Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3634D22/1D5F7C26047311E580C18A06F8AEA228/934F71EADA7011E79D4A7D19F8AEA228.roa
File: 934F71EADA7011E79D4A7D19F8AEA228.roa (raw, json)
Hash identifier: FX5w0o7M/lrr5cTlPUcIvWas2xgGOBHiMHIhiSupRbc=
Subject key identifier: B2:4F:44:1D:EA:23:C4:E8:9D:4E:75:91:77:D2:D5:7E:88:50:6D:C5
Certificate issuer: /CN=F3634D22AF/serialNumber=8D01D808E89774543DE22D0DA844378ECEA8BB9B
Certificate serial: 040D
Authority key identifier: 8D:01:D8:08:E8:97:74:54:3D:E2:2D:0D:A8:44:37:8E:CE:A8:BB:9B
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/jQHYCOiXdFQ94i0NqEQ3js6ou5s.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3634D22/1D5F7C26047311E580C18A06F8AEA228/934F71EADA7011E79D4A7D19F8AEA228.roa
Signing time: Wed 06 Dec 2017 10:31:11 +0000
ROA not before: Wed 06 Dec 2017 10:31:04 +0000
ROA not after: Sat 31 Dec 2022 10:31:04 +0000
asID: 37708
IP address blocks: 196.1.0.0/24 maxlen: 24
196.192.112.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1037 (0x40d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3634D22AF/serialNumber=8D01D808E89774543DE22D0DA844378ECEA8BB9B
Validity
Not Before: Dec 6 10:31:04 2017 GMT
Not After : Dec 31 10:31:04 2022 GMT
Subject: CN=5a27c6ee-46bd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:f5:27:ce:ac:17:76:ed:a9:7d:0a:16:e1:4c:
8f:7d:99:e8:57:f9:15:59:36:d2:1c:5f:a8:75:47:
31:3f:cf:71:39:c1:26:d8:bb:c5:84:73:f4:a4:d5:
61:09:2e:e8:5e:31:5d:f7:78:2c:78:7d:0f:98:82:
11:2e:5f:f8:a4:b5:f2:93:02:fc:4c:f9:cc:1a:ec:
e6:8d:89:eb:ca:e8:ae:d5:2a:53:f3:ce:81:dd:57:
07:72:0c:f5:5d:c9:a8:6d:e4:84:d1:e0:8a:08:1a:
17:9e:21:9e:2b:6c:72:59:09:6f:21:61:f9:1b:24:
19:99:1a:1f:96:ab:89:26:87:43:34:e8:7b:a3:1c:
74:12:85:fd:91:83:54:5e:40:33:42:89:89:08:a2:
64:29:67:d2:2e:42:cb:09:b2:58:4a:01:eb:8e:ab:
8b:46:1c:f4:ed:7e:72:f5:e6:2a:13:81:da:69:41:
c3:94:99:52:e6:bc:d3:ae:9b:d6:9a:43:c3:9d:a4:
03:9b:df:8c:1f:54:5c:a1:ab:24:36:73:17:41:23:
95:4e:61:0f:37:43:b0:12:5d:e1:1c:85:80:62:2b:
70:40:f4:50:6a:e2:9b:58:64:91:f8:a6:1b:e5:32:
f2:1e:e2:20:b4:bc:8b:8b:79:f4:a9:49:84:d5:22:
76:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:4F:44:1D:EA:23:C4:E8:9D:4E:75:91:77:D2:D5:7E:88:50:6D:C5
X509v3 Authority Key Identifier:
keyid:8D:01:D8:08:E8:97:74:54:3D:E2:2D:0D:A8:44:37:8E:CE:A8:BB:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3634D22/1D5F7C26047311E580C18A06F8AEA228/jQHYCOiXdFQ94i0NqEQ3js6ou5s.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/jQHYCOiXdFQ94i0NqEQ3js6ou5s.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3634D22/1D5F7C26047311E580C18A06F8AEA228/934F71EADA7011E79D4A7D19F8AEA228.roa
sbgp-ipAddrBlock: critical
IPv4:
196.1.0.0/24
196.192.112.0/23
Signature Algorithm: sha256WithRSAEncryption
9b:ca:38:6c:98:a3:66:7b:ae:b1:65:60:82:32:a8:55:59:ea:
e6:cc:0c:9a:5e:fb:ea:c2:a5:e6:13:4f:68:87:e8:fd:28:d5:
16:6a:5e:b5:01:4a:e2:b5:11:b2:6e:bf:f0:90:e9:95:15:0f:
38:7a:65:ce:1a:cf:37:1e:7b:fa:bb:9d:b4:29:73:74:a6:28:
23:d4:3c:26:9f:46:f8:c7:bf:50:68:91:45:2a:e2:b0:c4:37:
22:05:38:71:c6:e6:6d:21:dd:18:dd:f5:fc:cc:84:ac:b6:41:
4c:5f:2f:a7:24:79:d0:b6:32:42:63:b8:45:64:ee:7b:92:d3:
62:c9:11:5b:39:a5:03:78:36:9a:76:d8:57:ac:ac:30:d3:30:
3a:80:0c:12:cd:65:c1:c0:3d:e9:83:d1:82:dc:12:a8:0a:93:
21:de:94:00:b5:b9:53:18:3b:13:15:20:cb:40:2e:3d:e5:2b:
ef:ef:dd:73:70:c8:fb:33:85:6c:9e:c2:2e:ab:9a:a7:bb:7a:
5e:a1:65:a2:18:18:a1:58:bf:4a:12:d9:4a:dd:2b:46:e6:61:
8f:0f:2f:9f:f9:27:0b:81:6e:2b:7a:b8:62:c3:09:cc:2e:0b:
33:de:29:21:84:d5:32:91:1d:c1:95:3f:f3:80:b8:29:67:a0:
70:d4:44:6e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:21:59 2023 by rpki-client on console-fra.rpki-client.org