Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3657B9B/2B343DB038D711EC866DDE7DD8A014CE/5C3EA6DE38D711EC973D257ED8A014CE.roa
File: 5C3EA6DE38D711EC973D257ED8A014CE.roa (raw, json)
Hash identifier: cDSvYl+JbU1w9CWXkNbKcNyvoX/qK3ou9IUS3WyoEUk=
Subject key identifier: A6:AC:77:B1:81:FB:5E:08:EF:3A:51:B0:6B:A4:C2:62:CA:DE:72:2C
Certificate issuer: /CN=F3657B9BAF/serialNumber=E4443D06E276DC2695FD1B243C1EA1BF9DB85226
Certificate serial: 02
Authority key identifier: E4:44:3D:06:E2:76:DC:26:95:FD:1B:24:3C:1E:A1:BF:9D:B8:52:26
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/5EQ9BuJ23CaV_RskPB6hv524UiY.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3657B9B/2B343DB038D711EC866DDE7DD8A014CE/5C3EA6DE38D711EC973D257ED8A014CE.roa
Signing time: Fri 29 Oct 2021 16:43:36 +0000
ROA not before: Fri 29 Oct 2021 16:43:32 +0000
ROA not after: Tue 01 Oct 2024 16:43:32 +0000
asID: 328641
IP address blocks: 102.223.164.0/22 maxlen: 24
2c0f:e868::/32 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2 (0x2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3657B9BAF
Validity
Not Before: Oct 29 16:43:32 2021 GMT
Not After : Oct 1 16:43:32 2024 GMT
Subject: CN=617c24b8-24f3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:56:7e:a3:26:e7:61:9d:c6:7f:e1:a6:ce:f3:
29:db:59:95:53:2b:6f:5e:60:1c:0a:bf:c0:02:df:
c3:b1:ab:d5:b5:c2:a2:db:90:4c:94:34:6a:67:52:
55:d0:d3:0f:61:31:fa:8e:eb:a5:4a:36:d1:70:35:
86:76:70:7a:f4:fe:e4:8b:ba:f3:cf:f2:f9:d8:d6:
b9:00:ea:c2:6a:18:3f:35:72:cc:83:c2:ca:55:80:
e7:9c:86:dd:ad:aa:4e:31:15:31:ea:d3:6e:42:51:
7f:5e:c9:4a:85:99:ab:db:70:9a:18:16:95:a1:ee:
74:08:a0:16:42:36:ed:33:8e:08:a8:75:ff:df:97:
dc:da:4a:fd:38:89:17:c8:a3:b6:7b:5b:57:dd:1b:
3d:df:8d:64:20:37:20:b8:a8:b8:cf:62:6a:1c:98:
b1:d6:91:f6:09:81:2d:df:b3:0e:22:8f:9c:d7:ef:
c6:54:ff:a9:4a:bf:41:f4:ca:ae:ed:59:39:1a:4e:
c8:09:27:5c:a2:48:0f:2d:67:86:6d:25:d3:ce:e1:
5b:61:1a:06:30:a5:b6:1b:6e:a4:f3:6c:ec:81:da:
e6:6d:70:1a:38:18:a1:d0:66:74:81:fe:28:b1:d3:
56:9f:91:ba:06:85:f2:81:5a:52:f1:8c:33:79:8e:
65:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:AC:77:B1:81:FB:5E:08:EF:3A:51:B0:6B:A4:C2:62:CA:DE:72:2C
X509v3 Authority Key Identifier:
keyid:E4:44:3D:06:E2:76:DC:26:95:FD:1B:24:3C:1E:A1:BF:9D:B8:52:26
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3657B9B/2B343DB038D711EC866DDE7DD8A014CE/5EQ9BuJ23CaV_RskPB6hv524UiY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/5EQ9BuJ23CaV_RskPB6hv524UiY.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3657B9B/2B343DB038D711EC866DDE7DD8A014CE/5C3EA6DE38D711EC973D257ED8A014CE.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.223.164.0/22
IPv6:
2c0f:e868::/32
Signature Algorithm: sha256WithRSAEncryption
04:ef:85:69:26:3d:90:c9:0a:f0:f8:1e:05:a9:50:7f:f2:12:
2f:d2:8d:ba:23:28:30:43:54:de:8e:94:1b:02:62:2e:e6:a9:
95:8d:ef:73:09:8b:37:3c:95:71:94:92:fb:f3:59:bc:eb:be:
3c:c0:1c:7f:3f:63:1d:93:ff:80:7e:bf:f3:d5:4d:d7:55:c6:
a8:0b:3d:a9:9d:e9:ba:1f:38:6d:0c:fd:60:86:cc:26:16:ce:
77:c5:97:7e:4e:fb:67:86:a9:45:9a:e8:ad:3b:01:9f:87:fa:
99:5b:6e:ad:8a:5a:23:83:75:20:66:e8:72:b8:4a:9a:11:7b:
e1:f1:b5:74:c4:4f:df:e7:1d:28:1b:68:f9:a0:24:b3:05:34:
f0:1b:6d:3e:32:92:dd:34:54:32:a6:b0:7a:ca:08:80:c8:9b:
d3:9b:7f:69:54:87:27:10:3a:be:59:5b:34:bd:47:84:4a:05:
c4:59:cc:f5:d9:dc:ac:64:63:75:47:c7:26:75:04:93:cf:e5:
58:dc:30:9d:29:7b:fa:a2:33:07:ca:71:cd:d1:d4:ba:be:bf:
20:bb:74:a0:5b:96:d3:03:04:99:a3:37:d9:ec:1c:c8:44:f1:
d4:15:c1:96:a6:97:fc:0b:eb:5c:da:76:07:4a:8d:6b:22:74:
46:57:43:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 20:47:21 2025 by rpki-client