Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/B0B6FA1A6F8311EE9F3612494AD9E6FC.roa
File: B0B6FA1A6F8311EE9F3612494AD9E6FC.roa (raw, json)
Hash identifier: CiMhitQZUWlPwStMytrKqZTfucIYtYhCNc4Xt1uYyqo=
Subject key identifier: 79:98:C5:BC:90:3D:07:96:D3:DE:DA:6F:9B:59:26:83:2C:EB:F8:51
Certificate issuer: /CN=F367DFA4AF/serialNumber=97C90E25212D887CF9E1DE6FDDF551BA812FA139
Certificate serial: 040A
Authority key identifier: 97:C9:0E:25:21:2D:88:7C:F9:E1:DE:6F:DD:F5:51:BA:81:2F:A1:39
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/l8kOJSEtiHz54d5v3fVRuoEvoTk.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/B0B6FA1A6F8311EE9F3612494AD9E6FC.roa
Signing time: Fri 20 Oct 2023 20:03:09 +0000
ROA not before: Fri 20 Oct 2023 20:03:05 +0000
ROA not after: Mon 01 Jul 2024 20:03:05 +0000
asID: 22724
IP address blocks: 102.177.171.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1034 (0x40a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F367DFA4AF/serialNumber=97C90E25212D887CF9E1DE6FDDF551BA812FA139
Validity
Not Before: Oct 20 20:03:05 2023 GMT
Not After : Jul 1 20:03:05 2024 GMT
Subject: CN=6532dcfd-8e03
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:38:e3:55:69:ae:5a:f8:1d:11:d9:a9:41:4f:
34:f2:de:b2:b7:c5:a2:f9:c3:29:53:8c:60:3f:09:
2e:f7:c3:e2:40:03:19:42:37:da:3e:19:e1:03:66:
d6:e0:ef:d5:8e:a2:22:61:95:ca:a3:97:7c:7c:c7:
cc:59:b8:26:81:59:66:9b:7a:9d:03:73:a0:3a:74:
ce:10:ab:ea:8c:03:47:0d:a8:0f:33:3c:20:bd:60:
a4:36:c4:3f:17:19:65:1c:51:0b:db:b5:82:90:da:
d0:ad:30:d0:9b:bd:fb:c2:2c:d3:90:2f:fe:f1:16:
f2:de:12:ba:fc:cd:ec:4e:03:90:b2:b9:6e:e8:b0:
20:7b:d6:0b:72:c2:1f:58:3f:20:bf:e9:fa:e9:04:
7f:e6:46:d5:32:b5:0b:3b:ec:d5:e0:35:a9:38:79:
c1:32:61:02:97:35:cd:9f:c2:da:ae:e2:0f:2b:5c:
f7:78:da:96:e4:e9:fb:1d:e8:71:6a:c6:06:4b:01:
9a:19:a4:83:0d:97:90:80:03:ca:1a:82:f0:d0:28:
fb:4f:90:90:78:10:c8:6e:8e:a5:d2:3e:2a:93:45:
8b:23:9b:d5:72:60:64:dc:e7:44:78:e3:0d:23:3d:
79:d5:4a:a9:fe:99:6b:fd:21:2d:e2:6d:d0:51:54:
3e:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:98:C5:BC:90:3D:07:96:D3:DE:DA:6F:9B:59:26:83:2C:EB:F8:51
X509v3 Authority Key Identifier:
keyid:97:C9:0E:25:21:2D:88:7C:F9:E1:DE:6F:DD:F5:51:BA:81:2F:A1:39
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/l8kOJSEtiHz54d5v3fVRuoEvoTk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/l8kOJSEtiHz54d5v3fVRuoEvoTk.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/B0B6FA1A6F8311EE9F3612494AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.177.171.0/24
Signature Algorithm: sha256WithRSAEncryption
0a:70:05:b3:a3:ae:b1:25:81:65:71:6f:e2:04:23:88:16:5a:
71:52:31:11:31:31:a1:4b:42:56:28:fc:1f:89:98:98:32:c9:
