Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3671BB4/02E646F8061D11EABC386256F8AEA228/231D4B527FE211EB99E73D43F8AEA228.roa
File: 231D4B527FE211EB99E73D43F8AEA228.roa (raw, json)
Hash identifier: PTQL/KT6yHPVJiFQBxXgbs8QEUkOtcKN44aYPxdiyFM=
Subject key identifier: AC:4E:09:17:0E:B7:40:D9:04:38:9C:44:87:7B:00:BA:BD:A1:2F:9A
Certificate issuer: /CN=F3671BB4AF/serialNumber=F72AC76BB07E44DDC7AC60E6631F1CD2EDF035DD
Certificate serial: 01F2
Authority key identifier: F7:2A:C7:6B:B0:7E:44:DD:C7:AC:60:E6:63:1F:1C:D2:ED:F0:35:DD
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/9yrHa7B-RN3HrGDmYx8c0u3wNd0.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3671BB4/02E646F8061D11EABC386256F8AEA228/231D4B527FE211EB99E73D43F8AEA228.roa
Signing time: Mon 08 Mar 2021 07:44:40 +0000
ROA not before: Mon 08 Mar 2021 07:44:33 +0000
ROA not after: Thu 07 Apr 2022 07:44:33 +0000
asID: 37520
IP address blocks: 2001:43f8:1430::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 498 (0x1f2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3671BB4AF/serialNumber=F72AC76BB07E44DDC7AC60E6631F1CD2EDF035DD
Validity
Not Before: Mar 8 07:44:33 2021 GMT
Not After : Apr 7 07:44:33 2022 GMT
Subject: CN=6045d5e8-5b26
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:b1:ee:10:b1:0e:56:fd:2c:6a:2a:d1:a7:ff:
5c:3a:80:b7:bf:72:d4:5e:88:e1:cf:6f:36:a1:5b:
10:65:ad:a6:54:d6:3c:2d:c2:de:60:2b:92:d5:9e:
3b:66:42:24:39:db:44:4b:a4:8e:00:0d:72:1e:27:
7c:02:5c:14:a7:62:00:89:b1:7f:ed:6e:35:fb:28:
1b:08:84:f2:5e:fa:71:bd:ce:2a:90:11:5b:9b:3b:
a9:63:d1:77:35:78:4d:45:bb:45:a7:fe:ad:5d:47:
52:56:de:63:4a:e9:9c:31:21:e1:88:1a:df:eb:95:
2d:8f:43:34:a2:bc:29:a0:99:97:1d:8c:46:53:1e:
b9:e3:8d:68:41:44:14:3b:31:7f:fe:22:d8:c3:73:
01:cf:43:3f:b1:59:6e:44:49:58:50:31:5c:0e:43:
23:22:8d:45:f0:ec:d4:ad:27:77:a1:a5:9a:f4:cb:
b8:af:c1:ad:e8:61:7f:78:86:ba:11:bf:f3:75:48:
68:b0:fb:80:26:3b:c9:3e:02:74:19:dc:45:de:e6:
dd:95:a9:d2:5b:8e:d1:2c:f2:bc:21:19:cf:1b:13:
a4:2f:c3:f6:8c:b8:f3:19:b2:f5:71:2d:ee:ab:d5:
a5:b3:a2:ea:90:af:b7:c4:ff:62:44:f5:62:e5:07:
6b:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:4E:09:17:0E:B7:40:D9:04:38:9C:44:87:7B:00:BA:BD:A1:2F:9A
X509v3 Authority Key Identifier:
keyid:F7:2A:C7:6B:B0:7E:44:DD:C7:AC:60:E6:63:1F:1C:D2:ED:F0:35:DD
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3671BB4/02E646F8061D11EABC386256F8AEA228/9yrHa7B-RN3HrGDmYx8c0u3wNd0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/9yrHa7B-RN3HrGDmYx8c0u3wNd0.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3671BB4/02E646F8061D11EABC386256F8AEA228/231D4B527FE211EB99E73D43F8AEA228.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2001:43f8:1430::/48
Signature Algorithm: sha256WithRSAEncryption
63:e8:86:94:50:da:24:89:82:49:b4:a5:e5:73:fb:2f:77:53:
