Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368B07F/9A1299DEB9C411E78B59C061F8AEA228/326B218A412511EA9CA3F039F8AEA228.roa
File: 326B218A412511EA9CA3F039F8AEA228.roa (raw, json)
Hash identifier: igeE0Es87aAirZHbwxMqTNol2SufPRjZ4c8PWqooOAI=
Subject key identifier: 40:03:44:02:1D:01:FC:ED:20:47:8D:5D:18:A0:C6:64:B3:F6:8D:12
Certificate issuer: /CN=F368B07FAF/serialNumber=78825B2BC908A40FEF62B26482D61A98575FCBD3
Certificate serial: 034A
Authority key identifier: 78:82:5B:2B:C9:08:A4:0F:EF:62:B2:64:82:D6:1A:98:57:5F:CB:D3
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/eIJbK8kIpA_vYrJkgtYamFdfy9M.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368B07F/9A1299DEB9C411E78B59C061F8AEA228/326B218A412511EA9CA3F039F8AEA228.roa
Signing time: Mon 27 Jan 2020 16:51:02 +0000
ROA not before: Mon 27 Jan 2020 16:50:51 +0000
ROA not after: Mon 31 Jan 2022 16:50:51 +0000
asID: 37314
IP address blocks: 41.79.20.0/22 maxlen: 24
154.119.64.0/20 maxlen: 24
2c0f:f1a0::/32 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 842 (0x34a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368B07FAF/serialNumber=78825B2BC908A40FEF62B26482D61A98575FCBD3
Validity
Not Before: Jan 27 16:50:51 2020 GMT
Not After : Jan 31 16:50:51 2022 GMT
Subject: CN=5e2f14f5-22ad
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:e3:bb:d7:ac:dd:37:50:55:a4:af:04:ef:b2:
c3:a7:98:f8:26:8d:1c:4e:f6:c1:df:aa:fc:c1:de:
2b:93:01:55:96:a1:25:9c:d0:bc:fc:48:18:ea:56:
c4:cc:cd:71:2d:08:fa:94:06:91:a2:37:f4:ac:7e:
25:84:7b:7b:34:90:28:dd:49:58:f8:d2:82:80:f0:
ac:c5:94:da:c6:1c:90:c5:9b:59:7e:b6:ce:cd:25:
0d:87:07:7b:c2:95:42:a6:04:19:22:e9:87:17:9e:
ea:70:a1:71:a1:ce:c3:df:9a:ef:18:82:cf:52:84:
ab:00:73:b1:ed:35:08:08:fc:3a:ad:d6:e5:96:37:
f5:9b:d8:f3:54:80:8e:c4:7f:cd:8f:9e:7e:57:ac:
36:af:0e:4a:02:bb:50:d6:8d:4e:40:11:52:50:1b:
b6:bd:85:49:78:d0:c1:ad:81:35:b6:24:09:9c:37:
b9:9b:d7:f3:8e:dd:05:2f:53:e8:0d:1c:96:7b:89:
22:5b:e2:36:64:97:7f:94:83:66:fc:44:fa:24:ce:
2a:c5:4c:da:79:52:d7:96:76:f7:0f:f9:46:d7:c9:
fb:4f:b5:d8:67:c4:0c:02:38:4e:27:0d:90:8e:6c:
23:9a:6b:8f:a3:b6:b9:97:92:c1:fc:e8:b2:06:07:
b8:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:03:44:02:1D:01:FC:ED:20:47:8D:5D:18:A0:C6:64:B3:F6:8D:12
X509v3 Authority Key Identifier:
keyid:78:82:5B:2B:C9:08:A4:0F:EF:62:B2:64:82:D6:1A:98:57:5F:CB:D3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368B07F/9A1299DEB9C411E78B59C061F8AEA228/eIJbK8kIpA_vYrJkgtYamFdfy9M.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/eIJbK8kIpA_vYrJkgtYamFdfy9M.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368B07F/9A1299DEB9C411E78B59C061F8AEA228/326B218A412511EA9CA3F039F8AEA228.roa
sbgp-ipAddrBlock: critical
IPv4:
41.79.20.0/22
154.119.64.0/20
IPv6:
2c0f:f1a0::/32
Signature Algorithm: sha256WithRSAEncryption
7c:4d:7d:b7:5e:da:c7:69:b0:a3:f1:15:ab:f9:8d:f1:30:39:
7d:d3:81:e7:de:9f:53:7e:78:b1:83:06:3a:39:0e:95:be:86:
27:53:52:0c:a2:f3:b9:83:ec:a9:8b:6f:c8:9b:4c:f1:04:5b:
07:ef:e7:bd:08:b2:6b:fa:43:eb:d0:1e:df:3d:2c:7e:49:4c:
db:88:08:af:f9:8d:5d:b2:96:93:c3:8e:00:9b:1c:07:eb:1b:
1c:d0:42:d7:b3:18:d1:74:9d:4c:5f:db:9e:6f:1a:47:ac:2f:
e4:9e:70:3b:c2:a9:ce:22:16:cd:72:eb:41:f5:3c:f9:d8:ba:
52:3c:b2:11:a1:2c:27:7e:36:93:b3:97:56:f1:51:a5:f5:fe:
0e:32:af:24:ec:e4:a3:4b:58:8a:5c:83:6d:ec:7c:55:90:a2:
eb:9a:b1:95:7c:05:eb:f6:de:48:87:85:db:33:69:c1:31:b7:
20:45:a1:85:81:32:b0:7c:e8:0b:ff:3a:69:b8:3b:f5:ce:1d:
c6:a2:e7:e3:67:19:1c:9f:24:9e:71:29:b8:e1:dc:77:56:3c:
37:55:c0:2c:3c:11:39:a1:51:1f:1e:47:40:54:f1:b4:bb:b6:
24:17:9c:4a:6b:57:40:40:90:7b:3c:4d:42:90:16:a0:bd:a5:
3c:fa:c9:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:22:03 2023 by rpki-client on console-fra.rpki-client.org