Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/DFC858C85F8111EFAF652C7B762E951A.roa
File: DFC858C85F8111EFAF652C7B762E951A.roa (raw, json)
Hash identifier: fagRPP19c7XZ2gbkKaPngWRhNByDhfz2UrahgZiSpYA=
Subject key identifier: 8F:2A:3E:6B:A1:5A:85:04:00:EE:A8:C5:A6:E5:67:A1:03:34:37:52
Certificate issuer: /CN=F367DFA4AF/serialNumber=97C90E25212D887CF9E1DE6FDDF551BA812FA139
Certificate serial: 059B
Authority key identifier: 97:C9:0E:25:21:2D:88:7C:F9:E1:DE:6F:DD:F5:51:BA:81:2F:A1:39
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/l8kOJSEtiHz54d5v3fVRuoEvoTk.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/DFC858C85F8111EFAF652C7B762E951A.roa
Signing time: Wed 21 Aug 2024 05:54:48 +0000
ROA not before: Wed 21 Aug 2024 05:54:45 +0000
ROA not after: Fri 30 Aug 2024 05:54:45 +0000
asID: 9304
IP address blocks: 102.177.186.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1435 (0x59b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F367DFA4AF/serialNumber=97C90E25212D887CF9E1DE6FDDF551BA812FA139
Validity
Not Before: Aug 21 05:54:45 2024 GMT
Not After : Aug 30 05:54:45 2024 GMT
Subject: CN=66c58128-bc1f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:3b:cf:c8:98:d2:19:73:61:1c:64:07:0c:f9:
9c:2b:39:ef:c8:a5:b4:7b:5c:22:0e:82:e3:bd:77:
65:a9:74:d7:34:bc:95:7f:93:47:d5:99:27:b7:4b:
f0:d2:fa:3a:59:94:92:54:f0:7d:43:38:ae:96:25:
59:a6:0e:86:73:d5:6d:3a:d2:d1:71:34:a9:1f:ed:
4a:49:95:c2:f8:cb:28:e1:7c:8f:e8:45:06:fa:37:
9e:7e:3e:40:85:bb:29:ec:ec:f8:39:1f:39:92:6d:
93:6c:45:59:80:e3:9a:47:97:b3:80:95:f8:19:9e:
36:00:68:9c:85:fd:84:5c:f3:95:71:62:fa:ae:f4:
52:2d:25:61:be:43:34:b5:03:95:11:e6:23:e3:72:
2b:50:21:f5:fa:3b:29:46:af:89:03:ce:26:07:48:
b4:db:e1:dd:98:61:7e:04:e0:2b:db:3b:7f:b2:42:
0c:62:fe:8e:9a:59:fb:44:bb:4c:5f:9f:0c:db:0c:
18:87:74:7b:04:45:ee:4b:ed:1a:66:3c:47:7a:3f:
6c:bc:e3:2f:0c:53:f2:27:87:3b:0f:89:48:2c:fb:
6f:e8:1e:47:55:a8:e6:59:2e:be:cd:39:97:53:ba:
42:ba:51:2a:ca:ef:4f:64:73:fc:b6:1f:ed:31:fa:
e1:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:2A:3E:6B:A1:5A:85:04:00:EE:A8:C5:A6:E5:67:A1:03:34:37:52
X509v3 Authority Key Identifier:
keyid:97:C9:0E:25:21:2D:88:7C:F9:E1:DE:6F:DD:F5:51:BA:81:2F:A1:39
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/l8kOJSEtiHz54d5v3fVRuoEvoTk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/l8kOJSEtiHz54d5v3fVRuoEvoTk.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/DFC858C85F8111EFAF652C7B762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.177.186.0/23
Signature Algorithm: sha256WithRSAEncryption
7d:9b:f3:f7:f6:cf:65:78:7c:6b:e8:69:65:e6:6a:e6:00:2e:
3a:90:bb:60:70:6c:10:61:8c:49:53:82:ba:dc:29:40:20:a1:
