Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/4DDBF41498B911ED9D681FECF1222468.roa
File: 4DDBF41498B911ED9D681FECF1222468.roa (raw, json)
Hash identifier: vAB3IUdTOTj6UMfXQRL8Np5tfZK6njZajCiG+g2LJ4A=
Subject key identifier: 8D:FA:8E:30:0F:27:38:F7:C5:E1:79:87:98:F0:AC:80:1B:F8:6A:7A
Certificate issuer: /CN=F36C58D6AF/serialNumber=48A2F2C4AA4AEA39BE46BFE5F99C92629BBED8FC
Certificate serial: 09E3
Authority key identifier: 48:A2:F2:C4:AA:4A:EA:39:BE:46:BF:E5:F9:9C:92:62:9B:BE:D8:FC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/4DDBF41498B911ED9D681FECF1222468.roa
Signing time: Fri 20 Jan 2023 11:55:16 +0000
ROA not before: Fri 20 Jan 2023 11:55:11 +0000
ROA not after: Sat 20 Jan 2024 11:55:11 +0000
asID: 21682
IP address blocks: 102.129.130.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2531 (0x9e3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36C58D6AF/serialNumber=48A2F2C4AA4AEA39BE46BFE5F99C92629BBED8FC
Validity
Not Before: Jan 20 11:55:11 2023 GMT
Not After : Jan 20 11:55:11 2024 GMT
Subject: CN=63ca8124-9f94
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:21:0f:c7:f3:ac:e6:43:90:43:9d:1f:34:28:
ec:84:30:2f:57:db:40:ce:74:5c:b4:6d:22:33:01:
bc:32:2d:db:16:1c:eb:e2:78:7e:4b:8a:d9:c5:18:
be:25:c3:f4:5c:a9:8f:d7:6d:3a:4f:8c:5d:3a:83:
da:b7:20:26:34:99:f5:e3:10:9c:a7:71:6b:c5:80:
b8:19:75:f5:f1:29:be:40:f6:d1:d4:4c:e0:04:c6:
d6:77:18:bb:1c:bb:62:ee:a4:14:d0:67:20:66:8c:
c6:e2:f1:b1:1c:b1:9a:7c:3e:64:d6:41:98:9d:32:
de:fc:8e:74:bb:bb:40:c1:13:56:70:06:05:2d:33:
89:db:3d:81:8f:6c:11:47:2f:4d:b6:12:18:40:70:
d2:bb:b5:07:7b:93:a3:46:80:d3:49:26:1a:98:4b:
c6:66:74:a9:bd:77:99:5d:a2:ba:99:d2:9b:c9:be:
c2:f2:ba:5c:e6:86:91:5f:36:46:14:0e:df:c8:fa:
0f:3b:13:bb:ea:a6:fa:68:e3:b8:55:c2:c4:f4:b2:
cc:f4:48:3d:ef:32:10:9c:f9:76:fc:cb:3d:f1:17:
d6:84:73:17:1f:c5:21:3d:83:f2:47:a4:ea:60:a5:
7c:2d:05:3d:d6:85:c9:b5:bc:94:69:f2:86:f3:0d:
bc:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:FA:8E:30:0F:27:38:F7:C5:E1:79:87:98:F0:AC:80:1B:F8:6A:7A
X509v3 Authority Key Identifier:
keyid:48:A2:F2:C4:AA:4A:EA:39:BE:46:BF:E5:F9:9C:92:62:9B:BE:D8:FC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/4DDBF41498B911ED9D681FECF1222468.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.129.130.0/24
Signature Algorithm: sha256WithRSAEncryption
91:a0:dd:76:83:2b:4a:0f:52:b2:93:3f:82:dd:e4:85:b0:e1:
82:4b:88:e8:01:d7:52:b0:9b:68:27:5a:bc:fc:59:57:e8:0b:
ae:3c:b1:c0:4c:e2:a1:39:5c:36:3a:c3:c0:61:58:a9:a2:7c:
4c:47:5c:8b:d9:fe:a4:a4:94:e3:5c:d9:db:65:36:09:86:f0:
54:b9:0c:ac:63:95:30:d8:3d:db:b7:1f:1d:4a:88:b0:4a:5f:
79:97:74:85:ae:aa:a1:fe:4d:bf:23:57:34:ce:63:cd:8d:12:
dc:5b:01:4a:1d:50:cb:c7:72:1e:c6:68:7b:75:c9:80:36:a2:
d7:4a:60:11:30:72:fc:d8:62:42:f9:72:4d:ad:4f:71:f4:5a:
44:e8:45:24:67:e3:9e:47:11:f4:ab:b0:96:7f:7f:44:72:0b:
82:99:cd:ce:d3:59:e3:48:72:24:a3:e2:1f:34:4b:47:d7:5d:
30:95:43:27:9d:6c:d0:0c:19:99:bb:47:91:60:d1:67:c8:81:
e5:15:6e:1a:e6:e3:a9:a8:4f:11:cb:e1:48:e6:13:6e:80:7d:
0f:62:f6:34:bb:97:89:d0:07:45:b1:6a:19:c0:7c:97:21:c5:
96:8a:75:19:bf:9d:fa:a1:cd:fe:17:71:51:cd:1c:c1:f4:d0:
cd:4e:26:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:39 2024 by rpki-client on console-ams.rpki-client.org