Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F362C18C/45883290ABD111EBB1A6715EF8AEA228/C3F43398AC0111EFB8883DB0762E951A.roa
File: C3F43398AC0111EFB8883DB0762E951A.roa (raw, json)
Hash identifier: gRQbqTvq6QIUChrVswGek5U/2Osy4jZVaph7mB0bLJg=
Subject key identifier: 0A:EF:92:85:31:53:AA:0B:5A:31:48:23:35:15:9C:88:68:DA:9E:50
Certificate issuer: /CN=F362C18CAF/serialNumber=63E0BB6B3433CD5D71A42B0169BDB01E20E4557F
Certificate serial: 0566
Authority key identifier: 63:E0:BB:6B:34:33:CD:5D:71:A4:2B:01:69:BD:B0:1E:20:E4:55:7F
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/Y-C7azQzzV1xpCsBab2wHiDkVX8.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F362C18C/45883290ABD111EBB1A6715EF8AEA228/C3F43398AC0111EFB8883DB0762E951A.roa
Signing time: Tue 26 Nov 2024 14:21:45 +0000
ROA not before: Tue 26 Nov 2024 14:21:42 +0000
ROA not after: Tue 31 Dec 2024 14:21:42 +0000
asID: 328528
IP address blocks: 102.36.161.0/24 maxlen: 24
102.218.100.0/24 maxlen: 24
102.218.102.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1382 (0x566)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F362C18CAF
Validity
Not Before: Nov 26 14:21:42 2024 GMT
Not After : Dec 31 14:21:42 2024 GMT
Subject: CN=6745d979-98ab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:d4:68:bd:fc:46:6f:9f:04:08:e8:fd:19:1f:
e1:84:2b:43:05:9a:82:b6:ef:b6:29:b7:ce:46:22:
0f:0f:1d:bf:aa:d3:78:0b:a2:ff:66:06:a4:37:a3:
fa:3e:13:a8:4c:e8:92:9a:37:cb:ec:90:d8:b5:27:
bb:ca:6e:1a:5c:79:3c:2d:15:a5:bd:46:dd:d7:af:
42:73:55:cf:0c:cb:54:37:dc:20:b8:3d:69:84:bf:
a2:92:4b:bb:b0:1f:e3:93:22:04:70:66:58:0c:d8:
61:b8:17:1c:aa:77:61:24:23:4e:96:93:01:ab:3f:
9a:4a:6c:f8:5e:30:70:52:68:46:bb:48:f6:6f:25:
39:33:98:32:4b:2d:6c:3d:db:65:cc:b2:d0:d8:c6:
cc:ba:04:5b:ea:21:34:68:7e:60:fc:31:a5:dd:e5:
63:40:d9:7b:fd:93:d8:5e:bb:bb:8a:49:41:54:69:
d0:cd:db:06:16:45:98:9d:d0:d2:f9:4e:7a:06:d6:
4d:82:9a:e4:23:75:c2:e8:19:b1:9a:2f:0e:2b:f1:
95:ab:7d:12:11:a9:00:98:1d:11:30:25:c0:98:af:
37:93:dc:93:80:f6:60:c3:ea:f9:1b:d3:e4:3d:64:
fd:d5:5c:af:40:53:cd:fe:cd:f0:c6:f3:22:26:39:
18:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:EF:92:85:31:53:AA:0B:5A:31:48:23:35:15:9C:88:68:DA:9E:50
X509v3 Authority Key Identifier:
keyid:63:E0:BB:6B:34:33:CD:5D:71:A4:2B:01:69:BD:B0:1E:20:E4:55:7F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F362C18C/45883290ABD111EBB1A6715EF8AEA228/Y-C7azQzzV1xpCsBab2wHiDkVX8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/Y-C7azQzzV1xpCsBab2wHiDkVX8.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F362C18C/45883290ABD111EBB1A6715EF8AEA228/C3F43398AC0111EFB8883DB0762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.36.161.0/24
102.218.100.0/24
102.218.102.0/24
Signature Algorithm: sha256WithRSAEncryption
7d:b4:7e:b0:73:a9:d2:48:bf:2b:29:50:c3:2a:ea:40:59:07:
c1:98:7a:c1:0f:ab:3d:49:dc:19:66:33:30:ed:5a:92:da:b8:
47:96:f5:3a:0b:f5:e7:8a:a9:26:26:31:09:c8:25:16:79:ab:
7b:eb:90:98:a8:25:42:3d:bb:27:05:f7:dc:8f:bc:90:ea:8b:
0f:82:35:4e:33:79:5d:7a:f8:d9:19:d5:5d:e9:98:32:c1:1d:
d9:fa:dd:a9:85:aa:13:18:15:0c:fd:e0:a4:57:11:3b:26:6a:
be:e8:91:b9:69:39:1c:f7:2f:57:d9:a9:87:10:d5:01:6b:49:
1d:a4:f2:a6:c3:3a:4f:1a:a6:5f:32:75:1c:f8:2f:72:ab:fe:
b1:c2:33:31:e4:71:cf:cd:37:23:d1:0f:9c:3d:11:c9:35:2d:
e4:75:69:9d:f9:64:8f:07:dd:4a:71:05:e0:7b:6a:0a:f4:9e:
1b:74:e5:6d:c8:83:37:0a:78:bd:83:82:9a:ac:cc:90:ba:70:
63:ca:39:56:91:5e:f5:67:ff:18:72:90:db:4e:93:7f:7a:12:
8c:a2:8d:f4:0c:9c:c7:d9:27:6e:5d:6f:89:48:bf:59:d5:a4:
04:2d:0d:28:45:b7:da:cc:59:c8:78:c3:24:87:48:08:d9:a3:
78:ea:b7:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 02:04:20 2025 by rpki-client