Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/26E431402FB411EE8CD30B7C4AD9E6FC.roa
File: 26E431402FB411EE8CD30B7C4AD9E6FC.roa (raw, json)
Hash identifier: GOeP1peaU2pIph0Q6sKQc3s1SfCP8SDrcX6/KOCPcqM=
Subject key identifier: 65:72:FB:DE:AE:76:B2:ED:D5:B1:CB:C5:9D:6D:BD:54:07:D7:E7:AF
Certificate issuer: /CN=F367DFA4AF/serialNumber=97C90E25212D887CF9E1DE6FDDF551BA812FA139
Certificate serial: 03A3
Authority key identifier: 97:C9:0E:25:21:2D:88:7C:F9:E1:DE:6F:DD:F5:51:BA:81:2F:A1:39
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/l8kOJSEtiHz54d5v3fVRuoEvoTk.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/26E431402FB411EE8CD30B7C4AD9E6FC.roa
Signing time: Mon 31 Jul 2023 15:08:49 +0000
ROA not before: Mon 31 Jul 2023 15:08:45 +0000
ROA not after: Wed 31 Jul 2024 15:08:45 +0000
asID: 174
IP address blocks: 102.177.136.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 931 (0x3a3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F367DFA4AF/serialNumber=97C90E25212D887CF9E1DE6FDDF551BA812FA139
Validity
Not Before: Jul 31 15:08:45 2023 GMT
Not After : Jul 31 15:08:45 2024 GMT
Subject: CN=64c7ce81-cee0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:52:1f:0b:62:51:89:c7:9e:a2:15:92:ea:0f:
74:2d:fb:88:cb:76:56:24:26:50:ee:6f:4b:42:83:
92:89:4c:81:48:1e:4e:6b:fc:9b:d2:93:97:d2:bc:
8a:bb:0e:92:bf:47:da:66:24:6a:bd:f9:0e:80:2a:
8c:ed:68:fa:13:f3:94:2a:9f:ea:ce:29:46:10:6e:
cc:d6:44:d5:45:96:07:a4:21:96:ac:61:cb:24:e0:
17:34:c5:cc:ec:41:0b:50:97:85:a2:11:04:b1:52:
a0:28:c4:77:30:fa:95:93:24:b9:99:1f:36:f3:f4:
a1:6b:c1:ac:d8:2e:2b:92:e1:53:4e:96:8e:6d:52:
16:9e:d7:72:58:32:c2:b6:9b:15:0e:49:00:59:14:
2b:64:91:48:e1:cd:33:fc:3d:e2:52:f2:cb:1f:66:
93:41:60:04:74:71:77:e8:7f:71:70:8b:c3:f7:4c:
3e:4e:f5:1c:39:17:d3:02:07:ac:13:9e:63:56:4b:
41:07:8f:81:4b:52:8e:17:2f:a1:e8:3c:34:88:2a:
10:97:2a:1f:09:87:11:15:6a:f5:7d:59:81:40:8f:
62:93:e9:d0:ae:6b:41:0b:da:01:d2:a6:09:05:40:
27:0e:bf:77:52:2e:37:23:28:3f:2c:89:e6:59:9d:
64:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:72:FB:DE:AE:76:B2:ED:D5:B1:CB:C5:9D:6D:BD:54:07:D7:E7:AF
X509v3 Authority Key Identifier:
keyid:97:C9:0E:25:21:2D:88:7C:F9:E1:DE:6F:DD:F5:51:BA:81:2F:A1:39
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/l8kOJSEtiHz54d5v3fVRuoEvoTk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/l8kOJSEtiHz54d5v3fVRuoEvoTk.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/26E431402FB411EE8CD30B7C4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.177.136.0/22
Signature Algorithm: sha256WithRSAEncryption
34:09:06:a2:e2:be:1b:45:62:21:f5:4f:23:60:b2:35:c9:e0:
23:76:f5:a4:1a:62:83:37:f4:3a:e2:e6:72:80:8a:35:cd:57:
b7:35:f0:2a:3e:d7:f4:35:82:7b:c8:69:91:95:f5:da:ca:d4:
c7:68:74:ff:ff:46:1c:0d:c6:a3:57:2e:36:98:29:04:2b:50:
37:64:e3:f1:79:19:bf:bf:4d:df:16:1c:d4:bb:a7:f2:26:0d:
c3:f2:37:15:ce:bc:ae:b9:48:d7:0d:8c:b2:57:59:04:a9:ef:
b3:b2:f4:1c:1f:62:c0:eb:04:38:cd:cd:8d:d0:64:86:64:f2:
7c:c8:4a:b1:4c:1e:30:cc:80:72:bf:ac:6a:e9:cb:f3:55:83:
e3:31:ef:02:3b:26:32:09:2c:23:17:a4:8d:d4:6a:55:a2:59:
cd:34:de:be:6b:23:fd:f2:09:bd:66:9c:c0:b7:63:19:07:19:
7e:42:b5:e1:17:ce:29:c6:49:af:1a:0e:90:d8:06:81:d2:25:
96:9c:b6:a8:0f:69:fe:00:4a:69:71:ac:4e:65:66:e9:94:6e:
6d:6d:c5:40:58:35:2a:91:3e:77:bd:1c:0f:bf:0e:fd:ae:ad:
23:d5:65:ec:25:52:be:fc:e5:51:ca:69:bc:e4:39:d4:62:e6:
67:8d:1a:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Aug 1 04:13:05 2024 by rpki-client on console-fra.rpki-client.org