Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/C6E753346F4C11EE9E4B86204AD9E6FC.roa
File: C6E753346F4C11EE9E4B86204AD9E6FC.roa (raw, json)
Hash identifier: zhnEqvV+kYIO+8HyCpeWbHUmTTdKiNnFQ4zC/IQrU6M=
Subject key identifier: 5F:C5:18:2F:96:0B:3E:25:13:3C:66:1B:8C:B1:3D:99:57:9A:E0:22
Certificate issuer: /CN=F367DFA4AF/serialNumber=97C90E25212D887CF9E1DE6FDDF551BA812FA139
Certificate serial: 0406
Authority key identifier: 97:C9:0E:25:21:2D:88:7C:F9:E1:DE:6F:DD:F5:51:BA:81:2F:A1:39
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/l8kOJSEtiHz54d5v3fVRuoEvoTk.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/C6E753346F4C11EE9E4B86204AD9E6FC.roa
Signing time: Fri 20 Oct 2023 13:30:04 +0000
ROA not before: Fri 20 Oct 2023 13:30:01 +0000
ROA not after: Mon 01 Jul 2024 13:30:01 +0000
asID: 22724
IP address blocks: 102.177.167.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1030 (0x406)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F367DFA4AF/serialNumber=97C90E25212D887CF9E1DE6FDDF551BA812FA139
Validity
Not Before: Oct 20 13:30:01 2023 GMT
Not After : Jul 1 13:30:01 2024 GMT
Subject: CN=653280dc-9135
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:4c:2a:a3:19:fb:ea:f9:6d:cf:26:1f:69:90:
24:19:03:ff:d0:70:24:12:6e:88:98:7e:41:04:94:
5a:ea:18:9c:61:b0:fe:4d:3d:68:cb:10:11:9f:e8:
09:ea:7f:ac:2f:e4:f7:7d:f0:dc:51:07:d7:ed:4c:
4b:9f:11:1f:fd:d3:12:45:ff:1d:c7:c8:c8:a9:5e:
60:d3:d7:45:c2:9b:27:87:a9:47:bc:26:42:fa:2a:
e0:f8:2a:51:e6:8c:6c:1f:5b:60:c0:36:b4:c8:5c:
dc:cc:02:aa:7e:0c:84:d5:66:40:3f:78:e2:07:c4:
49:61:b9:9b:09:cc:f9:63:b8:40:0c:f4:e4:16:1c:
7b:17:89:2a:6f:6c:80:c2:cc:26:3e:4b:e7:e0:89:
d6:fa:98:70:36:6d:4f:7f:ab:09:70:2e:21:92:63:
c8:da:ff:c6:99:16:a9:ab:b7:bf:68:15:46:b6:4f:
ad:49:74:df:dd:51:67:cb:ec:8d:e2:4c:1c:b1:94:
9a:21:2a:4c:64:02:df:88:3c:58:d1:7f:a1:5d:44:
c3:7c:42:a5:4c:75:dc:ab:ba:5d:b8:4d:ae:de:6f:
69:24:d4:a2:cc:27:a8:5f:34:8c:91:e5:a1:e9:3c:
8d:01:4b:b3:91:1d:9e:a0:09:dc:a5:34:89:4a:93:
9b:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:C5:18:2F:96:0B:3E:25:13:3C:66:1B:8C:B1:3D:99:57:9A:E0:22
X509v3 Authority Key Identifier:
keyid:97:C9:0E:25:21:2D:88:7C:F9:E1:DE:6F:DD:F5:51:BA:81:2F:A1:39
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/l8kOJSEtiHz54d5v3fVRuoEvoTk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/l8kOJSEtiHz54d5v3fVRuoEvoTk.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/C6E753346F4C11EE9E4B86204AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.177.167.0/24
Signature Algorithm: sha256WithRSAEncryption
6c:fd:fa:90:03:90:22:f8:d2:5b:33:ed:81:18:26:76:8a:dc:
1f:33:a9:41:f8:8e:f5:ae:e7:4d:3d:57:92:11:14:9d:fe:a5:
