid:B7:DE:B0:1B:AC:BB:4B:5A:7E:9C:78:2F:FF:99:FD:8E:5D:C0:6C:B2
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F361F5C9/C6A3DD50A37711EBBC09D782F8AEA228/t96wG6y7S1p-nHgv_5n9jl3AbLI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/t96wG6y7S1p-nHgv_5n9jl3AbLI.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F361F5C9/C6A3DD50A37711EBBC09D782F8AEA228/A6C6607CA37A11EB9E80E107F8AEA228.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.69.224.0/21
102.220.36.0/22
Signature Algorithm: sha256WithRSAEncryption
0f:ef:b8:44:54:2e:43:0a:64:8a:1d:de:57:a6:c8:52:f5:26:
9f:dc:75:45:e4:c0:d3:74:8e:a1:cd:20:89:b5:79:78:57:3f:
80:cf:45:08:b3:f1:ea:a6:c1:3a:10:21:c2:de:5d:83:38:ee:
f0:e6:ea:43:0d:4d:77:54:1a:e8:53:2d:e7:fc:6b:47:d7:c2:
08:f0:d1:9e:72:21:d0:10:b0:fb:b0:93:41:f1:60:e8:28:b9:
f0:02:28:ba:e9:a7:1a:9e:af:0e:a4:94:93:e8:17:d7:b7:99:
be:51:75:55:21:a4:52:b0:96:a8:d9:ec:9b:67:72:15:40:e6:
c9:39:07:b3:2b:73:b1:5b:80:de:1e:91:72:64:9f:ce:7d:1c:
fe:d7:b5:dc:36:4d:cd:e8:38:81:cf:7b:ad:de:01:8b:69:08:
91:a4:76:a8:11:08:25:66:e2:70:1a:32:ee:cf:47:7f:f0:4a:
4a:37:3f:d5:46:fc:fa:21:14:a1:b1:a8:48:b4:e3:39:94:a3:
7d:79:dc:5f:3a:d7:35:d1:43:82:cd:26:fd:f0:8c:fc:20:7e:
a1:32:17:dd:a0:ec:f2:2e:cb:13:0f:69:e5:5f:d6:d3:fe:cf:
d5:2d:d5:22:66:24:96:6e:d1:de:7d:3c:af:ee:fc:92:94:a1:
c6:4a:82:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:58:30 2024 by rpki-client on console-ams.rpki-client.org