55:67:f1:e6:c1:a1:b2:4f:1b:ee:18:25:6f:c7:9c:eb:46:88:
7e:e9:51:1e:b2:a5:97:f9:3b:7e:59:e4:b3:3e:0f:24:11:60:
9f:82:51:f8:59:c3:dc:7d:5e:25:d9:3f:db:a5:ff:76:b0:61:
a0:db:0c:f2:b7:ce:3c:6e:2a:ac:97:94:67:b0:c6:e1:f2:c7:
2a:7c:49:4f:92:da:78:48:24:93:8e:3d:69:4a:a5:cf:0e:ce:
e2:cc:fb:f1:e1:b1:61:1e:7e:38:09:a9:35:60:8b:c1:de:7b:
95:1a:5f:0a:27:9a:be:3a:14:fb:17:37:da:8a:53:36:81:77:
a0:47:dd:2e:eb:1e:5b:e8:53:b9:7e:22:cf:59:fc:49:ba:fe:
36:3f:e9:33:20:5e:bd:c4:4c:24:04:8a:1a:87:e6:c6:33:be:
67:39:33:d4:9e:d0:2b:d6:af:d4:d1:0f:76:c5:a8:77:84:69:
8c:8a:bc:cc:7b:73:4e:07:18:42:de:dd:73:54:b2:21:bf:f2:
f7:5e:c9:f0:91:c2:a9:c3:50:88:9d:bf:3d:51:b1:64:0e:a0:
3c:2b:b1:1f
-----BEGIN CERTIFICATE-----
MIIFgzCCBGugAwIBAgICBZswDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAxMKRjM2
N0RGQTRBRjExMC8GA1UEBRMoOTdDOTBFMjUyMTJEODg3Q0Y5RTFERTZGRERGNTUx
QkE4MTJGQTEzOTAeFw0yNDA4MjEwNTU0NDVaFw0yNDA4MzAwNTU0NDVaMBgxFjAU
BgNVBAMTDTY2YzU4MTI4LWJjMWYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQClO8/ImNIZc2EcZAcM+ZwrOe/IpbR7XCIOguO9d2WpdNc0vJV/k0fVmSe3
S/DS+jpZlJJU8H1DOK6WJVmmDoZz1W060tFxNKkf7UpJlcL4yyjhfI/oRQb6N55+
PkCFuyns7Pg5HzmSbZNsRVmA45pHl7OAlfgZnjYAaJyF/YRc85VxYvqu9FItJWG+
QzS1A5UR5iPjcitQIfX6OylGr4kDziYHSLTb4d2YYX4E4CvbO3+yQgxi/o6aWftE
u0xfnwzbDBiHdHsERe5L7RpmPEd6P2y84y8MU/InhzsPiUgs+2/oHkdVqOZZLr7N
OZdTukK6USrK709kc/y2H+0x+uE5AgMBAAGjggKlMIICoTAdBgNVHQ4EFgQUjyo+
a6FahQQA7qjFpuVnoQM0N1IwHwYDVR0jBBgwFoAUl8kOJSEtiHz54d5v3fVRuoEv
oTkwDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjdERkE0LzA4QjhEODIwOTNBQzExRUJCMUQyQTgzMkY4QUVBMjI4L2w4a09K
U0V0aUh6NTRkNXYzZlZSdW9Fdm9Uay5jcmwwZwYIKwYBBQUHAQEEWzBZMFcGCCsG
AQUFBzAChktyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hZnJp
bmljL2w4a09KU0V0aUh6NTRkNXYzZlZSdW9Fdm9Uay5jZXIwTwYDVR0gAQH/BEUw
QzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5p
Yy5uZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEF
BQcwC4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJl
cl9yZXBvc2l0b3J5L0YzNjdERkE0LzA4QjhEODIwOTNBQzExRUJCMUQyQTgzMkY4
QUVBMjI4L0RGQzg1OEM4NUY4MTExRUZBRjY1MkM3Qjc2MkU5NTFBLnJvYTA1Bggr
BgEFBQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54
bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFmsbowDQYJKoZIhvcNAQEL
BQADggEBAH2b8/f2z2V4fGvoaWXmauYALjqQu2BwbBBhjElTgrrcKUAgoVVn8ebB
obJPG+4YJW/HnOtGiH7pUR6ypZf5O35Z5LM+DyQRYJ+CUfhZw9x9XiXZP9ul/3aw
YaDbDPK3zjxuKqyXlGewxuHyxyp8SU+S2nhIJJOOPWlKpc8OzuLM+/HhsWEefjgJ
qTVgi8Hee5UaXwonmr46FPsXN9qKUzaBd6BH3S7rHlvoU7l+Is9Z/Em6/jY/6TMg
Xr3ETCQEihqH5sYzvmc5M9Se0CvWr9TRD3bFqHeEaYyKvMx7c04HGELe3XNUsiG/
8vdeyfCRwqnDUIidvz1RsWQOoDwrsR8=
-----END CERTIFICATE-----
Generated at Sat Aug 31 04:11:56 2024 by rpki-client on console-ams.rpki-client.org