Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3696E5F/3DA3D320189711ED8C936BD2F1222468/A2BD62922D0711EDA02553D6F1222468.roa
File: A2BD62922D0711EDA02553D6F1222468.roa (raw, json)
Hash identifier: ePSpfTG4k4pD4RnjcyUIB4VQNhAbiQueMgIYFSiLP3s=
Subject key identifier: 02:02:03:0C:68:FB:DD:19:9F:2E:69:18:39:A0:69:A0:8A:93:4D:FD
Certificate issuer: /CN=F3696E5FAF/serialNumber=5375CF4CA1643B08C341BDA79D8BE105BDC3C48B
Certificate serial: 2B
Authority key identifier: 53:75:CF:4C:A1:64:3B:08:C3:41:BD:A7:9D:8B:E1:05:BD:C3:C4:8B
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/U3XPTKFkOwjDQb2nnYvhBb3DxIs.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3696E5F/3DA3D320189711ED8C936BD2F1222468/A2BD62922D0711EDA02553D6F1222468.roa
Signing time: Mon 05 Sep 2022 10:43:54 +0000
ROA not before: Mon 05 Sep 2022 10:43:50 +0000
ROA not after: Fri 31 Mar 2023 10:43:50 +0000
asID: 25818
IP address blocks: 196.32.8.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 43 (0x2b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3696E5FAF/serialNumber=5375CF4CA1643B08C341BDA79D8BE105BDC3C48B
Validity
Not Before: Sep 5 10:43:50 2022 GMT
Not After : Mar 31 10:43:50 2023 GMT
Subject: CN=6315d2ea-3154
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:70:8d:f8:13:79:25:c7:ab:fe:17:24:32:f8:
11:f7:6d:f8:3b:a3:d5:ec:98:b0:e6:64:64:8e:4d:
67:5a:15:98:51:92:7a:c7:1b:a4:bb:4e:47:dc:b2:
23:35:15:8e:2f:e4:b6:75:fe:5e:ca:01:93:4c:ed:
72:08:51:41:88:20:44:1c:ac:bb:db:2f:03:07:a7:
35:f3:23:c6:f6:af:67:e6:61:20:78:94:01:db:8c:
2f:31:a9:19:fc:bd:88:87:73:76:86:bc:50:d2:2e:
03:91:f0:3e:4c:0e:40:03:59:a9:cc:80:9a:ed:6c:
b6:67:1c:21:1e:e3:de:41:1f:75:f8:4c:d4:66:1a:
68:0e:6c:f9:95:a0:2a:68:f8:da:dc:c8:88:4f:5b:
a8:20:d1:de:6c:07:b5:a6:ae:a1:e8:b9:d0:42:7c:
b6:e7:18:f1:6c:bb:40:df:56:f5:75:07:2b:9e:d6:
3b:b7:9b:c6:7d:99:53:03:2f:05:b7:df:e8:86:66:
b8:c3:ca:1d:bd:23:e5:d9:98:e0:ef:1c:d4:a6:60:
45:f1:99:64:6c:92:e8:6c:34:ea:b9:10:44:2d:ff:
de:c0:e7:69:22:f5:38:97:cf:d6:be:25:51:79:d7:
b9:2a:45:d1:46:d6:d5:31:69:c9:95:35:76:68:d5:
aa:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:02:03:0C:68:FB:DD:19:9F:2E:69:18:39:A0:69:A0:8A:93:4D:FD
X509v3 Authority Key Identifier:
keyid:53:75:CF:4C:A1:64:3B:08:C3:41:BD:A7:9D:8B:E1:05:BD:C3:C4:8B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3696E5F/3DA3D320189711ED8C936BD2F1222468/U3XPTKFkOwjDQb2nnYvhBb3DxIs.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/U3XPTKFkOwjDQb2nnYvhBb3DxIs.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3696E5F/3DA3D320189711ED8C936BD2F1222468/A2BD62922D0711EDA02553D6F1222468.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
196.32.8.0/21
Signature Algorithm: sha256WithRSAEncryption
a7:9c:4f:89:50:4b:b9:c3:b9:e5:ed:f3:fb:3a:76:1f:35:21:
08:d7:fe:38:ed:f4:3f:7a:76:20:97:cf:81:3e:4e:03:d6:93:
