Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/1B1F0ECA1B2C11EF9222D65E017001B1.roa
File: 1B1F0ECA1B2C11EF9222D65E017001B1.roa (raw, json)
Hash identifier: PxvVGVmiLmEuENFYyKAY3DEuIbTGrC+W7eVl8Q/ybHs=
Subject key identifier: 57:D8:AF:22:A6:AA:ED:DE:DD:71:C7:9A:CD:C3:94:3A:F3:DB:B6:C4
Certificate issuer: /CN=F367DFA4AF/serialNumber=97C90E25212D887CF9E1DE6FDDF551BA812FA139
Certificate serial: 0522
Authority key identifier: 97:C9:0E:25:21:2D:88:7C:F9:E1:DE:6F:DD:F5:51:BA:81:2F:A1:39
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/l8kOJSEtiHz54d5v3fVRuoEvoTk.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/1B1F0ECA1B2C11EF9222D65E017001B1.roa
Signing time: Sun 26 May 2024 06:49:32 +0000
ROA not before: Sun 26 May 2024 06:49:27 +0000
ROA not after: Fri 28 Jun 2024 06:49:27 +0000
asID: 23470
IP address blocks: 102.177.182.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1314 (0x522)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F367DFA4AF/serialNumber=97C90E25212D887CF9E1DE6FDDF551BA812FA139
Validity
Not Before: May 26 06:49:27 2024 GMT
Not After : Jun 28 06:49:27 2024 GMT
Subject: CN=6652db7c-ee85
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:48:3d:61:1d:5b:81:0a:b0:9c:f4:7c:38:d6:
14:85:c6:fd:4b:2d:3d:ea:d6:3c:50:eb:63:0b:b2:
fe:bb:18:c2:5e:e4:be:a4:ec:8a:41:79:c6:dc:f9:
0d:f3:b3:4a:f8:80:e4:65:59:54:82:89:ac:23:c9:
73:93:c8:eb:78:a7:7f:a1:c3:52:88:61:ef:3a:1d:
7f:1f:12:51:ca:9f:8a:4f:24:6b:fa:da:40:0a:87:
4e:cd:68:be:f3:68:d0:06:04:c2:63:a8:ff:ea:2c:
2c:0f:28:ee:cc:b0:ea:d2:f6:0e:21:a5:28:ae:ec:
ca:34:a3:9f:f3:43:53:dd:b1:34:6c:eb:55:f2:39:
0a:c8:91:31:9a:fb:f0:4f:54:e4:ca:d6:a2:3b:79:
09:bf:01:c7:2f:a7:a5:23:b2:e6:c3:45:42:20:2b:
9a:3e:ee:9b:23:e9:7d:78:31:98:f7:47:28:c6:d7:
e9:14:bf:5d:4f:22:75:ef:5c:77:96:6b:33:2f:3c:
8f:f0:dc:61:05:5a:ee:25:4d:ca:7f:e8:23:77:34:
bb:89:1e:13:e4:68:ce:34:f5:2c:42:c6:06:5e:ad:
5b:f2:dd:da:28:36:3f:59:79:fd:53:f8:1e:d0:68:
c0:1d:90:e7:0d:ce:6d:91:5c:60:a2:fd:80:ab:e8:
78:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:D8:AF:22:A6:AA:ED:DE:DD:71:C7:9A:CD:C3:94:3A:F3:DB:B6:C4
X509v3 Authority Key Identifier:
keyid:97:C9:0E:25:21:2D:88:7C:F9:E1:DE:6F:DD:F5:51:BA:81:2F:A1:39
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/l8kOJSEtiHz54d5v3fVRuoEvoTk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/l8kOJSEtiHz54d5v3fVRuoEvoTk.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/1B1F0ECA1B2C11EF9222D65E017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.177.182.0/24
Signature Algorithm: sha256WithRSAEncryption
ba:36:e2:6f:e9:84:08:3a:7b:d2:03:f3:12:dd:02:84:db:dd:
b1:a1:e7:c0:fc:2a:74:f4:b0:0d:cc:56:64:7f:3e:57:0e:8c:
45:d0:d9:ac:ec:c3:51:12:39:32:7c:28:ed:3e:af:f1:6d:2c:
6b:3d:5e:59:24:6e:43:b8:c3:3f:d4:fc:27:00:92:49:c0:f9:
6e:d3:c0:3e:c9:9d:a8:71:0d:bf:67:58:62:1c:28:93:b2:48:
fc:4e:4d:9a:80:ce:30:9d:ac:54:c6:8e:53:59:65:8c:aa:b5:
74:bb:04:8a:cb:19:13:61:e7:9d:5b:91:15:67:50:d2:19:51:
d4:17:4a:1b:56:5a:2c:db:7e:6b:ed:59:cd:be:59:fd:81:97:
3d:d9:d8:f5:ab:30:00:88:79:fc:84:33:0c:fb:34:05:94:ee:
ab:a9:0c:bd:56:fe:13:f3:8a:63:6f:ff:b3:47:1c:2f:1f:12:
87:fd:1a:81:2a:41:f9:0e:a5:83:ba:c3:e3:83:fc:a6:3a:54:
8d:7e:c8:32:9d:4c:74:bb:a7:76:e0:35:d6:2e:27:0e:d3:5b:
f7:16:70:3d:13:21:a8:6a:85:52:da:9a:54:bd:e8:d1:2a:02:
08:d0:3a:88:f3:88:8c:eb:7c:57:58:d4:1c:2a:dd:e1:24:0f:
68:da:98:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 29 06:06:14 2024 by rpki-client on console-ams.rpki-client.org