Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/477DB53C6F8511EEBEA9EC4D4AD9E6FC.roa
File: 477DB53C6F8511EEBEA9EC4D4AD9E6FC.roa (raw, json)
Hash identifier: MtXFYuCxwuGNISDTqcZO/MWrD1d8Xn99IoaVC83Yfuo=
Subject key identifier: 83:91:7C:92:BD:F6:80:CE:CB:9D:41:16:C9:DF:62:8D:0D:C4:D7:62
Certificate issuer: /CN=F367DFA4AF/serialNumber=97C90E25212D887CF9E1DE6FDDF551BA812FA139
Certificate serial: 0412
Authority key identifier: 97:C9:0E:25:21:2D:88:7C:F9:E1:DE:6F:DD:F5:51:BA:81:2F:A1:39
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/l8kOJSEtiHz54d5v3fVRuoEvoTk.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/477DB53C6F8511EEBEA9EC4D4AD9E6FC.roa
Signing time: Fri 20 Oct 2023 20:14:32 +0000
ROA not before: Fri 20 Oct 2023 20:14:28 +0000
ROA not after: Tue 30 Apr 2024 20:14:28 +0000
asID: 21682
IP address blocks: 102.177.186.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1042 (0x412)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F367DFA4AF/serialNumber=97C90E25212D887CF9E1DE6FDDF551BA812FA139
Validity
Not Before: Oct 20 20:14:28 2023 GMT
Not After : Apr 30 20:14:28 2024 GMT
Subject: CN=6532dfa7-3c46
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:f5:97:cc:b0:26:32:57:c5:e6:42:20:e7:89:
90:99:a7:f4:77:09:56:dc:6e:8e:c6:8b:e6:1d:87:
be:37:88:e6:14:b5:2b:b1:67:9e:45:00:8d:6d:99:
7a:6d:f9:6c:fc:53:40:2a:b2:16:7c:f5:53:af:88:
27:df:35:63:f2:58:1e:ba:06:6d:cb:a2:90:24:94:
94:3a:61:2a:5b:b8:ab:fe:3b:e6:01:63:96:11:0c:
44:d8:88:e8:9a:f3:48:24:66:f0:06:24:80:78:d1:
c3:e7:5d:62:80:93:93:e1:13:f0:eb:01:5e:5d:7b:
5b:e0:fc:10:e7:e4:26:16:cb:41:76:d6:94:63:54:
9c:a4:da:35:61:11:65:77:b2:d3:0a:be:24:a9:b6:
8e:2a:8d:5e:eb:3f:bf:2a:ff:77:c2:0b:c9:9a:34:
e3:6d:23:8a:44:82:19:58:9f:88:31:73:d6:8d:ef:
06:0c:f7:28:d4:23:1d:26:54:a6:11:5d:1b:75:53:
a9:1d:9c:ed:60:d4:5e:ca:d0:09:0c:6c:67:97:69:
5e:4f:d7:44:6d:f2:4f:db:0e:7b:ca:2e:38:9c:dc:
c4:53:d9:c2:cb:b5:54:27:6f:03:2a:13:3e:ac:76:
86:f8:1d:a1:58:44:39:01:83:2f:b1:cc:fd:15:d5:
3d:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:91:7C:92:BD:F6:80:CE:CB:9D:41:16:C9:DF:62:8D:0D:C4:D7:62
X509v3 Authority Key Identifier:
keyid:97:C9:0E:25:21:2D:88:7C:F9:E1:DE:6F:DD:F5:51:BA:81:2F:A1:39
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/l8kOJSEtiHz54d5v3fVRuoEvoTk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/l8kOJSEtiHz54d5v3fVRuoEvoTk.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/477DB53C6F8511EEBEA9EC4D4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.177.186.0/23
Signature Algorithm: sha256WithRSAEncryption
ae:f2:a0:ce:01:ec:22:ad:c3:e4:6b:2d:bb:4c:9b:37:c2:a4:
48:a3:44:6c:3d:54:70:3b:07:37:d5:5c:ab:80:18:9a:ab:44:
bb:7f:ca:17:0a:ec:74:53:85:20:d5:16:d3:18:3a:be:34:73:
64:95:25:5c:d2:5a:e6:21:11:5d:f6:ef:ec:90:75:ce:fc:89:
c5:10:4f:24:3e:fb:30:07:3b:a4:c2:79:ab:1d:01:3b:9a:89:
bd:26:bb:69:ae:7f:bb:44:85:80:44:d5:99:90:f1:9f:59:bd:
59:68:b2:fd:bb:38:3c:d4:62:64:88:6d:53:92:67:88:05:2e:
f1:67:5f:be:58:5b:69:23:54:43:26:11:7c:cb:95:33:01:9f:
c0:0d:98:98:2e:5f:ea:ea:f0:a5:25:9c:43:32:4a:5d:bd:f1:
b3:bd:e9:78:ed:e8:bf:e9:da:17:f0:02:b6:ff:f5:22:87:1f:
3e:11:52:0b:e7:ec:c3:f4:77:6a:f6:e4:d7:0b:46:d8:19:f6:
bb:5d:23:95:03:46:42:10:3e:85:f1:7e:f2:f9:dc:b9:79:99:
db:d9:f8:41:aa:09:ee:db:ac:00:7a:18:b7:53:53:74:bf:66:
11:31:2c:13:24:63:a6:38:30:b3:b4:26:00:0d:df:93:84:f7:
4e:33:4a:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 1 02:40:36 2024 by rpki-client on console-fra.rpki-client.org