Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/AE7DC49E6F5711EE93867B414AD9E6FC.roa
File: AE7DC49E6F5711EE93867B414AD9E6FC.roa (raw, json)
Hash identifier: KetMXFehYh9ieirePgumt2erwanH4CFHckFZlw1pHC0=
Subject key identifier: 0B:EA:54:17:10:15:5D:A8:EC:60:9E:63:E0:06:EE:EF:35:AB:CA:35
Certificate issuer: /CN=F367DFA4AF/serialNumber=97C90E25212D887CF9E1DE6FDDF551BA812FA139
Certificate serial: 0408
Authority key identifier: 97:C9:0E:25:21:2D:88:7C:F9:E1:DE:6F:DD:F5:51:BA:81:2F:A1:39
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/l8kOJSEtiHz54d5v3fVRuoEvoTk.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/AE7DC49E6F5711EE93867B414AD9E6FC.roa
Signing time: Fri 20 Oct 2023 14:48:08 +0000
ROA not before: Fri 20 Oct 2023 14:48:04 +0000
ROA not after: Mon 01 Jul 2024 14:48:04 +0000
asID: 22724
IP address blocks: 102.177.168.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1032 (0x408)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F367DFA4AF/serialNumber=97C90E25212D887CF9E1DE6FDDF551BA812FA139
Validity
Not Before: Oct 20 14:48:04 2023 GMT
Not After : Jul 1 14:48:04 2024 GMT
Subject: CN=65329327-b4f7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:70:ae:00:b6:5c:4d:c8:ed:a9:18:57:a8:d1:
b5:47:4e:4d:77:a4:a5:3c:30:b3:1c:5b:00:22:db:
da:19:1d:cf:ed:ef:3c:9a:c1:b5:6e:6f:f7:2d:bc:
3b:cb:cb:29:09:b4:ef:43:92:ff:c6:8c:39:d6:9b:
64:d2:66:79:d9:b8:93:24:ae:b5:2f:67:c4:d6:f3:
68:ea:ed:5f:2d:48:f7:32:a0:24:7f:80:3b:39:e7:
83:eb:97:bc:27:8b:a1:c0:03:17:d0:45:c5:06:46:
3e:9d:6d:b9:01:58:da:85:e7:60:eb:ef:c0:48:5d:
88:0c:d0:0e:ea:34:90:45:f6:d0:ec:76:9b:a3:99:
6f:c6:f9:8a:7d:ae:20:78:4f:e1:2c:1a:b3:3b:9b:
39:20:53:df:62:da:f0:85:19:84:4a:93:10:08:5b:
cb:55:1b:ed:1e:ed:43:45:7b:56:db:b5:c6:ba:cc:
5f:d3:1c:ea:9a:4b:7f:7f:36:0d:1e:e8:82:fa:a0:
58:cd:32:d5:53:52:17:b8:70:4d:c5:e1:e9:6b:d1:
c0:0e:fb:ee:eb:f7:c4:12:56:a3:2d:82:cf:8c:46:
b5:ad:ff:30:5f:1d:1f:2e:c9:cd:66:a2:ec:83:69:
e1:fe:03:f1:aa:37:18:f7:56:3a:df:bd:62:8d:6c:
ef:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:EA:54:17:10:15:5D:A8:EC:60:9E:63:E0:06:EE:EF:35:AB:CA:35
X509v3 Authority Key Identifier:
keyid:97:C9:0E:25:21:2D:88:7C:F9:E1:DE:6F:DD:F5:51:BA:81:2F:A1:39
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/l8kOJSEtiHz54d5v3fVRuoEvoTk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/l8kOJSEtiHz54d5v3fVRuoEvoTk.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/AE7DC49E6F5711EE93867B414AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.177.168.0/24
Signature Algorithm: sha256WithRSAEncryption
32:05:98:bb:3b:c4:f6:f1:61:3b:8b:41:fb:a3:a0:43:53:7a:
85:e1:37:4c:b5:0f:72:78:fc:f3:d1:6b:f6:76:f1:4c:51:06:
f0:2a:28:ea:58:d7:26:79:9f:fb:28:49:43:9c:a8:31:dc:e0:
ac:9f:7e:f0:92:79:90:99:e9:4a:bd:ed:a3:22:ef:fa:d6:bd:
81:b9:20:98:49:60:c0:56:19:0a:7c:6d:d5:ec:2e:4a:1c:04:
11:1a:58:ed:17:82:aa:9d:30:7e:b9:b6:1e:a0:71:3b:75:d6:
6e:32:54:c3:27:6d:7a:10:ca:e0:80:c3:dc:1f:21:43:14:b9:
04:08:45:ed:04:d6:54:29:e7:62:08:51:0e:2c:48:d4:d4:e7:
e1:9f:ec:ef:27:6e:2a:99:11:3f:43:a5:94:4c:b7:38:3f:6f:
49:18:bb:6a:50:46:40:99:fc:05:56:ef:e4:56:e5:08:b8:bd:
09:50:a8:e6:eb:38:d2:20:d6:92:1a:65:18:11:a4:da:d2:85:
56:42:15:19:f0:bf:6d:3f:f7:cb:a6:b1:3e:f3:92:91:61:be:
35:c0:e8:0c:d7:a5:57:d5:73:cc:95:b0:94:4e:6b:df:17:9d:
41:34:5a:6b:59:be:97:9d:91:5c:22:98:72:da:aa:bd:10:3d:
b6:cc:e5:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jul 2 02:37:42 2024 by rpki-client on console-ams.rpki-client.org