Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/5C7D9F1E5F3811ED903B5CD1F1222468.roa
File: 5C7D9F1E5F3811ED903B5CD1F1222468.roa (raw, json)
Hash identifier: VNzf44m/hUxerna1eLQleVfwx14XJi5X2tV6atMssBs=
Subject key identifier: A3:68:8B:E9:80:FE:1F:76:38:57:C2:EC:76:07:A1:7B:EE:55:D3:47
Certificate issuer: /CN=F36C58D6AF/serialNumber=48A2F2C4AA4AEA39BE46BFE5F99C92629BBED8FC
Certificate serial: 08CB
Authority key identifier: 48:A2:F2:C4:AA:4A:EA:39:BE:46:BF:E5:F9:9C:92:62:9B:BE:D8:FC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/5C7D9F1E5F3811ED903B5CD1F1222468.roa
Signing time: Tue 08 Nov 2022 07:38:39 +0000
ROA not before: Tue 08 Nov 2022 07:38:36 +0000
ROA not after: Fri 08 Nov 2024 07:38:36 +0000
asID: 147176
IP address blocks: 102.129.138.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2251 (0x8cb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36C58D6AF/serialNumber=48A2F2C4AA4AEA39BE46BFE5F99C92629BBED8FC
Validity
Not Before: Nov 8 07:38:36 2022 GMT
Not After : Nov 8 07:38:36 2024 GMT
Subject: CN=636a077f-12b1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:68:d2:c6:c5:b8:0b:87:44:20:8c:48:a1:c2:
b8:e1:9b:01:68:c1:c4:a9:bc:49:3e:e3:94:8a:f0:
74:42:6c:ad:c8:18:3d:32:f4:a4:17:f6:56:ae:ef:
01:7d:c7:c2:50:51:1a:7f:53:85:54:9a:e6:91:a6:
e2:2f:60:ff:ac:d9:96:2d:79:c2:95:6d:b4:66:04:
f6:db:ff:6e:ac:56:67:fe:a5:7b:e6:12:c1:ea:d2:
b9:92:07:f1:5c:00:89:39:72:1c:45:ee:de:7b:fe:
0d:be:15:e9:87:f2:f3:2a:e7:16:07:a0:11:2e:33:
d7:de:5a:97:7f:98:40:50:34:23:f4:9d:12:39:f4:
84:e5:f7:64:9a:c2:cd:34:f6:e5:fa:67:a5:e5:de:
b4:f5:9a:08:de:61:8b:14:43:5b:61:34:6c:06:92:
1a:c4:5a:94:9f:2f:3c:89:9a:01:e4:82:07:ba:40:
71:29:30:ef:88:5b:cf:f5:ba:23:cf:9d:0d:72:ea:
34:bd:6e:8a:1d:5b:a6:b8:fb:35:a3:d0:46:4a:d0:
10:61:8b:2a:a6:fa:99:8b:58:9e:26:6c:8a:4b:d0:
91:9c:ef:be:3a:36:51:09:84:58:c0:66:db:38:4e:
f7:44:59:fd:2c:6c:e8:6b:fe:39:d2:73:1d:a6:9a:
f4:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:68:8B:E9:80:FE:1F:76:38:57:C2:EC:76:07:A1:7B:EE:55:D3:47
X509v3 Authority Key Identifier:
keyid:48:A2:F2:C4:AA:4A:EA:39:BE:46:BF:E5:F9:9C:92:62:9B:BE:D8:FC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/5C7D9F1E5F3811ED903B5CD1F1222468.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.129.138.0/24
Signature Algorithm: sha256WithRSAEncryption
3c:d3:47:15:8a:e6:65:c2:ac:b2:a2:9f:44:00:c4:48:49:a2:
77:be:6e:57:9b:27:ea:8b:22:41:e1:cc:76:df:28:f7:a8:00:
7d:62:9e:22:1b:dc:7e:2f:e1:74:4f:3b:dd:9c:60:4d:d9:8b:
bb:23:2d:23:69:c4:32:b5:83:05:04:70:d9:d2:8a:a4:6d:0e:
ab:2f:9b:9d:03:0e:09:66:85:dc:dc:7d:a6:61:07:aa:25:01:
a9:72:a1:22:c5:96:4c:ed:b2:d8:fa:34:f7:3c:d0:b6:5d:03:
96:16:99:30:38:0f:32:10:f3:1b:f6:07:8d:c9:1b:e8:b2:39:
6e:fd:e2:83:16:c3:f3:92:fc:d1:55:c4:de:9b:9f:44:7a:fa:
e4:ba:8f:6b:bf:ea:bc:a2:e7:0a:ba:61:f6:d7:48:84:16:4a:
fd:e6:5e:56:cd:ad:89:01:e9:1b:f4:19:70:db:f7:27:09:cd:
b1:c9:55:c8:2e:07:50:45:05:93:c9:01:55:54:20:4d:37:0c:
cc:3c:4e:42:fe:20:ed:0b:72:05:e6:14:2f:01:af:e8:88:a5:
27:36:6f:ec:c0:bf:f3:40:a3:da:17:31:24:8a:ab:dc:0c:33:
1c:79:ff:52:6a:ab:15:a8:fb:2e:53:32:73:bc:2c:dd:c3:21:
f0:38:82:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 8 19:11:57 2024 by rpki-client on console-ams.rpki-client.org