Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3634D22/1D5F7C26047311E580C18A06F8AEA228/295B3430DA7111E7979EDD19F8AEA228.roa
File: 295B3430DA7111E7979EDD19F8AEA228.roa (raw, json)
Hash identifier: sgj6C28pjg2AwsKcq7RIjAi3nWAzVER502oeIhcJB+U=
Subject key identifier: 13:E6:67:EC:37:72:7B:4D:BB:BA:ED:83:8D:DA:81:E8:53:BA:48:62
Certificate issuer: /CN=F3634D22AF/serialNumber=8D01D808E89774543DE22D0DA844378ECEA8BB9B
Certificate serial: 0412
Authority key identifier: 8D:01:D8:08:E8:97:74:54:3D:E2:2D:0D:A8:44:37:8E:CE:A8:BB:9B
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/jQHYCOiXdFQ94i0NqEQ3js6ou5s.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3634D22/1D5F7C26047311E580C18A06F8AEA228/295B3430DA7111E7979EDD19F8AEA228.roa
Signing time: Wed 06 Dec 2017 10:35:23 +0000
ROA not before: Wed 06 Dec 2017 10:35:15 +0000
ROA not after: Sat 31 Dec 2022 10:35:15 +0000
asID: 33764
IP address blocks: 196.216.2.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1042 (0x412)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3634D22AF/serialNumber=8D01D808E89774543DE22D0DA844378ECEA8BB9B
Validity
Not Before: Dec 6 10:35:15 2017 GMT
Not After : Dec 31 10:35:15 2022 GMT
Subject: CN=5a27c7ea-5294
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:84:6c:d4:45:9a:0e:bc:c8:1f:55:22:a5:37:
0c:1b:56:5c:cd:4e:23:f5:b2:4d:97:40:d5:7d:32:
0f:21:c6:a7:22:3a:ac:d2:c1:ce:c6:6c:e1:5b:96:
6f:c6:02:6a:84:3a:04:72:e1:68:9b:dc:82:58:9e:
39:89:ab:ed:77:d2:1f:94:3b:ae:8f:59:b2:3f:b6:
93:30:5f:38:dd:54:f2:66:ed:0a:a0:b5:8f:0f:68:
ed:ae:3f:4e:f2:b2:eb:81:aa:14:ce:fd:4e:1c:5b:
d0:0d:3b:de:f1:94:14:48:ea:8f:61:d8:50:dc:5b:
54:45:b1:9c:22:2d:6a:b0:20:0c:6c:1b:9a:4b:b8:
d9:75:40:64:1a:e7:89:c1:73:f2:6a:63:ea:0c:b5:
dc:f7:42:67:d1:e0:de:a3:12:4e:ab:8b:ce:bd:20:
67:d2:b7:cb:ac:fb:63:a4:40:31:e7:43:3f:03:54:
bc:4f:b9:54:f7:6d:b6:d2:23:04:62:8b:11:98:aa:
ed:14:2f:f2:76:99:d9:2b:46:b3:dd:7b:d3:37:4d:
31:b0:8e:1d:bd:10:8a:71:ed:dd:7a:d0:e2:c9:f0:
76:fc:b9:0d:3a:fb:b8:bb:0f:bb:c4:51:93:c5:e3:
c3:bb:4a:3f:0c:4c:cf:d5:77:4b:ef:10:7f:99:74:
63:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:E6:67:EC:37:72:7B:4D:BB:BA:ED:83:8D:DA:81:E8:53:BA:48:62
X509v3 Authority Key Identifier:
keyid:8D:01:D8:08:E8:97:74:54:3D:E2:2D:0D:A8:44:37:8E:CE:A8:BB:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3634D22/1D5F7C26047311E580C18A06F8AEA228/jQHYCOiXdFQ94i0NqEQ3js6ou5s.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/jQHYCOiXdFQ94i0NqEQ3js6ou5s.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3634D22/1D5F7C26047311E580C18A06F8AEA228/295B3430DA7111E7979EDD19F8AEA228.roa
sbgp-ipAddrBlock: critical
IPv4:
196.216.2.0/23
Signature Algorithm: sha256WithRSAEncryption
03:dd:43:08:5b:75:ee:d7:36:74:98:95:4c:77:5b:d0:76:03:
