Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/7021F232D5B311EBAF3C656FF8AEA228.roa
File: 7021F232D5B311EBAF3C656FF8AEA228.roa (raw, json)
Hash identifier: 8qZNEdezIT6gbB+Q9Ehl1M64XUxwGg0oHXLrs3luFco=
Subject key identifier: 23:C0:56:DB:8A:9B:82:83:31:99:72:F7:AC:13:E0:AB:41:02:3B:DB
Certificate issuer: /CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Certificate serial: 05CB
Authority key identifier: 09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/7021F232D5B311EBAF3C656FF8AEA228.roa
Signing time: Fri 25 Jun 2021 12:47:02 +0000
ROA not before: Fri 25 Jun 2021 12:46:58 +0000
ROA not after: Sun 25 Jun 2023 12:46:58 +0000
asID: 61317
IP address blocks: 2c0f:f738:2201::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1483 (0x5cb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Validity
Not Before: Jun 25 12:46:58 2021 GMT
Not After : Jun 25 12:46:58 2023 GMT
Subject: CN=60d5d046-0b6e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:d9:70:db:16:6d:b1:56:c8:7c:b5:09:06:37:
9c:82:a2:7e:d7:a7:1b:07:66:49:53:bb:de:f5:8a:
2e:2c:7d:a3:c5:7b:a9:5a:02:ac:80:07:5c:1f:8d:
df:f7:5c:46:46:75:97:84:93:2b:05:ba:2c:7a:0d:
3f:da:74:90:07:12:4a:c9:19:80:4c:c1:ec:69:b0:
be:1a:00:f2:15:d9:37:0e:e7:a3:a7:01:23:02:59:
00:e4:8d:c4:98:78:ae:e4:be:66:a3:0e:bf:82:08:
c4:59:a9:1d:59:45:23:f4:09:c7:1f:bc:75:69:7c:
13:91:8e:47:37:8e:66:66:89:42:86:50:00:f5:b3:
fb:1e:47:18:3b:d6:dd:83:79:d5:57:59:d4:59:aa:
1c:f1:1b:e8:77:23:62:1e:ec:7f:ac:2d:48:20:3d:
bd:e3:e5:b0:f4:37:8d:27:86:ef:8e:e4:f9:bb:0c:
ea:ae:bd:16:ce:39:94:fc:c0:53:8c:a6:5b:d0:73:
78:15:f8:dc:8d:f9:a3:e3:00:aa:7f:a7:54:0d:b1:
fe:90:62:2c:95:63:26:a0:07:38:12:1b:c0:cb:8f:
a5:3a:c3:4d:b5:5b:f6:d8:d4:f4:b3:03:ef:6f:7f:
6a:5e:8e:5e:35:57:f2:a2:60:41:20:fc:5e:8e:85:
33:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:C0:56:DB:8A:9B:82:83:31:99:72:F7:AC:13:E0:AB:41:02:3B:DB
X509v3 Authority Key Identifier:
keyid:09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/7021F232D5B311EBAF3C656FF8AEA228.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2c0f:f738:2201::/48
Signature Algorithm: sha256WithRSAEncryption
af:73:d3:ce:f4:d1:55:a0:e9:06:93:82:56:ce:34:7f:53:b0:
0e:3a:ae:e6:24:49:d4:a5:8c:e7:a2:bc:37:ea:8b:81:5d:f9:
ff:00:85:59:44:be:a1:60:e6:ad:1f:d9:76:86:a3:30:86:20:
5a:a1:65:0a:58:35:d3:8d:f5:f4:61:25:78:ac:49:3e:6b:bb:
cc:36:ee:41:2f:c2:58:9d:01:aa:a4:9d:e4:99:4d:48:63:f9:
a4:14:a9:f1:4d:4e:a1:75:90:5c:93:e0:47:da:5c:05:91:52:
ad:8b:e2:a3:c2:bf:78:d3:49:61:66:79:f3:67:76:87:39:42:
7a:61:40:8c:77:9f:73:b0:54:8b:7d:ea:82:a2:c6:c5:b9:b3:
dd:33:17:b3:e7:64:aa:a4:f6:a2:e4:c6:15:de:b8:db:95:d8:
ea:a0:12:98:16:a4:05:45:e1:1d:a9:ac:43:c2:35:c7:77:d1:
05:96:06:05:e1:f1:2c:b4:5c:14:05:a0:50:eb:2f:c4:46:af:
5a:ed:7d:eb:8e:42:79:e2:04:87:05:5f:51:09:20:40:cb:f7:
a3:a8:c4:db:02:dc:58:a5:9f:6a:63:7a:b9:8b:5c:a0:d7:6e:
75:00:13:08:9d:5f:da:95:b9:d2:ac:2a:bb:d5:b4:31:ec:f9:
2d:0c:c0:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:21:58 2023 by rpki-client on console-ams.rpki-client.org