Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/19BD96F826D811EE9E85112D4AD9E6FC.roa
File: 19BD96F826D811EE9E85112D4AD9E6FC.roa (raw, json)
Hash identifier: pEi58Ihu//kzfScZirM7iOZDagtLlBljaEd+eHaBKcc=
Subject key identifier: 3C:BB:69:34:83:FD:E3:1E:3A:01:14:45:18:E3:B3:65:78:C3:65:15
Certificate issuer: /CN=F367DFA4AF/serialNumber=97C90E25212D887CF9E1DE6FDDF551BA812FA139
Certificate serial: 0394
Authority key identifier: 97:C9:0E:25:21:2D:88:7C:F9:E1:DE:6F:DD:F5:51:BA:81:2F:A1:39
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/l8kOJSEtiHz54d5v3fVRuoEvoTk.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/19BD96F826D811EE9E85112D4AD9E6FC.roa
Signing time: Thu 20 Jul 2023 08:33:28 +0000
ROA not before: Thu 20 Jul 2023 08:33:25 +0000
ROA not after: Sat 20 Jul 2024 08:33:25 +0000
asID: 207713
IP address blocks: 102.177.130.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 916 (0x394)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F367DFA4AF/serialNumber=97C90E25212D887CF9E1DE6FDDF551BA812FA139
Validity
Not Before: Jul 20 08:33:25 2023 GMT
Not After : Jul 20 08:33:25 2024 GMT
Subject: CN=64b8f158-3089
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:c6:ff:b8:b3:85:43:7a:47:fc:24:6c:ce:60:
0f:73:c7:0b:e2:07:7a:1b:b2:6b:21:73:54:59:12:
b4:fa:15:9b:c4:1b:37:e0:90:16:79:e2:d4:01:b9:
42:4b:c1:02:37:b3:7d:ad:6d:08:a3:04:be:b8:fa:
47:a3:80:9f:31:aa:29:c3:7b:9c:76:20:75:f5:a4:
b7:64:c9:c8:c4:a2:d2:dd:f7:c1:60:26:14:21:17:
01:23:fd:21:1e:fd:74:3b:a0:ca:d6:59:fc:c5:bc:
29:3f:c4:b5:ec:88:c8:c6:28:da:c9:e2:17:77:84:
e8:be:bb:73:64:33:02:1a:46:b0:2f:12:d0:1e:88:
1b:c1:eb:40:22:40:e6:e6:f2:1b:0b:a8:56:64:d9:
22:26:67:d2:70:e6:d0:14:de:ac:28:be:af:2b:d6:
49:8c:f2:a5:7f:3f:00:cc:03:2c:c7:b9:db:f6:22:
3e:46:1d:bb:bf:f9:37:26:61:aa:e7:38:10:0d:27:
3f:5b:01:56:64:d9:40:70:bb:e7:4f:40:5a:38:f9:
92:19:c4:b3:88:ae:83:e3:e5:fb:ad:be:f7:93:f0:
f3:c7:b6:e3:ed:79:e4:c1:6b:21:07:b2:94:df:08:
a6:0f:f9:16:e3:54:1c:e0:fe:02:0f:69:d2:91:2e:
7d:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:BB:69:34:83:FD:E3:1E:3A:01:14:45:18:E3:B3:65:78:C3:65:15
X509v3 Authority Key Identifier:
keyid:97:C9:0E:25:21:2D:88:7C:F9:E1:DE:6F:DD:F5:51:BA:81:2F:A1:39
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/l8kOJSEtiHz54d5v3fVRuoEvoTk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/l8kOJSEtiHz54d5v3fVRuoEvoTk.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/19BD96F826D811EE9E85112D4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.177.130.0/24
Signature Algorithm: sha256WithRSAEncryption
24:c8:34:2a:df:e4:3c:73:69:38:e3:76:3b:40:dc:65:14:d3:
1d:39:a2:3c:21:3f:6f:23:66:98:c0:31:11:d9:83:b1:37:02:
d6:e0:ba:c9:d5:23:5b:15:fb:31:fe:97:ab:c8:be:92:79:03:
0b:ab:6e:3e:b5:72:91:1b:5b:1b:06:94:bc:b5:5c:c6:c9:03:
f1:7d:17:32:42:5f:e6:e6:14:b2:04:ef:dd:0b:bf:e9:e2:e1:
98:6d:11:7d:59:6d:c2:03:92:77:5e:ed:ef:f4:75:33:9f:3d:
b4:9d:e9:9a:bd:54:59:cc:f7:38:5a:c6:fd:86:57:72:e7:f8:
31:5c:ef:ee:3b:5d:1b:d2:78:21:f4:bc:a9:4a:3b:ae:7b:95:
6e:7d:cc:b1:20:05:02:37:94:06:76:84:d3:9b:de:9e:07:1c:
43:4b:21:bb:42:7b:46:da:dc:06:25:06:a5:d9:16:50:02:4f:
3e:81:d5:a5:0c:4c:ea:2e:ab:40:cb:7b:c4:33:9a:64:36:b7:
88:22:1c:ff:ad:e2:64:69:09:a0:d7:57:62:42:05:0d:96:4c:
73:a6:70:cd:93:8b:c2:ac:cf:cf:f2:f4:19:e5:9d:a9:02:3c:
3c:ae:92:33:33:e2:22:00:b9:ae:4c:ba:93:4d:70:ae:67:45:
5b:d5:28:23
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 21 04:53:56 2024 by rpki-client on console-fra.rpki-client.org