Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F362AF02/3A7ECF5E838C11E99530C511F8AEA228/3D9F01C8BF1411EDBCB1AAF7F1222468.roa
File: 3D9F01C8BF1411EDBCB1AAF7F1222468.roa (raw, json)
Hash identifier: 3zTphjZEAlAmVsMBwkAIkK/ZcgFpBNxf+uCo8WiOM8s=
Subject key identifier: A5:23:C7:4E:5A:64:5E:8D:78:60:04:46:F3:F5:62:8D:9A:0B:CE:A4
Certificate issuer: /CN=F362AF02AF/serialNumber=ECFF2426B1AF8A7120A61D33760E908C159C6AEF
Certificate serial: 058B
Authority key identifier: EC:FF:24:26:B1:AF:8A:71:20:A6:1D:33:76:0E:90:8C:15:9C:6A:EF
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/7P8kJrGvinEgph0zdg6QjBWcau8.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F362AF02/3A7ECF5E838C11E99530C511F8AEA228/3D9F01C8BF1411EDBCB1AAF7F1222468.roa
Signing time: Fri 10 Mar 2023 07:21:57 +0000
ROA not before: Fri 10 Mar 2023 07:21:51 +0000
ROA not after: Mon 08 Apr 2024 07:21:51 +0000
asID: 37520
IP address blocks: 2001:43f8:750::/44 maxlen: 44
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1419 (0x58b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F362AF02AF/serialNumber=ECFF2426B1AF8A7120A61D33760E908C159C6AEF
Validity
Not Before: Mar 10 07:21:51 2023 GMT
Not After : Apr 8 07:21:51 2024 GMT
Subject: CN=640ada95-010b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:f4:86:df:36:f2:94:0f:5e:18:76:79:72:b2:
03:5b:77:69:16:d6:ca:a3:8d:b2:7c:fe:87:1e:c0:
8e:09:df:af:6b:89:11:cc:a2:17:e4:fa:70:72:7d:
bd:9e:a7:37:f3:50:1f:ed:c2:72:f7:61:28:a7:a1:
89:21:e3:7a:75:02:21:ae:eb:6a:1d:74:6d:72:18:
9a:00:e4:07:03:10:9a:67:c6:e5:be:8c:d9:86:42:
1b:66:d2:2f:0c:70:1a:ca:1d:59:bb:6f:73:b1:f7:
2c:fd:5b:d6:46:59:4c:4a:fd:49:04:2c:e1:0d:d9:
dc:fd:e8:ea:3e:37:8d:8a:3b:d2:80:88:c1:aa:df:
ba:a9:7e:d8:e2:59:53:e0:e2:79:26:95:df:ec:31:
3a:39:2c:eb:ff:3f:09:67:ca:e4:f7:44:86:ef:22:
84:3e:e3:cd:85:31:7d:4f:12:ef:41:2c:6b:f5:4a:
ed:35:a9:d4:7f:95:1d:25:e4:8b:aa:5a:e9:61:a2:
c0:13:0e:1c:0d:10:29:90:73:b4:51:3e:26:99:58:
34:ee:2b:33:5c:e7:a7:f3:6d:c6:cb:51:61:ad:13:
f2:5e:11:07:26:7f:75:15:8d:26:22:74:b0:df:bf:
c5:79:e2:3b:11:19:31:8c:31:42:d1:c8:1d:d4:88:
b6:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:23:C7:4E:5A:64:5E:8D:78:60:04:46:F3:F5:62:8D:9A:0B:CE:A4
X509v3 Authority Key Identifier:
keyid:EC:FF:24:26:B1:AF:8A:71:20:A6:1D:33:76:0E:90:8C:15:9C:6A:EF
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F362AF02/3A7ECF5E838C11E99530C511F8AEA228/7P8kJrGvinEgph0zdg6QjBWcau8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/7P8kJrGvinEgph0zdg6QjBWcau8.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F362AF02/3A7ECF5E838C11E99530C511F8AEA228/3D9F01C8BF1411EDBCB1AAF7F1222468.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2001:43f8:750::/44
Signature Algorithm: sha256WithRSAEncryption
ad:19:b3:e3:4f:49:ca:75:7a:4b:77:dd:35:14:3b:44:b1:7f:
21:dd:5e:60:cf:2b:b1:5b:ea:f9:31:73:38:36:8a:c8:4c:0f:
33:cb:ba:e9:f6:02:2b:b6:67:48:9f:b7:32:7e:dd:31:be:eb:
8d:8f:42:3a:69:2f:f8:eb:2a:14:f3:d5:67:45:b0:7f:8d:9c:
53:54:fb:6c:1f:96:a2:c6:1f:5a:d7:81:b2:8d:79:4c:76:16:
83:1c:a7:9b:43:fe:ae:3e:d8:7e:31:e9:29:12:f1:b2:bb:68:
0b:d2:45:74:ee:f4:ae:e7:31:99:66:14:0e:b5:68:7d:93:f3:
88:84:f3:31:0b:fb:db:17:a3:4d:41:38:6f:9a:31:90:d0:d8:
93:db:ee:4e:16:96:d7:3c:f8:88:a7:71:2b:fc:e6:41:02:1b:
5a:8b:f4:08:36:61:23:3c:94:b6:40:d3:6e:14:fa:25:f6:86:
ce:27:3c:d1:17:d1:a3:67:df:da:23:45:1d:12:53:71:23:c0:
fa:47:d4:59:b8:be:c2:f0:54:c7:ed:05:e4:3c:65:3b:2e:4a:
cd:61:49:88:36:a4:63:96:66:7c:7d:a7:7a:88:68:de:5b:01:
19:ed:2b:36:ab:b2:d6:a1:dd:56:5e:89:84:db:84:a6:65:6b:
ca:79:0f:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 9 02:35:13 2024 by rpki-client on console-fra.rpki-client.org