Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F364C81D/33794D2E890E11E99A72D162F8AEA228/F323C908103A11EEBD6FA63A4AD9E6FC.roa
File: F323C908103A11EEBD6FA63A4AD9E6FC.roa (raw, json)
Hash identifier: AtE9Rc3HuO8g+xOtRgM2KU/vY9WNVrncfKi46emjBM8=
Subject key identifier: 0B:2B:4D:BB:41:24:9F:63:F2:E9:E7:F8:19:72:CE:2C:BD:B3:0D:B6
Certificate issuer: /CN=F364C81DAF/serialNumber=BCCE86D612D43F841AB0416EC5A884070F5CE5D6
Certificate serial: 05FA
Authority key identifier: BC:CE:86:D6:12:D4:3F:84:1A:B0:41:6E:C5:A8:84:07:0F:5C:E5:D6
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/vM6G1hLUP4QasEFuxaiEBw9c5dY.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F364C81D/33794D2E890E11E99A72D162F8AEA228/F323C908103A11EEBD6FA63A4AD9E6FC.roa
Signing time: Wed 21 Jun 2023 13:53:07 +0000
ROA not before: Wed 21 Jun 2023 13:53:02 +0000
ROA not after: Wed 01 Jan 2025 13:53:02 +0000
asID: 327822
IP address blocks: 102.223.203.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1530 (0x5fa)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F364C81DAF
Validity
Not Before: Jun 21 13:53:02 2023 GMT
Not After : Jan 1 13:53:02 2025 GMT
Subject: CN=649300c3-57d4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:bf:be:bf:06:85:23:61:9f:22:0b:09:de:e2:
28:c9:ce:0f:38:72:ea:ec:0b:12:fb:e5:5c:54:1f:
4b:b8:d5:19:d7:73:a8:65:ca:f3:15:4e:34:2d:b8:
0e:b8:71:41:91:73:b4:5a:4d:e7:ed:ce:8e:01:e1:
88:c8:07:f4:85:0e:be:e1:9a:08:f1:49:f6:f5:fc:
68:e6:35:8f:3d:69:ac:70:44:0f:25:0a:6f:19:3e:
ba:7d:15:6f:3b:7d:af:55:81:99:85:5e:e4:ca:02:
4f:41:bc:39:22:aa:fe:3e:9b:97:69:f9:a5:8a:12:
58:8f:26:54:aa:1f:28:1f:45:a8:b9:ba:71:98:b9:
c4:21:04:7c:59:d4:9d:a4:c9:10:db:04:0e:a2:f1:
97:ce:bf:7c:2d:a2:cc:45:ad:37:bf:7e:79:30:9f:
67:b1:8a:0e:d1:92:e0:ae:ed:c9:d2:be:e5:20:9f:
c4:f5:ae:49:a7:29:d4:c1:7b:e1:05:dc:89:45:71:
ce:3b:6f:a0:d0:7e:9f:c1:0c:c4:65:4b:92:5c:20:
a5:12:1d:21:14:1b:93:7e:bb:f4:41:de:02:4a:df:
21:25:d9:5a:1c:15:23:a3:17:2e:45:1e:f3:7c:65:
d5:29:96:63:2c:d0:58:6c:6e:15:ed:53:da:ba:90:
35:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:2B:4D:BB:41:24:9F:63:F2:E9:E7:F8:19:72:CE:2C:BD:B3:0D:B6
X509v3 Authority Key Identifier:
keyid:BC:CE:86:D6:12:D4:3F:84:1A:B0:41:6E:C5:A8:84:07:0F:5C:E5:D6
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F364C81D/33794D2E890E11E99A72D162F8AEA228/vM6G1hLUP4QasEFuxaiEBw9c5dY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/vM6G1hLUP4QasEFuxaiEBw9c5dY.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F364C81D/33794D2E890E11E99A72D162F8AEA228/F323C908103A11EEBD6FA63A4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.223.203.0/24
Signature Algorithm: sha256WithRSAEncryption
6b:df:0e:bf:88:4a:1e:ad:ba:62:06:05:ea:0a:fb:16:e5:e2:
db:6e:3a:29:c2:38:cb:b7:20:23:6c:49:8e:3c:c6:cc:6a:61:
d8:9b:10:5f:a5:5c:e7:9c:2d:24:57:f5:b6:de:24:07:7c:8f:
9c:f2:d5:02:53:08:70:dd:37:d6:0e:6e:b4:f8:5a:72:36:e7:
65:6d:9c:1a:53:61:41:cc:1c:d9:32:07:ac:c4:a8:c2:dd:a1:
46:d5:a7:65:1a:0d:67:24:61:e9:f6:dd:5b:0d:a1:84:c4:c2:
87:35:34:62:7e:e4:bb:92:5d:c2:dd:40:aa:ee:5b:e5:e1:a9:
4a:1e:e1:ec:d1:ce:97:39:fc:72:1f:30:4b:13:5e:ea:d0:cc:
dc:9b:24:1d:2a:70:43:fd:d8:ad:97:87:50:ed:55:0c:bd:4b:
26:6a:24:13:2f:e4:82:54:13:66:d2:b3:97:5b:77:59:13:3b:
10:c9:bd:99:f1:4e:d3:54:7d:aa:a6:32:8c:7e:07:a8:c5:93:
91:e4:23:f9:60:41:74:22:6c:63:32:ae:ca:4a:82:b7:8c:7c:
ff:96:e6:6c:f2:b2:c6:2b:fc:ae:5c:46:75:7d:93:03:f5:ed:
90:c0:49:87:30:f2:60:a0:ac:da:74:e9:ec:51:71:16:3a:52:
d0:42:1e:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 20:46:33 2025 by rpki-client