a0:5e:ca:14:47:18:dc:3a:0b:d7:59:fa:98:a8:2d:f1:11:f1:
6d:1e:07:7e:59:f8:44:f8:94:74:36:31:b1:02:17:a7:8c:12:
12:57:d3:4e:44:bf:44:cd:16:1c:cf:36:b3:25:13:c3:49:e5:
25:9e:17:ba:60:c1:3c:26:aa:4f:5d:5b:27:d9:21:2e:3a:94:
5c:14:0d:14:24:be:0d:12:ea:91:3b:1b:43:eb:2d:e2:0d:06:
ee:6b:ca:39:0a:70:82:c7:bd:04:3c:2a:e2:65:b6:06:3c:50:
65:99:02:98:a2:45:74:d9:e7:b3:03:74:99:de:ce:3c:9d:b6:
e0:f4:83:9f:8b:b9:01:91:bc:24:ce:bd:60:6f:40:2e:82:4a:
cc:91:97:db:8d:1f:cf:47:f2:af:37:fe:ab:a9:db:cc:6a:fa:
27:96:f1:54:47:c6:0a:f3:22:61:aa:0b:2f:f4:0f:eb:81:0e:
c1:77:d7:8a:63:82:c6:78:2c:f9:ea:ef:d2:3f:34:88:61:e1:
f0:90:52:da:73:61:0a:67:be:54:d5:0f:20:80:9a:a0:d2:7e:
f1:d7:26:60
-----BEGIN CERTIFICATE-----
MIIFgzCCBGugAwIBAgICBAowDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAwwKRjM2
N0RGQTRBRjExMC8GA1UEBRMoOTdDOTBFMjUyMTJEODg3Q0Y5RTFERTZGRERGNTUx
QkE4MTJGQTEzOTAeFw0yMzEwMjAyMDAzMDVaFw0yNDA3MDEyMDAzMDVaMBgxFjAU
BgNVBAMTDTY1MzJkY2ZkLThlMDMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQCvOONVaa5a+B0R2alBTzTy3rK3xaL5wylTjGA/CS73w+JAAxlCN9o+GeED
Ztbg79WOoiJhlcqjl3x8x8xZuCaBWWabep0Dc6A6dM4Qq+qMA0cNqA8zPCC9YKQ2
xD8XGWUcUQvbtYKQ2tCtMNCbvfvCLNOQL/7xFvLeErr8zexOA5CyuW7osCB71gty
wh9YPyC/6frpBH/mRtUytQs77NXgNak4ecEyYQKXNc2fwtqu4g8rXPd42pbk6fsd
6HFqxgZLAZoZpIMNl5CAA8oagvDQKPtPkJB4EMhujqXSPiqTRYsjm9VyYGTc50R4
4w0jPXnVSqn+mWv9IS3ibdBRVD67AgMBAAGjggKlMIICoTAdBgNVHQ4EFgQUeZjF
vJA9B5bT3tpvm1kmgyzr+FEwHwYDVR0jBBgwFoAUl8kOJSEtiHz54d5v3fVRuoEv
oTkwDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjdERkE0LzA4QjhEODIwOTNBQzExRUJCMUQyQTgzMkY4QUVBMjI4L2w4a09K
U0V0aUh6NTRkNXYzZlZSdW9Fdm9Uay5jcmwwZwYIKwYBBQUHAQEEWzBZMFcGCCsG
AQUFBzAChktyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hZnJp
bmljL2w4a09KU0V0aUh6NTRkNXYzZlZSdW9Fdm9Uay5jZXIwTwYDVR0gAQH/BEUw
QzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5p
Yy5uZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEF
BQcwC4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJl
cl9yZXBvc2l0b3J5L0YzNjdERkE0LzA4QjhEODIwOTNBQzExRUJCMUQyQTgzMkY4
QUVBMjI4L0IwQjZGQTFBNkY4MzExRUU5RjM2MTI0OTRBRDlFNkZDLnJvYTA1Bggr
BgEFBQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54
bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABmsaswDQYJKoZIhvcNAQEL
BQADggEBAApwBbOjrrElgWVxb+IEI4gWWnFSMRExMaFLQlYo/B+JmJgyyaBeyhRH
GNw6C9dZ+pioLfER8W0eB35Z+ET4lHQ2MbECF6eMEhJX005Ev0TNFhzPNrMlE8NJ
5SWeF7pgwTwmqk9dWyfZIS46lFwUDRQkvg0S6pE7G0PrLeINBu5ryjkKcILHvQQ8
KuJltgY8UGWZApiiRXTZ57MDdJnezjydtuD0g5+LuQGRvCTOvWBvQC6CSsyRl9uN
H89H8q83/qup28xq+ieW8VRHxgrzImGqCy/0D+uBDsF314pjgsZ4LPnq79I/NIhh
4fCQUtpzYQpnvlTVDyCAmqDSfvHXJmA=
-----END CERTIFICATE-----
Generated at Tue Jul 2 02:37:42 2024 by rpki-client on console-ams.rpki-client.org