Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/6BA21CB06F8411EE96DF694B4AD9E6FC.roa
File: 6BA21CB06F8411EE96DF694B4AD9E6FC.roa (raw, json)
Hash identifier: idCa5r7MaKRmfPn78VhpZX2wZ1c1mlFHq8LJDwL7dZc=
Subject key identifier: B1:E7:FE:74:A0:FB:73:5B:84:76:34:92:87:6A:1B:97:0F:11:FF:A3
Certificate issuer: /CN=F367DFA4AF/serialNumber=97C90E25212D887CF9E1DE6FDDF551BA812FA139
Certificate serial: 0410
Authority key identifier: 97:C9:0E:25:21:2D:88:7C:F9:E1:DE:6F:DD:F5:51:BA:81:2F:A1:39
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/l8kOJSEtiHz54d5v3fVRuoEvoTk.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/6BA21CB06F8411EE96DF694B4AD9E6FC.roa
Signing time: Fri 20 Oct 2023 20:08:23 +0000
ROA not before: Fri 20 Oct 2023 20:08:20 +0000
ROA not after: Tue 21 Nov 2023 20:08:20 +0000
asID: 200113
IP address blocks: 102.177.184.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1040 (0x410)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F367DFA4AF/serialNumber=97C90E25212D887CF9E1DE6FDDF551BA812FA139
Validity
Not Before: Oct 20 20:08:20 2023 GMT
Not After : Nov 21 20:08:20 2023 GMT
Subject: CN=6532de37-7dc1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:cc:2f:ca:1e:29:63:80:71:eb:90:40:39:26:
e0:ee:b6:4a:36:1b:24:40:a8:66:1b:40:d6:5b:d5:
89:b6:2d:8e:22:a2:2b:e8:cf:a6:c3:c3:27:51:57:
29:4c:2c:6d:59:c8:25:b6:d3:32:11:bd:66:94:51:
72:2d:54:02:c2:08:85:34:68:43:7e:5f:5d:31:3b:
f3:29:43:c0:3d:3d:fe:51:fc:80:cd:8b:24:b4:e2:
df:6b:bb:5d:8b:9f:4f:9e:61:ff:49:e1:ff:25:b4:
f6:f5:f5:43:05:b8:9a:d8:9e:c8:02:62:3d:70:e8:
d2:d1:1c:97:71:e7:d1:71:10:2b:80:71:41:38:8d:
a3:be:28:1c:ab:63:7c:29:2f:5a:8f:35:96:69:70:
26:52:b3:36:43:7a:12:c1:3d:23:4b:d6:2c:7c:f4:
96:23:61:b6:99:2c:ec:fa:63:83:5c:24:2a:ad:b6:
c0:71:fd:4a:63:fa:d6:1e:81:12:71:4a:aa:9f:3f:
7d:89:bf:16:64:42:f9:d7:c6:21:b8:50:9b:9b:8a:
97:86:2e:28:5d:c1:8a:da:84:0e:56:9f:07:44:a1:
a6:e4:f8:bd:2b:74:a1:8e:a4:61:82:e8:a2:e1:31:
ab:a8:43:bb:cd:5b:18:e8:8a:25:60:14:b0:af:31:
56:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:E7:FE:74:A0:FB:73:5B:84:76:34:92:87:6A:1B:97:0F:11:FF:A3
X509v3 Authority Key Identifier:
keyid:97:C9:0E:25:21:2D:88:7C:F9:E1:DE:6F:DD:F5:51:BA:81:2F:A1:39
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/l8kOJSEtiHz54d5v3fVRuoEvoTk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/l8kOJSEtiHz54d5v3fVRuoEvoTk.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/6BA21CB06F8411EE96DF694B4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.177.184.0/24
Signature Algorithm: sha256WithRSAEncryption
35:3d:3b:fe:9b:26:0e:35:c2:3c:90:54:2f:a7:45:b7:45:68:
bb:b3:ad:d0:4f:4a:38:b3:8e:4b:8f:36:02:b5:c4:ca:0c:57:
8a:58:e6:81:03:6f:95:0f:70:36:59:47:fa:51:32:1a:69:84:
b8:0f:34:dc:21:30:84:66:16:19:d6:50:74:49:5a:bf:01:8f:
f9:b7:a7:99:a3:b7:8e:7a:7c:51:7e:89:16:d0:de:1c:80:6c:
4f:e2:00:25:75:2f:74:13:e2:a7:95:40:d8:05:25:f8:bc:06:
d7:33:a8:63:86:dc:53:e0:fc:ff:58:f3:61:12:8b:20:19:a0:
7e:0a:02:43:35:cd:8e:7d:c0:64:14:f2:3f:46:d6:5d:30:0c:
15:9e:20:9d:70:89:19:de:91:5d:dd:ef:9e:cc:7a:53:0d:86:
a4:fd:c9:68:dc:8e:de:7a:90:ba:0d:55:9f:09:ed:96:7c:1c:
d0:16:3c:81:1f:f1:da:9e:cc:7a:f1:22:04:b2:70:b0:68:82:
07:29:08:f6:12:24:20:ee:da:d5:b2:22:49:c6:c2:aa:ff:7a:
ed:c9:92:dc:e4:2a:a4:cc:72:6f:32:ae:c2:c3:54:a0:53:bf:
73:f6:e0:17:7a:9f:4c:f9:2b:77:2d:8c:7d:97:88:d5:71:69:
bc:02:46:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 22 02:20:44 2023 by rpki-client on console-ams.rpki-client.org