Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/96C0ED26D5B311EB941CB06FF8AEA228.roa
File: 96C0ED26D5B311EB941CB06FF8AEA228.roa (raw, json)
Hash identifier: pb469WvSyeojk6wRlFsae8tpzZhWIe6UL615KdRTl7o=
Subject key identifier: 99:B9:1F:73:85:6B:94:A1:BA:42:3C:CF:40:74:0C:5B:C5:A9:FD:34
Certificate issuer: /CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Certificate serial: 05CD
Authority key identifier: 09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/96C0ED26D5B311EB941CB06FF8AEA228.roa
Signing time: Fri 25 Jun 2021 12:48:07 +0000
ROA not before: Fri 25 Jun 2021 12:48:02 +0000
ROA not after: Sun 25 Jun 2023 12:48:02 +0000
asID: 61317
IP address blocks: 2c0f:f738:3800::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1485 (0x5cd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Validity
Not Before: Jun 25 12:48:02 2021 GMT
Not After : Jun 25 12:48:02 2023 GMT
Subject: CN=60d5d087-8d94
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:31:c7:2d:0d:b2:f3:82:b3:91:18:5e:79:16:
32:e5:c1:bb:b2:00:90:0e:12:c6:61:c6:1c:31:dc:
7d:71:65:d8:31:ca:df:3d:f3:75:8f:88:e4:66:a9:
f9:a5:4b:94:bd:98:bd:f6:eb:be:e2:4d:33:93:4d:
55:b9:39:93:cf:4e:85:7e:85:3f:09:45:fb:a3:6a:
b0:96:a4:46:6c:db:3c:ec:f1:3e:80:31:61:84:79:
01:87:ac:df:ee:11:ed:d0:f3:cb:bc:9a:2f:2d:9f:
b2:bb:52:65:28:4a:9d:d7:16:66:87:d4:e7:14:ef:
23:57:d4:99:df:4a:a6:f6:48:b2:3f:9a:b8:95:a6:
b6:5c:8b:46:0f:5d:f6:f6:d5:8b:a5:1c:0e:b1:63:
71:78:88:0b:7e:c2:c5:6b:2f:f2:4d:81:7e:91:b1:
ed:a9:0e:37:fe:c2:b6:3c:77:9f:4e:d7:d2:04:58:
49:b1:56:b7:22:6d:65:69:3c:4a:96:74:cb:07:55:
8f:56:73:f5:32:05:9d:54:da:c3:c2:20:51:68:42:
87:89:66:a5:91:6d:a1:17:71:8a:51:fc:67:4f:23:
9a:6f:0a:29:59:2c:f7:36:50:f2:aa:ff:0e:26:70:
39:2d:10:7a:6b:93:69:a3:0d:a1:f7:14:af:5c:87:
70:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:B9:1F:73:85:6B:94:A1:BA:42:3C:CF:40:74:0C:5B:C5:A9:FD:34
X509v3 Authority Key Identifier:
keyid:09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/96C0ED26D5B311EB941CB06FF8AEA228.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2c0f:f738:3800::/48
Signature Algorithm: sha256WithRSAEncryption
19:ac:72:a6:33:7e:d9:ba:9a:7f:be:93:17:65:c0:ad:8d:84:
f9:72:12:9d:0d:32:01:cb:97:4d:d3:63:69:64:b9:a2:9e:bf:
ec:7b:5c:a1:2a:ce:ee:39:af:32:7f:0e:fb:e9:99:c4:7a:cc:
fc:76:aa:f8:1a:39:94:b0:72:58:c7:da:79:a6:22:85:6f:aa:
a5:a0:54:7e:43:2d:b9:62:de:f5:47:1c:c8:c7:5b:d6:c8:58:
12:74:49:7d:56:08:29:da:20:ff:93:c5:33:cd:3c:a8:3e:82:
c7:54:77:d6:82:cd:12:ae:f2:ed:4c:b6:71:a8:f5:d1:8b:82:
30:55:af:19:fa:cd:af:b2:0c:0e:b8:68:a3:2e:b3:e4:19:f7:
d5:a4:03:2f:77:65:9e:29:4c:a4:9b:06:1f:a3:91:92:56:95:
4d:e0:cf:7d:7e:b6:bc:d6:a3:d8:8c:5d:25:96:c8:d0:08:fa:
f6:1f:6f:81:50:bd:ba:56:30:bb:0d:90:78:1d:18:61:d5:20:
eb:c6:38:a0:79:50:6f:39:7a:f6:a0:09:ff:a8:02:c2:fc:4a:
f3:2b:7c:f3:d1:09:01:6d:7f:68:f1:eb:26:f7:22:1f:67:2a:
83:ae:a1:1f:ad:04:92:5b:aa:f3:01:b7:1a:40:61:8f:c9:31:
3c:fd:04:2c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:21:58 2023 by rpki-client on console-ams.rpki-client.org