Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F366B0C9/F126518CBC4011EDAB594EDCF1222468/E30C66B0BC4311EDB5D7F2E4F1222468.roa
File: E30C66B0BC4311EDB5D7F2E4F1222468.roa (raw, json)
Hash identifier: ApgAPOH13C4/8MXiTBazDhE2ZMbgBnptYWAaT9JliEk=
Subject key identifier: 82:81:47:0E:2B:8B:9F:DC:5F:8E:9A:0F:28:43:AB:BE:F5:FB:2C:FB
Certificate issuer: /CN=F366B0C9AF/serialNumber=A20E2067F0DB783DE3723E231517DC7E9FE5BAD3
Certificate serial: 04
Authority key identifier: A2:0E:20:67:F0:DB:78:3D:E3:72:3E:23:15:17:DC:7E:9F:E5:BA:D3
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/og4gZ_DbeD3jcj4jFRfcfp_lutM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F366B0C9/F126518CBC4011EDAB594EDCF1222468/E30C66B0BC4311EDB5D7F2E4F1222468.roa
Signing time: Mon 06 Mar 2023 17:25:28 +0000
ROA not before: Mon 06 Mar 2023 17:25:24 +0000
ROA not after: Fri 31 Mar 2023 17:25:24 +0000
asID: 37182
IP address blocks: 41.93.40.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4 (0x4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F366B0C9AF/serialNumber=A20E2067F0DB783DE3723E231517DC7E9FE5BAD3
Validity
Not Before: Mar 6 17:25:24 2023 GMT
Not After : Mar 31 17:25:24 2023 GMT
Subject: CN=64062208-f8ac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:e0:8e:a2:a2:fa:4f:21:9c:c3:c0:df:51:3e:
8c:eb:2c:36:7c:83:45:09:bb:b8:67:e2:49:b2:2e:
51:95:32:d3:67:65:03:39:b8:fd:94:77:35:b6:fd:
10:aa:03:10:80:ff:17:b7:f1:f8:20:38:16:79:17:
b0:37:50:03:e3:86:48:32:03:4d:c7:b4:e9:61:76:
38:81:df:a2:8c:44:ac:be:8b:05:d7:2b:30:fb:7a:
67:eb:10:ed:83:f4:9a:d5:32:bc:b4:a5:1f:90:46:
06:73:f6:3b:16:ea:d0:3d:d0:19:6d:72:73:42:f5:
86:b0:93:09:3a:5d:bd:39:ff:24:a2:76:43:66:ee:
ca:3d:ea:ee:a0:6c:44:6b:55:0c:93:99:d7:63:6d:
90:4e:88:3d:e1:62:8e:1d:5b:d7:58:29:10:da:3f:
ee:1b:ef:79:67:ac:2d:32:dc:69:be:31:c2:4b:de:
32:d3:bf:b5:c9:ac:bd:bb:21:d8:64:93:fa:4a:64:
31:e7:4c:ef:2c:2e:d5:d7:2a:c9:ac:f0:c1:12:8a:
49:a7:2e:ad:9c:3b:cf:de:fa:75:b9:43:04:6a:02:
a3:85:d2:e2:3c:b6:35:c0:92:e2:9f:9a:22:92:f0:
cf:7b:00:96:7e:f7:33:99:72:d0:53:eb:63:c7:c6:
a1:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:81:47:0E:2B:8B:9F:DC:5F:8E:9A:0F:28:43:AB:BE:F5:FB:2C:FB
X509v3 Authority Key Identifier:
keyid:A2:0E:20:67:F0:DB:78:3D:E3:72:3E:23:15:17:DC:7E:9F:E5:BA:D3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F366B0C9/F126518CBC4011EDAB594EDCF1222468/og4gZ_DbeD3jcj4jFRfcfp_lutM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/og4gZ_DbeD3jcj4jFRfcfp_lutM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F366B0C9/F126518CBC4011EDAB594EDCF1222468/E30C66B0BC4311EDB5D7F2E4F1222468.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
41.93.40.0/21
Signature Algorithm: sha256WithRSAEncryption
1b:bb:c5:af:51:62:b9:a9:ba:19:7e:81:3b:11:d2:b3:02:7b:
1f:7b:07:0a:fc:8b:38:21:05:04:a6:55:36:47:fc:40:e4:b1:
cf:6c:2d:45:d2:3c:b0:8c:f0:ab:f5:66:2b:af:5d:ef:cb:53:
ef:f7:d8:14:35:f3:64:4b:a7:ac:6d:67:99:64:5b:14:88:ac:
81:d3:28:6d:a4:8a:e8:22:a1:aa:5b:c6:f9:32:e1:6c:13:14:
d2:ce:6d:2e:25:88:fa:89:e2:20:ee:1d:06:df:63:13:1c:72:
68:81:e2:9f:f0:8e:7f:c4:0f:51:64:92:8e:84:e2:b1:e2:78:
bf:b4:24:5c:d6:74:ac:5d:4e:1a:65:93:ad:d9:c9:ee:33:de:
21:21:47:5d:26:f7:c1:08:1e:00:37:70:30:cf:11:de:82:a9:
d0:14:11:96:cb:87:4d:97:08:4a:30:cf:c5:f2:92:1f:e6:2a:
fc:32:08:61:56:ba:60:a5:d2:84:58:3d:13:a2:94:43:ac:6c:
6f:5e:5b:89:d3:1c:0f:fc:9d:d4:c9:9d:d0:bf:83:ed:de:cd:
8c:a6:9d:20:c4:f5:b2:68:b9:cd:d3:90:70:b2:77:21:2f:93:
ae:b7:f1:6e:be:fc:c2:9b:10:b2:c5:9d:ef:73:e2:98:56:1a:
cf:02:b4:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:22:00 2023 by rpki-client on console-fra.rpki-client.org