Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/18094116777811EBAC0DBF7AF8AEA228.roa
File: 18094116777811EBAC0DBF7AF8AEA228.roa (raw, json)
Hash identifier: 5F/j8OHSoUjcvUydXNp4PiDkXfyS0Xkf/rDxxVSz4Ao=
Subject key identifier: DB:E0:21:30:17:F8:32:3C:8A:C1:AB:5A:66:4B:04:B4:F8:82:AF:3F
Certificate issuer: /CN=F36C58D6AF/serialNumber=48A2F2C4AA4AEA39BE46BFE5F99C92629BBED8FC
Certificate serial: 036B
Authority key identifier: 48:A2:F2:C4:AA:4A:EA:39:BE:46:BF:E5:F9:9C:92:62:9B:BE:D8:FC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/18094116777811EBAC0DBF7AF8AEA228.roa
Signing time: Thu 25 Feb 2021 14:45:25 +0000
ROA not before: Thu 25 Feb 2021 14:45:20 +0000
ROA not after: Fri 25 Feb 2022 14:45:20 +0000
asID: 9009
IP address blocks: 102.129.146.0/24 maxlen: 24
102.129.222.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 875 (0x36b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36C58D6AF/serialNumber=48A2F2C4AA4AEA39BE46BFE5F99C92629BBED8FC
Validity
Not Before: Feb 25 14:45:20 2021 GMT
Not After : Feb 25 14:45:20 2022 GMT
Subject: CN=6037b805-9729
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:d5:fe:f9:9f:a7:93:16:3a:58:bd:16:ab:84:
53:3c:69:bb:97:a2:b6:1a:b9:36:cc:05:97:ac:1a:
02:3b:fc:88:9c:d0:7c:98:b2:ca:40:7b:33:a3:47:
41:39:96:bd:82:ea:8c:b3:a5:c8:8e:ca:cb:47:a6:
79:ee:32:b9:85:83:a7:43:bf:a0:ad:b9:47:f5:72:
0e:60:90:9e:38:69:ca:09:00:77:7c:66:f0:eb:1d:
f4:76:c3:c9:5d:c6:41:5f:f8:46:29:dc:64:f9:04:
3f:7e:94:7e:7e:10:76:3e:ed:16:15:4a:95:fa:95:
7a:83:f1:41:c0:bf:08:f8:eb:65:22:32:f8:02:9b:
00:e4:1f:9c:d6:72:2c:f1:7b:d4:87:0e:77:50:16:
81:0a:16:b2:4d:4d:76:6c:74:85:73:0b:cc:a1:98:
d0:05:21:41:05:5c:05:b4:25:1d:af:e2:f9:0e:3f:
79:ee:8d:5c:ce:7a:2b:4b:fc:a1:9b:d7:f9:28:db:
ad:d4:fc:47:a7:51:72:ff:16:7f:95:6a:db:1e:90:
c7:a8:21:d0:e0:7a:05:b5:03:2b:92:cd:54:1e:c9:
60:94:a8:b2:0f:d2:9a:71:89:95:87:08:77:da:9a:
85:a6:55:da:6b:6d:15:10:c6:80:51:84:fe:85:91:
d2:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:E0:21:30:17:F8:32:3C:8A:C1:AB:5A:66:4B:04:B4:F8:82:AF:3F
X509v3 Authority Key Identifier:
keyid:48:A2:F2:C4:AA:4A:EA:39:BE:46:BF:E5:F9:9C:92:62:9B:BE:D8:FC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/18094116777811EBAC0DBF7AF8AEA228.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.129.146.0/24
102.129.222.0/24
Signature Algorithm: sha256WithRSAEncryption
a0:05:8c:48:c7:82:48:e5:04:8c:85:f9:a0:37:77:d7:b0:2e:
6c:e0:f8:f5:65:44:bd:e7:04:9c:db:ca:82:cb:43:6b:12:a6:
76:2b:8d:a2:42:9c:8f:df:4c:73:72:97:69:81:5e:d8:1c:f5:
17:af:ba:c3:0b:da:ec:f4:8a:9d:86:a0:13:82:82:d6:27:d7:
f0:57:5e:46:57:21:db:ec:fe:1c:bb:f0:34:61:25:ad:e1:c5:
18:09:36:bd:4c:74:1f:d0:86:09:1b:c7:55:ea:94:26:53:0e:
1e:12:a5:af:3e:04:58:98:f0:91:eb:fd:2e:09:3c:37:84:b2:
47:85:b0:46:ac:b4:c3:d3:6f:9c:33:c5:a9:9a:a3:8f:97:2c:
75:24:34:4f:a4:63:8c:cb:ea:e0:cb:8b:51:b1:a3:72:9b:26:
0c:a8:8a:7a:ba:a0:71:a3:ea:eb:5d:2b:93:71:43:2f:c9:bb:
b0:4a:be:85:d1:13:3d:fb:be:a9:7a:17:f8:4d:44:17:51:1e:
0a:a5:14:cf:21:46:7b:ca:5d:27:07:b0:c6:74:9b:1f:43:b8:
22:b3:6d:ef:95:49:02:3f:d7:04:ec:32:af:af:85:ca:ad:0e:
21:94:bd:6b:42:69:ba:e6:c9:d7:fa:07:6f:33:d1:9a:86:0e:
8e:20:d2:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:22:30 2023 by rpki-client on console-ams.rpki-client.org