Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F364819C/515B0F044E0D11ED8FA200A9F1222468/AC9DC7B8B84211EDBCF11ACEF1222468.roa
File: AC9DC7B8B84211EDBCF11ACEF1222468.roa (raw, json)
Hash identifier: iB2cl65Vr8m412kxh+Jaylj1lmvOFavOF9ffEfMTuBo=
Subject key identifier: 4C:5A:2B:52:21:99:4D:80:3E:4C:7B:3D:3B:61:27:E3:3A:0C:CA:FE
Certificate issuer: /CN=F364819CAF/serialNumber=A2974E67304324388C88802E717D6B9281A52632
Certificate serial: AF
Authority key identifier: A2:97:4E:67:30:43:24:38:8C:88:80:2E:71:7D:6B:92:81:A5:26:32
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/opdOZzBDJDiMiIAucX1rkoGlJjI.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F364819C/515B0F044E0D11ED8FA200A9F1222468/AC9DC7B8B84211EDBCF11ACEF1222468.roa
Signing time: Wed 01 Mar 2023 15:06:42 +0000
ROA not before: Wed 01 Mar 2023 15:06:39 +0000
ROA not after: Sun 31 Mar 2024 15:06:39 +0000
asID: 329159
IP address blocks: 102.214.203.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 175 (0xaf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F364819CAF/serialNumber=A2974E67304324388C88802E717D6B9281A52632
Validity
Not Before: Mar 1 15:06:39 2023 GMT
Not After : Mar 31 15:06:39 2024 GMT
Subject: CN=63ff6a02-a262
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:da:10:d4:3f:16:f0:2e:b7:a2:fc:5e:1e:7b:
55:12:c0:bf:13:1e:3d:42:0a:ac:21:72:db:96:71:
c5:ef:7d:93:3f:32:1f:fa:63:0d:b5:91:8b:ef:26:
80:20:ee:ed:fa:55:d2:ff:a0:23:61:01:7d:0a:ec:
27:bf:e9:62:c1:dc:1d:ec:d3:61:3d:f4:d2:c5:16:
c7:69:4a:a3:fe:cc:cc:09:41:37:96:05:69:b6:7e:
10:1b:94:2f:70:4f:40:90:3f:7e:a0:b1:22:9d:99:
6d:1a:ff:75:0f:18:7f:ff:b1:f3:c0:2f:e1:da:8d:
5a:13:dc:18:39:a4:b9:43:63:5a:e8:bb:40:67:d0:
74:5c:83:99:14:e5:da:3e:16:7d:d2:82:97:db:dc:
2a:cd:7a:f7:71:81:ab:73:48:21:b8:fa:58:d5:fc:
e2:32:35:d0:a4:8e:c2:f8:31:db:1b:c9:b8:bc:a9:
85:90:22:65:49:04:e6:6d:ba:ac:02:15:96:5c:49:
e5:2d:31:15:85:15:23:5e:5d:2d:bd:6f:b2:bc:89:
71:25:60:e3:a3:46:25:7a:31:11:d4:fc:03:44:88:
69:33:5f:05:a9:91:06:78:f9:5b:1c:80:25:02:ba:
c9:9d:d4:58:c1:16:56:de:2d:0c:80:d6:08:e1:58:
56:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:5A:2B:52:21:99:4D:80:3E:4C:7B:3D:3B:61:27:E3:3A:0C:CA:FE
X509v3 Authority Key Identifier:
keyid:A2:97:4E:67:30:43:24:38:8C:88:80:2E:71:7D:6B:92:81:A5:26:32
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F364819C/515B0F044E0D11ED8FA200A9F1222468/opdOZzBDJDiMiIAucX1rkoGlJjI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/opdOZzBDJDiMiIAucX1rkoGlJjI.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F364819C/515B0F044E0D11ED8FA200A9F1222468/AC9DC7B8B84211EDBCF11ACEF1222468.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.214.203.0/24
Signature Algorithm: sha256WithRSAEncryption
73:1a:59:62:8e:f6:f1:0e:61:1e:de:f6:a7:e4:bb:3c:69:7f:
a1:81:1d:89:d4:7d:ec:26:e4:c6:cc:75:ae:fa:1c:47:68:e9:
f9:2a:47:58:d3:4d:d5:f4:a5:89:b0:65:99:9b:75:02:29:59:
9b:18:18:45:3a:4f:cf:90:c0:03:8b:59:31:a0:08:80:2f:34:
80:72:65:c5:12:85:49:e4:3e:c5:d4:8b:8f:14:3f:1f:ee:6b:
dc:cd:0e:8d:79:f9:ad:2c:2c:ec:44:97:29:f0:2d:06:21:0f:
a0:c0:bc:38:d6:50:3d:c6:68:a8:48:e0:0b:e6:a5:74:3b:ff:
67:d9:2a:a9:a4:a7:cb:bd:ec:89:29:cb:25:e4:e1:dc:88:7f:
f0:26:e6:ae:dc:be:25:24:26:f6:e0:23:c2:2b:92:ed:dd:27:
62:44:70:f5:2c:0b:71:e1:50:69:e9:73:41:c9:0e:5b:f9:73:
d6:94:f2:4e:4f:3c:e5:9d:07:23:69:8b:40:3a:2f:a8:af:c3:
00:17:90:da:ac:f3:7b:75:db:29:bc:aa:71:b3:c4:cf:bb:9e:
a2:78:10:6b:83:40:c3:03:6f:31:e6:3f:85:e0:9f:63:cf:5b:
98:46:9b:b8:c9:a5:83:89:85:9a:da:98:22:6b:c6:99:0d:47:
cf:34:61:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 1 02:53:46 2024 by rpki-client on console-ams.rpki-client.org