96:56:16:e1:7d:f3:0d:8f:d0:54:f2:a6:8c:20:43:49:77:0d:
2a:6a:83:2f:13:fb:de:ca:c1:0c:ca:21:4e:c7:f7:bc:f9:c2:
2f:47:ef:31:ad:b0:86:30:26:c7:aa:f0:7a:fb:b5:01:7b:ea:
8c:9b:82:b7:8f:2a:9e:c1:a0:15:04:a5:9a:31:0f:a6:a0:c0:
52:b9:e2:a3:45:2b:40:f1:46:43:64:e6:c6:65:40:fe:44:b7:
25:a6:6e:3b:61:3e:ce:c7:73:03:7a:d1:3c:fd:75:dd:7d:a5:
3a:eb:ce:8d:a1:6a:3c:48:d0:ed:ad:b7:e1:69:0b:b3:3f:fa:
1c:36:20:95:5f:90:61:d7:ff:e8:e3:b4:33:1e:6b:0b:7d:b1:
19:0b:3e:6f:89:04:01:00:a9:00:51:91:e8:e6:09:45:8f:41:
36:27:5a:89:8a:1b:38:1c:bc:a4:f7:c6:15:b6:24:56:67:ab:
cc:87:9c:7e:9e:35:cb:bb:0c:e6:46:99:20:a1:83:d7:cf:e0:
0d:e5:9f:84:f5:e8:d2:ab:48:4f:e0:2f:fd:35:e0:30:ca:ed:
d4:e1:b2:ac:88:16:ef:28:ba:6d:10:32:52:0e:d8:ab:0b:19:
77:91:a6:d0
-----BEGIN CERTIFICATE-----
MIIFTDCCBDSgAwIBAgICBBIwDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAxMKRjM2
MzREMjJBRjExMC8GA1UEBRMoOEQwMUQ4MDhFODk3NzQ1NDNERTIyRDBEQTg0NDM3
OEVDRUE4QkI5QjAeFw0xNzEyMDYxMDM1MTVaFw0yMjEyMzExMDM1MTVaMBgxFjAU
BgNVBAMTDTVhMjdjN2VhLTUyOTQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQC1hGzURZoOvMgfVSKlNwwbVlzNTiP1sk2XQNV9Mg8hxqciOqzSwc7GbOFb
lm/GAmqEOgRy4Wib3IJYnjmJq+130h+UO66PWbI/tpMwXzjdVPJm7QqgtY8PaO2u
P07ysuuBqhTO/U4cW9ANO97xlBRI6o9h2FDcW1RFsZwiLWqwIAxsG5pLuNl1QGQa
54nBc/JqY+oMtdz3QmfR4N6jEk6ri869IGfSt8us+2OkQDHnQz8DVLxPuVT3bbbS
IwRiixGYqu0UL/J2mdkrRrPde9M3TTGwjh29EIpx7d160OLJ8Hb8uQ06+7i7D7vE
UZPF48O7Sj8MTM/Vd0vvEH+ZdGOVAgMBAAGjggJuMIICajAdBgNVHQ4EFgQUE+Zn
7Ddye027uu2DjdqB6FO6SGIwHwYDVR0jBBgwFoAUjQHYCOiXdFQ94i0NqEQ3js6o
u5swDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjM0RDIyLzFENUY3QzI2MDQ3MzExRTU4MEMxOEEwNkY4QUVBMjI4L2pRSFlD
T2lYZEZROTRpME5xRVEzanM2b3U1cy5jcmwwZwYIKwYBBQUHAQEEWzBZMFcGCCsG
AQUFBzAChktyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hZnJp
bmljL2pRSFlDT2lYZEZROTRpME5xRVEzanM2b3U1cy5jZXIwTwYDVR0gAQH/BEUw
QzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5p
Yy5uZXQvcG9saWN5L0NQUy5wZGYwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEF
BQcwC4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJl
cl9yZXBvc2l0b3J5L0YzNjM0RDIyLzFENUY3QzI2MDQ3MzExRTU4MEMxOEEwNkY4
QUVBMjI4LzI5NUIzNDMwREE3MTExRTc5NzlFREQxOUY4QUVBMjI4LnJvYTAfBggr
BgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAcTYAjANBgkqhkiG9w0BAQsFAAOCAQEA
A91DCFt17tc2dJiVTHdb0HYDllYW4X3zDY/QVPKmjCBDSXcNKmqDLxP73srBDMoh
Tsf3vPnCL0fvMa2whjAmx6rwevu1AXvqjJuCt48qnsGgFQSlmjEPpqDAUrnio0Ur
QPFGQ2TmxmVA/kS3JaZuO2E+zsdzA3rRPP113X2lOuvOjaFqPEjQ7a234WkLsz/6
HDYglV+QYdf/6OO0Mx5rC32xGQs+b4kEAQCpAFGR6OYJRY9BNidaiYobOBy8pPfG
FbYkVmerzIecfp41y7sM5kaZIKGD18/gDeWfhPXo0qtIT+Av/TXgMMrt1OGyrIgW
7yi6bRAyUg7YqwsZd5Gm0A==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:21:59 2023 by rpki-client on console-fra.rpki-client.org