0e:83:38:40:ca:40:37:6c:4b:98:6f:7d:75:f5:fe:78:77:32:
64:1c:32:80:47:99:b1:16:20:d0:f3:84:2e:ea:93:be:e9:75:
a7:20:9b:e8:e9:ca:7e:b9:b9:79:74:a6:3c:c8:e6:b5:d2:c5:
e0:5f:30:cb:0d:17:a1:5e:81:c7:ed:27:2d:ea:0e:6c:6a:b0:
86:6b:25:75:30:6a:c3:5a:c2:a0:ec:0e:31:7f:ce:84:e3:b6:
61:8e:c5:2e:35:03:77:4d:65:1f:58:8b:eb:59:5d:7d:99:01:
6d:c7:82:95:8b:d9:d4:7f:81:8a:e4:41:ee:37:5d:4b:57:d8:
ee:dd:44:e5:c9:73:43:f8:5c:95:0a:af:61:5a:eb:20:d6:dc:
fc:a2:f6:68:0c:25:64:de:0a:60:56:a8:10:99:04:65:cd:60:
bd:ee:e7:29:d7:c3:29:ff:76:70:b4:4c:66:af:24:62:a5:ee:
3f:33:27:b4:bc:49:2b:d4:48:83:4d:f5:a0:09:c8:3f:06:71:
c8:ef:78:9b:e9:36:77:11:6c:b1:52:02:b0:9f:0c:6b:13:b8:
dc:8b:f5:f5
-----BEGIN CERTIFICATE-----
MIIFgjCCBGqgAwIBAgIBKzANBgkqhkiG9w0BAQsFADBIMRMwEQYDVQQDDApGMzY5
NkU1RkFGMTEwLwYDVQQFEyg1Mzc1Q0Y0Q0ExNjQzQjA4QzM0MUJEQTc5RDhCRTEw
NUJEQzNDNDhCMB4XDTIyMDkwNTEwNDM1MFoXDTIzMDMzMTEwNDM1MFowGDEWMBQG
A1UEAwwNNjMxNWQyZWEtMzE1NDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC
ggEBAMJwjfgTeSXHq/4XJDL4Efdt+Duj1eyYsOZkZI5NZ1oVmFGSescbpLtOR9yy
IzUVji/ktnX+XsoBk0ztcghRQYggRBysu9svAwenNfMjxvavZ+ZhIHiUAduMLzGp
Gfy9iIdzdoa8UNIuA5HwPkwOQANZqcyAmu1stmccIR7j3kEfdfhM1GYaaA5s+ZWg
Kmj42tzIiE9bqCDR3mwHtaauoei50EJ8tucY8Wy7QN9W9XUHK57WO7ebxn2ZUwMv
Bbff6IZmuMPKHb0j5dmY4O8c1KZgRfGZZGyS6Gw06rkQRC3/3sDnaSL1OJfP1r4l
UXnXuSpF0UbW1TFpyZU1dmjVqt0CAwEAAaOCAqUwggKhMB0GA1UdDgQWBBQCAgMM
aPvdGZ8uaRg5oGmgipNN/TAfBgNVHSMEGDAWgBRTdc9MoWQ7CMNBvaedi+EFvcPE
izAOBgNVHQ8BAf8EBAMCB4AwgZUGA1UdHwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6
Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvbWVtYmVyX3JlcG9zaXRvcnkv
RjM2OTZFNUYvM0RBM0QzMjAxODk3MTFFRDhDOTM2QkQyRjEyMjI0NjgvVTNYUFRL
RmtPd2pEUWIybm5ZdmhCYjNEeElzLmNybDBnBggrBgEFBQcBAQRbMFkwVwYIKwYB
BQUHMAKGS3JzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L2Fmcmlu
aWMvVTNYUFRLRmtPd2pEUWIybm5ZdmhCYjNEeElzLmNlcjBPBgNVHSABAf8ERTBD
MEEGCCsGAQUFBw4CMDUwMwYIKwYBBQUHAgEWJ2h0dHBzOi8vcnBraS5hZnJpbmlj
Lm5ldC9wb2xpY3kvQ1BTLnBkZjCB2wYIKwYBBQUHAQsEgc4wgcswgZEGCCsGAQUF
BzALhoGEcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvbWVtYmVy
X3JlcG9zaXRvcnkvRjM2OTZFNUYvM0RBM0QzMjAxODk3MTFFRDhDOTM2QkQyRjEy
MjI0NjgvQTJCRDYyOTIyRDA3MTFFREEwMjU1M0Q2RjEyMjI0Njgucm9hMDUGCCsG
AQUFBzANhilodHRwczovL3JyZHAuYWZyaW5pYy5uZXQvbm90aWZpY2F0aW9uLnht
bDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEA8QgCDANBgkqhkiG9w0BAQsF
AAOCAQEAp5xPiVBLucO55e3z+zp2HzUhCNf+OO30P3p2IJfPgT5OA9aTDoM4QMpA
N2xLmG99dfX+eHcyZBwygEeZsRYg0POELuqTvul1pyCb6OnKfrm5eXSmPMjmtdLF
4F8wyw0XoV6Bx+0nLeoObGqwhmsldTBqw1rCoOwOMX/OhOO2YY7FLjUDd01lH1iL
61ldfZkBbceClYvZ1H+BiuRB7jddS1fY7t1E5clzQ/hclQqvYVrrINbc/KL2aAwl
ZN4KYFaoEJkEZc1gve7nKdfDKf92cLRMZq8kYqXuPzMntLxJK9RIg031oAnIPwZx
yO94m+k2dxFssVICsJ8MaxO43Iv19Q==
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:22 2024 by rpki-client on console-ams.rpki-client.org