7c:09:e8:3f:dd:1b:df:b1:17:3f:1d:66:86:60:31:b7:6a:d5:
2f:f5:9b:27:97:24:e1:6f:2e:b2:49:f5:e3:52:a8:99:83:53:
59:6e:e8:ab:6a:a3:2e:f8:c7:77:78:83:d0:1a:df:3c:b5:82:
e9:b8:23:2a:08:51:7e:38:db:d5:2c:fe:d8:d1:28:aa:1d:e2:
27:3c:f2:90:62:64:ae:e9:b2:f9:00:c3:89:37:23:c3:18:4d:
a7:dd:2b:77:9c:d8:cc:31:b5:72:4f:e3:28:f9:7a:3d:e1:5d:
16:87:d6:01:9b:3c:c7:4b:b4:60:ad:f9:e7:94:80:30:6f:72:
86:ee:1b:9f:19:6f:9f:d0:a8:ce:2d:17:7f:78:0e:93:ce:d4:
50:a0:52:f1:a8:16:89:1b:84:0d:92:e2:80:92:cc:d9:dc:1d:
88:ff:f6:d8:a2:81:96:7d:58:56:be:19:78:ce:cf:28:9d:fd:
1e:09:a6:4e:95:a9:63:4e:66:9b:b0:b9:d8:10:d3:60:b3:91:
d1:82:88:d1:c3:6b:32:0a:2d:20:1f:38:18:50:6a:a9:05:cd:
cf:a5:b5:9e
-----BEGIN CERTIFICATE-----
MIIFgzCCBGugAwIBAgICBAYwDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAwwKRjM2
N0RGQTRBRjExMC8GA1UEBRMoOTdDOTBFMjUyMTJEODg3Q0Y5RTFERTZGRERGNTUx
QkE4MTJGQTEzOTAeFw0yMzEwMjAxMzMwMDFaFw0yNDA3MDExMzMwMDFaMBgxFjAU
BgNVBAMTDTY1MzI4MGRjLTkxMzUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQDfTCqjGfvq+W3PJh9pkCQZA//QcCQSboiYfkEElFrqGJxhsP5NPWjLEBGf
6Anqf6wv5Pd98NxRB9ftTEufER/90xJF/x3HyMipXmDT10XCmyeHqUe8JkL6KuD4
KlHmjGwfW2DANrTIXNzMAqp+DITVZkA/eOIHxElhuZsJzPljuEAM9OQWHHsXiSpv
bIDCzCY+S+fgidb6mHA2bU9/qwlwLiGSY8ja/8aZFqmrt79oFUa2T61JdN/dUWfL
7I3iTByxlJohKkxkAt+IPFjRf6FdRMN8QqVMddyrul24Ta7eb2kk1KLMJ6hfNIyR
5aHpPI0BS7ORHZ6gCdylNIlKk5vtAgMBAAGjggKlMIICoTAdBgNVHQ4EFgQUX8UY
L5YLPiUTPGYbjLE9mVea4CIwHwYDVR0jBBgwFoAUl8kOJSEtiHz54d5v3fVRuoEv
oTkwDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjdERkE0LzA4QjhEODIwOTNBQzExRUJCMUQyQTgzMkY4QUVBMjI4L2w4a09K
U0V0aUh6NTRkNXYzZlZSdW9Fdm9Uay5jcmwwZwYIKwYBBQUHAQEEWzBZMFcGCCsG
AQUFBzAChktyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hZnJp
bmljL2w4a09KU0V0aUh6NTRkNXYzZlZSdW9Fdm9Uay5jZXIwTwYDVR0gAQH/BEUw
QzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5p
Yy5uZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEF
BQcwC4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJl
cl9yZXBvc2l0b3J5L0YzNjdERkE0LzA4QjhEODIwOTNBQzExRUJCMUQyQTgzMkY4
QUVBMjI4L0M2RTc1MzM0NkY0QzExRUU5RTRCODYyMDRBRDlFNkZDLnJvYTA1Bggr
BgEFBQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54
bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABmsacwDQYJKoZIhvcNAQEL
BQADggEBAGz9+pADkCL40lsz7YEYJnaK3B8zqUH4jvWu5009V5IRFJ3+pXwJ6D/d
G9+xFz8dZoZgMbdq1S/1myeXJOFvLrJJ9eNSqJmDU1lu6Ktqoy74x3d4g9Aa3zy1
gum4IyoIUX4429Us/tjRKKod4ic88pBiZK7psvkAw4k3I8MYTafdK3ec2MwxtXJP
4yj5ej3hXRaH1gGbPMdLtGCt+eeUgDBvcobuG58Zb5/QqM4tF394DpPO1FCgUvGo
FokbhA2S4oCSzNncHYj/9tiigZZ9WFa+GXjOzyid/R4Jpk6VqWNOZpuwudgQ02Cz
kdGCiNHDazIKLSAfOBhQaqkFzc+ltZ4=
-----END CERTIFICATE-----
Generated at Tue Jul 2 02:55:36 2024 by rpki-client on console-fra.rpki-client.org