Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/00B4CE822DBA11ED9F8751B5F1222468.roa
File: 00B4CE822DBA11ED9F8751B5F1222468.roa (raw, json)
Hash identifier: ShfBhehfb9COzpPu7XOlvj2gBQByUkiTH2Lg5vLUG0A=
Subject key identifier: E2:24:44:29:7F:D7:69:90:89:2B:58:6A:5B:7D:01:D6:9D:A2:BE:B5
Certificate issuer: /CN=F367DFA4AF/serialNumber=97C90E25212D887CF9E1DE6FDDF551BA812FA139
Certificate serial: 0231
Authority key identifier: 97:C9:0E:25:21:2D:88:7C:F9:E1:DE:6F:DD:F5:51:BA:81:2F:A1:39
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/l8kOJSEtiHz54d5v3fVRuoEvoTk.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/00B4CE822DBA11ED9F8751B5F1222468.roa
Signing time: Tue 06 Sep 2022 08:00:42 +0000
ROA not before: Tue 06 Sep 2022 08:00:38 +0000
ROA not after: Mon 31 Jul 2023 08:00:38 +0000
asID: 22724
IP address blocks: 102.177.167.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 561 (0x231)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F367DFA4AF/serialNumber=97C90E25212D887CF9E1DE6FDDF551BA812FA139
Validity
Not Before: Sep 6 08:00:38 2022 GMT
Not After : Jul 31 08:00:38 2023 GMT
Subject: CN=6316fe2a-2189
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:c1:4a:2e:92:1d:c7:03:50:65:0c:ee:16:2b:
1a:0a:17:73:62:cc:5e:18:d5:55:74:85:69:8c:e9:
c5:ee:0b:20:a8:dc:86:36:35:ac:fa:e2:55:bc:31:
0a:c0:ae:bd:1a:4b:07:cc:1c:52:0d:a7:66:5f:f9:
d7:e7:19:20:d3:ea:84:ae:7e:88:2b:0c:ee:d7:26:
36:1c:06:b4:59:c3:b4:39:0c:7b:b5:ca:03:c6:1a:
7b:0d:38:24:2d:55:ac:a0:74:e6:78:b0:a8:f7:0e:
da:38:cb:e5:2c:01:d1:24:32:eb:7f:84:02:d2:3b:
be:8d:c6:83:1b:6f:a4:f8:bb:c2:c9:9e:e5:07:3c:
c5:1d:25:b9:81:a2:3a:50:57:cc:61:d6:8f:ef:a9:
b0:ef:ed:d5:1e:01:ef:17:8d:78:2d:6b:72:97:e1:
5a:a9:92:7a:69:9a:1f:1f:e0:79:55:13:f7:a5:19:
dc:f6:b6:f5:db:7b:db:1d:c4:9c:21:fd:bd:32:53:
e0:6b:eb:eb:5c:53:b4:fd:56:be:eb:bd:0d:b7:7c:
50:6c:cc:1c:c0:24:2a:ea:13:ce:13:68:d6:f2:8f:
1f:a3:7b:41:9a:fa:d3:cf:89:70:40:30:90:1a:82:
53:bf:2f:99:59:86:7b:3d:97:af:d9:f8:15:b7:43:
85:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:24:44:29:7F:D7:69:90:89:2B:58:6A:5B:7D:01:D6:9D:A2:BE:B5
X509v3 Authority Key Identifier:
keyid:97:C9:0E:25:21:2D:88:7C:F9:E1:DE:6F:DD:F5:51:BA:81:2F:A1:39
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/l8kOJSEtiHz54d5v3fVRuoEvoTk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/l8kOJSEtiHz54d5v3fVRuoEvoTk.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/00B4CE822DBA11ED9F8751B5F1222468.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.177.167.0/24
Signature Algorithm: sha256WithRSAEncryption
95:18:a8:19:0e:ab:3c:41:26:2c:f8:e3:e4:53:e2:cb:2a:3f:
b2:c5:f3:bf:12:3a:84:ac:8c:60:95:5f:08:97:93:02:6f:15:
09:63:5c:db:75:e4:86:d3:a6:bb:ba:8c:c3:3d:2f:c4:4e:8a:
90:ed:73:ac:33:77:31:f2:3d:ed:1a:a1:fb:ba:aa:ca:91:c1:
6c:17:0a:a7:df:56:4a:99:01:4b:ea:63:af:08:84:e3:36:cf:
70:e6:f9:74:21:1f:18:8d:de:60:3a:02:10:b7:4c:ab:b2:61:
19:c9:6e:86:36:f4:53:03:c5:07:fb:8c:d4:75:17:2d:62:6e:
40:05:05:24:58:d0:ae:ca:96:1e:bc:eb:f2:11:85:0c:6c:74:
ff:b7:29:aa:a8:32:1b:6e:7e:0c:b4:c9:ac:9a:53:12:fe:75:
47:f8:14:e4:61:7e:2d:04:92:24:e8:c0:51:b1:3d:c6:9b:61:
56:a2:b7:71:0e:6c:f1:e0:e2:d4:38:9d:66:25:fd:e5:05:24:
b8:6e:06:a2:cb:4d:9f:5d:10:e2:06:e2:db:40:bc:8f:fb:fc:
69:0c:93:8c:e5:7b:d9:ba:93:1a:9c:4d:96:4a:47:55:4d:d0:
eb:1d:27:d8:49:80:f6:dd:3c:10:17:18:e4:d2:72:55:0d:ba:
70:4f:85:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:47:09 2024 by rpki-client on console-fra.rpki-client.org