Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36479AF/5CFEC160C4C811E9B4DD3D1AF8AEA228/02B4835CC4D211E997322621F8AEA228.roa
File: 02B4835CC4D211E997322621F8AEA228.roa (raw, json)
Hash identifier: 8Mkh3u02YYsIqz0R9KQLLFgngnuCoDbX0NCl+mpf68s=
Subject key identifier: BC:9D:56:AD:A3:7B:D2:90:58:41:36:8C:8B:62:6F:5D:FF:B8:03:FE
Certificate issuer: /CN=F36479AFAF/serialNumber=07BAD6177458B648409D07F59A9910A5D3403D0C
Certificate serial: 02
Authority key identifier: 07:BA:D6:17:74:58:B6:48:40:9D:07:F5:9A:99:10:A5:D3:40:3D:0C
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/B7rWF3RYtkhAnQf1mpkQpdNAPQw.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36479AF/5CFEC160C4C811E9B4DD3D1AF8AEA228/02B4835CC4D211E997322621F8AEA228.roa
Signing time: Thu 22 Aug 2019 11:43:08 +0000
ROA not before: Thu 22 Aug 2019 11:43:03 +0000
ROA not after: Tue 22 Aug 2023 11:43:03 +0000
asID: 37308
IP address blocks: 41.78.208.0/24 maxlen: 24
41.78.209.0/24 maxlen: 24
41.78.210.0/24 maxlen: 24
41.78.211.0/24 maxlen: 24
197.234.32.0/24 maxlen: 24
197.234.33.0/24 maxlen: 24
197.234.34.0/24 maxlen: 24
197.234.35.0/24 maxlen: 24
197.234.36.0/24 maxlen: 24
197.234.37.0/24 maxlen: 24
197.234.38.0/24 maxlen: 24
197.234.39.0/24 maxlen: 24
197.234.48.0/24 maxlen: 24
197.234.49.0/24 maxlen: 24
197.234.50.0/24 maxlen: 24
197.234.51.0/24 maxlen: 24
197.234.52.0/24 maxlen: 24
197.234.57.0/24 maxlen: 24
197.234.58.0/24 maxlen: 24
197.242.240.0/24 maxlen: 24
197.242.241.0/24 maxlen: 24
197.242.242.0/24 maxlen: 24
197.242.243.0/24 maxlen: 24
197.242.244.0/24 maxlen: 24
197.242.245.0/24 maxlen: 24
197.242.250.0/24 maxlen: 24
197.242.251.0/24 maxlen: 24
197.242.252.0/24 maxlen: 24
2c0f:f3a8::/32 maxlen: 40
2c0f:f3a8::/40 maxlen: 40
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2 (0x2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36479AFAF/serialNumber=07BAD6177458B648409D07F59A9910A5D3403D0C
Validity
Not Before: Aug 22 11:43:03 2019 GMT
Not After : Aug 22 11:43:03 2023 GMT
Subject: CN=5d5e7fcc-6bce
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:84:d5:c3:94:0e:29:9f:16:87:96:c0:ba:70:
33:4e:77:18:b4:f9:e4:e0:26:0b:8c:f4:07:3b:64:
d4:14:d3:ca:fd:77:ae:4b:ab:36:c1:50:37:f6:a4:
7d:06:d7:7b:c8:8b:0c:ed:05:1b:31:2c:5e:e8:79:
e1:70:2f:a0:46:67:af:cf:bc:2e:96:e5:e2:ec:4f:
99:86:c6:3a:14:51:ff:b0:96:24:ab:30:f8:6b:9d:
cf:51:3d:3d:c7:00:ad:31:f3:3a:a8:19:70:4f:08:
3c:1f:e9:4e:72:a3:43:d7:0f:bd:f5:d2:d5:98:63:
28:44:61:ce:3f:4a:3d:28:56:43:cf:27:b3:ba:c4:
b6:8f:31:b1:5a:f9:32:23:5c:59:92:b4:ad:0f:2d:
2c:ed:8a:dd:c6:52:d1:9c:02:4d:7e:99:5d:8f:54:
e4:06:e6:69:51:5c:b6:50:3f:af:40:2d:d2:da:18:
2c:28:5d:c3:9e:e2:b1:bb:5b:d4:bd:c5:ca:49:d1:
92:f1:dd:60:c2:96:1a:66:35:e6:82:32:1e:67:75:
c6:0e:bd:63:e7:ef:fa:de:2f:05:e9:18:8c:1e:f3:
14:81:f9:cc:c8:22:27:29:7e:c1:1e:20:6d:8c:cc:
ea:67:d5:ef:cd:5e:eb:91:6e:50:56:5c:ea:19:db:
55:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:9D:56:AD:A3:7B:D2:90:58:41:36:8C:8B:62:6F:5D:FF:B8:03:FE
X509v3 Authority Key Identifier:
keyid:07:BA:D6:17:74:58:B6:48:40:9D:07:F5:9A:99:10:A5:D3:40:3D:0C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36479AF/5CFEC160C4C811E9B4DD3D1AF8AEA228/B7rWF3RYtkhAnQf1mpkQpdNAPQw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/B7rWF3RYtkhAnQf1mpkQpdNAPQw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36479AF/5CFEC160C4C811E9B4DD3D1AF8AEA228/02B4835CC4D211E997322621F8AEA228.roa
sbgp-ipAddrBlock: critical
IPv4:
41.78.208.0/22
197.234.32.0/21
197.234.48.0-197.234.52.255
197.234.57.0-197.234.58.255
197.242.240.0-197.242.245.255
197.242.250.0-197.242.252.255
IPv6:
2c0f:f3a8::/32
Signature Algorithm: sha256WithRSAEncryption
3b:08:1f:e5:02:1f:d7:9d:2d:83:9f:30:59:67:f2:55:2e:a8:
4a:db:ee:cf:52:73:67:ba:8f:72:c0:58:ed:67:0f:44:fa:e2:
00:26:8f:74:8a:ce:e5:02:d9:cd:4d:8f:3f:f7:75:71:ea:3a:
39:5e:1a:8d:f8:74:9d:79:26:ae:10:a9:ef:72:96:d4:5d:4f:
b3:a5:e4:56:0a:9f:b6:62:57:8c:3d:e7:de:48:7a:05:c7:ba:
8f:aa:c2:f8:fa:ba:44:65:c1:73:c9:15:c6:e4:9a:57:3f:ba:
67:4d:6e:ad:d2:6f:d2:21:70:82:cb:be:a5:36:4e:16:1e:c6:
7c:ec:b4:5d:bd:df:0a:ae:ed:0c:a8:02:a7:7a:16:10:ba:c9:
4e:aa:b7:58:98:95:13:ac:12:b9:97:65:0d:a8:6a:d6:a0:42:
4e:ab:88:f4:23:64:fb:e2:ff:1f:37:a3:58:8c:e7:c4:c2:30:
e4:55:d3:78:01:2e:06:02:41:8c:d3:3b:71:15:8e:f1:e8:77:
7a:e7:dc:14:c9:34:6e:b3:9e:e7:47:d5:16:42:65:58:2a:10:
c0:d9:7f:c5:49:4b:09:c9:3f:b7:50:4b:06:60:eb:a7:d8:18:
2d:00:2a:76:95:00:c0:58:89:d3:83:33:62:e8:bf:12:8c:14:
d8:88:72:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:47:08 2024 by rpki-client on console-fra.rpki-client.org