81:d5:07:d1:32:56:a3:fa:ad:14:78:55:c0:77:19:90:46:68:
3d:1f:0d:f0:bf:4a:a1:dc:07:a5:f5:5d:e7:a1:02:d2:bc:e3:
53:8a:7f:a5:83:e4:59:f0:84:5a:8e:67:61:0b:11:ce:78:f7:
6f:39:14:f3:26:91:ea:7e:3a:1f:61:6c:50:d8:c5:a1:3b:12:
8b:11:6d:25:97:d8:e8:89:51:77:8d:09:0d:d9:36:d0:d5:e2:
ff:b3:2f:f6:96:5c:88:80:f1:82:a6:21:fe:6b:68:b0:a7:8e:
38:92:e7:1e:4f:0e:99:52:c7:70:fc:c2:0b:1c:16:61:3a:b4:
a9:e8:a1:9d:74:9e:31:40:0c:aa:82:92:44:5b:43:db:f5:0f:
3c:b4:78:a6:16:fe:87:89:4f:77:8e:3f:c8:fc:3c:0d:79:1a:
ef:ed:9f:ff:73:75:ad:4e:54:98:1d:a7:7a:9f:d1:00:7f:c7:
0f:11:6a:2d:91:b9:cc:aa:b1:4e:6f:47:a0:43:7e:b3:2e:56:
3a:88:0e:85:b8:ed:ff:f3:21:2f:8c:14:f3:54:88:da:a8:dc:
33:48:78:ea:bf:41:3d:c4:44:b1:b4:d2:38:15:ef:0a:61:ca:
f7:3a:03:ff
-----BEGIN CERTIFICATE-----
MIIFhjCCBG6gAwIBAgICAfIwDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAxMKRjM2
NzFCQjRBRjExMC8GA1UEBRMoRjcyQUM3NkJCMDdFNDREREM3QUM2MEU2NjMxRjFD
RDJFREYwMzVERDAeFw0yMTAzMDgwNzQ0MzNaFw0yMjA0MDcwNzQ0MzNaMBgxFjAU
BgNVBAMTDTYwNDVkNWU4LTViMjYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQDNse4QsQ5W/SxqKtGn/1w6gLe/ctReiOHPbzahWxBlraZU1jwtwt5gK5LV
njtmQiQ520RLpI4ADXIeJ3wCXBSnYgCJsX/tbjX7KBsIhPJe+nG9ziqQEVubO6lj
0Xc1eE1Fu0Wn/q1dR1JW3mNK6ZwxIeGIGt/rlS2PQzSivCmgmZcdjEZTHrnjjWhB
RBQ7MX/+ItjDcwHPQz+xWW5ESVhQMVwOQyMijUXw7NStJ3ehpZr0y7ivwa3oYX94
hroRv/N1SGiw+4AmO8k+AnQZ3EXe5t2VqdJbjtEs8rwhGc8bE6Qvw/aMuPMZsvVx
Le6r1aWzouqQr7fE/2JE9WLlB2sPAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUrE4J
Fw63QNkEOJxEh3sAur2hL5owHwYDVR0jBBgwFoAU9yrHa7B+RN3HrGDmYx8c0u3w
Nd0wDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjcxQkI0LzAyRTY0NkY4MDYxRDExRUFCQzM4NjI1NkY4QUVBMjI4Lzl5ckhh
N0ItUk4zSHJHRG1ZeDhjMHUzd05kMC5jcmwwZwYIKwYBBQUHAQEEWzBZMFcGCCsG
AQUFBzAChktyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hZnJp
bmljLzl5ckhhN0ItUk4zSHJHRG1ZeDhjMHUzd05kMC5jZXIwTwYDVR0gAQH/BEUw
QzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5p
Yy5uZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEF
BQcwC4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJl
cl9yZXBvc2l0b3J5L0YzNjcxQkI0LzAyRTY0NkY4MDYxRDExRUFCQzM4NjI1NkY4
QUVBMjI4LzIzMUQ0QjUyN0ZFMjExRUI5OUU3M0Q0M0Y4QUVBMjI4LnJvYTA1Bggr
BgEFBQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54
bWwwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAgAUP4FDAwDQYJKoZIhvcN
AQELBQADggEBAGPohpRQ2iSJgkm0peVz+y93U4HVB9EyVqP6rRR4VcB3GZBGaD0f
DfC/SqHcB6X1XeehAtK841OKf6WD5FnwhFqOZ2ELEc549285FPMmkep+Oh9hbFDY
xaE7EosRbSWX2OiJUXeNCQ3ZNtDV4v+zL/aWXIiA8YKmIf5raLCnjjiS5x5PDplS
x3D8wgscFmE6tKnooZ10njFADKqCkkRbQ9v1Dzy0eKYW/oeJT3eOP8j8PA15Gu/t
n/9zda1OVJgdp3qf0QB/xw8Rai2RucyqsU5vR6BDfrMuVjqIDoW47f/zIS+MFPNU
iNqo3DNIeOq/QT3ERLG00jgV7wphyvc6A/8=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:58:33 2024 by rpki-client on console-ams.rpki-client.org