Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36C1D14/F8EF4E44700F11EA8ABD1B33F8AEA228/0704DC50301211ED8BEF24F6F1222468.roa
File: 0704DC50301211ED8BEF24F6F1222468.roa (raw, json)
Hash identifier: t9f99IEoRIuYjGkL3sxik1Fa0QHPqBqKUxQEKA1YLV8=
Subject key identifier: 35:9A:3B:BE:33:FB:53:D0:1C:E3:2E:BA:8E:AA:49:CC:71:6E:BF:E0
Certificate issuer: /CN=F36C1D14AF/serialNumber=EDC56284AFEF3137FC69F9DA783FE9CC783A6DAC
Certificate serial: 0394
Authority key identifier: ED:C5:62:84:AF:EF:31:37:FC:69:F9:DA:78:3F:E9:CC:78:3A:6D:AC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/7cVihK_vMTf8afnaeD_pzHg6baw.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36C1D14/F8EF4E44700F11EA8ABD1B33F8AEA228/0704DC50301211ED8BEF24F6F1222468.roa
Signing time: Fri 09 Sep 2022 07:35:50 +0000
ROA not before: Fri 09 Sep 2022 07:35:46 +0000
ROA not after: Mon 09 Sep 2024 07:35:46 +0000
asID: 328522
IP address blocks: 102.64.6.0/24 maxlen: 24
2001:43f8:13c0::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 916 (0x394)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36C1D14AF/serialNumber=EDC56284AFEF3137FC69F9DA783FE9CC783A6DAC
Validity
Not Before: Sep 9 07:35:46 2022 GMT
Not After : Sep 9 07:35:46 2024 GMT
Subject: CN=631aecd6-c74f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:b9:f5:58:41:e0:44:f3:bf:b0:cd:b9:df:01:
75:66:e9:75:b4:a2:3e:87:be:ff:fc:64:80:80:88:
51:d7:bb:19:63:fc:2a:b9:d2:e4:7a:ce:27:0b:bb:
8d:0a:72:47:cc:06:2f:cf:30:ae:34:a3:85:1c:57:
fe:84:f9:8e:3a:58:7b:8f:f3:3d:d9:9c:c1:39:f9:
67:97:41:09:37:92:55:42:e1:5c:f6:0c:73:3e:52:
cd:50:06:91:34:66:8c:31:39:86:83:9e:e0:d1:58:
45:77:d7:0e:e2:89:d2:67:d2:9c:21:26:21:19:f4:
4c:8d:87:2c:a1:f5:59:7a:8f:79:3d:c8:3e:5a:d3:
67:d8:d8:ba:d1:57:87:6f:c1:7c:4e:98:30:e6:3b:
d8:97:43:22:24:d7:a8:0e:e1:db:6f:b2:30:5b:54:
71:fd:43:b3:7a:01:11:eb:b4:c9:73:14:70:97:4b:
05:13:36:52:1a:5c:86:26:0a:95:dc:b4:25:d2:96:
ad:05:97:09:fc:48:a3:13:c0:5e:b2:54:74:98:75:
c1:7f:27:c2:77:77:35:14:f9:96:de:f0:70:15:60:
55:c4:62:de:23:9e:e4:65:00:9a:60:29:9e:60:6d:
6e:67:2d:b5:7d:bb:bd:3b:f1:54:56:eb:06:9f:5f:
64:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:9A:3B:BE:33:FB:53:D0:1C:E3:2E:BA:8E:AA:49:CC:71:6E:BF:E0
X509v3 Authority Key Identifier:
keyid:ED:C5:62:84:AF:EF:31:37:FC:69:F9:DA:78:3F:E9:CC:78:3A:6D:AC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36C1D14/F8EF4E44700F11EA8ABD1B33F8AEA228/7cVihK_vMTf8afnaeD_pzHg6baw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/7cVihK_vMTf8afnaeD_pzHg6baw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36C1D14/F8EF4E44700F11EA8ABD1B33F8AEA228/0704DC50301211ED8BEF24F6F1222468.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.64.6.0/24
IPv6:
2001:43f8:13c0::/48
Signature Algorithm: sha256WithRSAEncryption
ad:f9:51:94:bf:e1:f1:db:a6:41:fa:9e:05:d4:1a:6b:12:c0:
fc:ee:3d:18:09:36:2c:1b:5f:a9:e9:80:de:c0:c7:76:07:76:
50:98:c0:98:64:85:4b:c2:56:f2:d3:a2:b3:ba:fd:38:44:48:
a5:5b:2e:3f:58:a4:15:2a:89:4d:7b:8e:76:d6:18:96:47:99:
05:c9:46:63:63:99:8a:13:aa:6d:f9:31:a8:41:54:d0:b2:b8:
05:85:fb:89:b8:46:71:2b:f0:b8:b7:40:5f:e8:9e:a6:f1:9d:
78:1f:d8:70:6d:74:1f:b1:6b:59:e0:71:55:e3:c1:05:45:b1:
0e:56:d8:ea:e1:8d:5a:ff:f1:4e:21:bc:30:1e:7d:25:a8:5c:
9c:87:15:d8:b5:93:91:46:db:10:37:fe:e3:01:b3:8c:61:b3:
46:99:14:5a:e8:e4:69:c9:6b:b8:f3:38:9a:f7:35:b2:23:a6:
85:c1:8b:a3:36:12:e9:89:b5:e6:b3:e9:9a:fb:fc:34:8e:18:
c8:01:f5:d2:d5:4a:ea:14:86:db:3a:67:e4:71:0f:98:8d:fc:
25:50:3b:51:d1:56:48:39:14:df:8e:ab:ca:46:3a:0b:b5:7f:
79:8e:70:7b:4b:1c:14:a3:38:76:4e:9f:fb:76:f3:98:1e:0f:
6c:be:a4:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Sep 10 04:08:44 2024 by rpki-client on console-ams.rpki-client.org