Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/37AC8BC6800311EF86F4F349762E951A.roa
File: 37AC8BC6800311EF86F4F349762E951A.roa (raw, json)
Hash identifier: pbvxkHF4wpAvNq+fxHDZeg4TgzyQSdwlVHz5MOpWo2k=
Subject key identifier: 6C:0B:44:0D:EF:0D:82:33:F6:28:2F:9E:E3:59:9F:BC:A9:2B:E4:DE
Certificate issuer: /CN=F367DFA4AF/serialNumber=97C90E25212D887CF9E1DE6FDDF551BA812FA139
Certificate serial: 05DC
Authority key identifier: 97:C9:0E:25:21:2D:88:7C:F9:E1:DE:6F:DD:F5:51:BA:81:2F:A1:39
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/l8kOJSEtiHz54d5v3fVRuoEvoTk.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/37AC8BC6800311EF86F4F349762E951A.roa
Signing time: Tue 01 Oct 2024 14:41:18 +0000
ROA not before: Tue 01 Oct 2024 14:41:14 +0000
ROA not after: Wed 30 Oct 2024 14:41:14 +0000
asID: 137897
IP address blocks: 102.177.186.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1500 (0x5dc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F367DFA4AF/serialNumber=97C90E25212D887CF9E1DE6FDDF551BA812FA139
Validity
Not Before: Oct 1 14:41:14 2024 GMT
Not After : Oct 30 14:41:14 2024 GMT
Subject: CN=66fc0a0e-3271
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:93:96:68:b0:3d:63:7b:01:52:41:df:60:70:
e2:15:4d:7a:6f:57:11:a7:78:7c:4a:a3:8a:75:7c:
8d:64:2d:6e:d5:3a:58:7c:c9:ac:25:ca:3c:a5:ab:
97:3f:5b:d2:8b:11:84:86:48:31:8a:dc:32:c9:d8:
9b:af:e5:7e:95:5c:71:f3:e5:20:ec:d2:aa:11:cf:
d9:48:cd:e1:f9:00:bd:0f:61:88:54:8a:15:e8:30:
87:80:c2:30:cf:b8:48:88:7b:5e:2c:60:b5:f5:06:
3e:7c:0a:cc:f5:21:11:b7:1e:e9:5a:f8:de:ee:bb:
50:35:b8:51:d0:73:31:fe:77:08:b3:57:2e:ac:7c:
d7:c0:e8:57:f6:d8:ec:88:3a:a3:5c:4c:95:b3:b0:
fc:a2:56:5e:51:28:f1:50:88:3e:64:59:ab:eb:a4:
65:47:df:b9:88:1e:84:e5:7e:a0:f3:c2:3d:f6:6d:
a5:f6:29:22:cd:40:b8:59:e3:a7:27:ff:bf:22:8a:
61:d1:95:9f:c2:f7:3d:b9:a6:79:78:a0:a0:b3:47:
14:f0:ed:ba:fa:11:3c:1d:97:ad:ce:2b:05:6a:c2:
dc:2f:5d:70:b5:f7:c7:79:14:c7:5e:61:53:f9:ce:
0f:6f:b9:88:cb:70:3b:af:0b:98:3a:db:dc:17:09:
06:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:0B:44:0D:EF:0D:82:33:F6:28:2F:9E:E3:59:9F:BC:A9:2B:E4:DE
X509v3 Authority Key Identifier:
keyid:97:C9:0E:25:21:2D:88:7C:F9:E1:DE:6F:DD:F5:51:BA:81:2F:A1:39
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/l8kOJSEtiHz54d5v3fVRuoEvoTk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/l8kOJSEtiHz54d5v3fVRuoEvoTk.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/37AC8BC6800311EF86F4F349762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.177.186.0/23
Signature Algorithm: sha256WithRSAEncryption
2b:e4:02:0f:eb:4f:c5:a7:bf:c1:30:51:88:28:8c:c5:0e:1d:
8a:2a:43:69:66:15:82:37:a5:4a:ad:41:74:ff:aa:dd:50:ad:
52:94:54:43:27:aa:10:4d:c7:9e:fb:d2:d7:48:55:9c:e5:ee:
32:82:68:a0:5b:49:41:8e:db:c8:60:8d:5a:6c:4f:3f:13:e8:
85:d6:25:4a:70:c8:67:95:f1:0e:52:00:f1:7b:27:3e:ee:0f:
7b:aa:f3:8a:99:b0:05:57:31:3b:e8:6d:b9:45:00:2e:da:0a:
16:04:77:b0:1d:66:11:15:fa:d1:a3:76:d7:af:96:c0:78:a4:
08:98:e5:e0:52:65:d0:55:62:26:16:77:fb:77:8c:4d:fb:d5:
bc:9a:a8:80:19:71:4f:52:db:ab:7b:11:3f:e3:13:98:3d:8d:
15:18:3c:6a:73:9b:c8:26:58:55:9b:07:23:7e:39:ae:91:43:
dd:e7:7c:b5:3a:0f:9b:51:e4:89:4b:84:09:42:c2:5a:96:10:
79:86:a2:6d:f7:c9:51:fb:07:23:c8:b3:87:2a:5e:4b:3c:eb:
95:01:35:4c:b7:38:57:b9:7b:a8:3e:20:01:87:e8:4d:e4:f5:
d8:8a:20:c5:c9:f7:94:73:ed:fc:a6:fd:3a:7c:57:a7:d7:1e:
77:7d:2a:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Oct 31 03:53:35 2024 by rpki-client on console-fra.rpki-client.org