Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/785B1C50467311EB88ADDC3EF8AEA228.roa
File: 785B1C50467311EB88ADDC3EF8AEA228.roa (raw, json)
Hash identifier: RBe2EOLPvDiRxkalZL/OEi4lgKKenjQ1twGL81V1C3o=
Subject key identifier: 94:92:88:BF:55:80:1D:25:74:CE:F4:4D:43:B2:2B:62:8C:97:BB:1C
Certificate issuer: /CN=F36C58D6AF/serialNumber=48A2F2C4AA4AEA39BE46BFE5F99C92629BBED8FC
Certificate serial: 0306
Authority key identifier: 48:A2:F2:C4:AA:4A:EA:39:BE:46:BF:E5:F9:9C:92:62:9B:BE:D8:FC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/785B1C50467311EB88ADDC3EF8AEA228.roa
Signing time: Fri 25 Dec 2020 05:38:52 +0000
ROA not before: Fri 25 Dec 2020 05:38:49 +0000
ROA not after: Fri 02 Sep 2022 05:38:49 +0000
asID: 3356
IP address blocks: 102.129.134.0/24 maxlen: 24
102.129.140.0/23 maxlen: 24
102.165.11.0/24 maxlen: 24
102.165.13.0/24 maxlen: 24
102.165.14.0/24 maxlen: 24
102.165.36.0/22 maxlen: 24
102.165.50.0/23 maxlen: 24
102.165.56.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 774 (0x306)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36C58D6AF/serialNumber=48A2F2C4AA4AEA39BE46BFE5F99C92629BBED8FC
Validity
Not Before: Dec 25 05:38:49 2020 GMT
Not After : Sep 2 05:38:49 2022 GMT
Subject: CN=5fe57aec-cd40
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:0f:a0:f9:43:9c:b0:3a:98:03:7b:64:d2:02:
22:74:1d:02:53:53:c8:f5:ee:0e:47:0c:1c:a5:a1:
ed:5a:0a:34:67:d1:b2:c1:30:23:61:9d:f1:7f:01:
cc:8e:51:18:e2:81:09:dc:75:49:9b:d9:14:f1:1b:
16:da:41:33:3a:a9:62:c7:e1:37:46:7e:f7:5d:6c:
5b:de:27:a0:89:80:b6:a9:aa:40:1e:93:58:15:ec:
da:93:3e:f8:d1:47:76:31:7e:67:9e:72:70:04:2e:
e8:e8:03:48:45:59:01:8c:c7:58:06:84:78:d8:9a:
c5:cb:78:32:fd:e9:7d:c8:a1:ef:51:cf:94:e7:c0:
c3:6d:5a:61:19:3f:d5:d1:da:35:91:cb:0d:88:09:
2e:a5:90:52:2c:01:b5:ea:6d:19:57:4f:00:47:7d:
65:f5:4d:69:b4:74:c3:7a:32:83:83:27:f4:12:97:
30:eb:ad:99:58:52:1d:73:d2:83:9e:47:f1:4a:9d:
0f:2b:38:7e:5b:96:cd:63:2e:19:5b:d8:56:ca:62:
c0:7d:4b:47:c9:55:33:ef:e7:a7:ba:a4:0e:a9:55:
5b:18:7c:5b:04:f7:b3:2e:04:f1:82:81:4e:96:9f:
98:a2:26:2d:42:7f:c0:4c:59:cd:d3:16:05:2d:25:
19:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:92:88:BF:55:80:1D:25:74:CE:F4:4D:43:B2:2B:62:8C:97:BB:1C
X509v3 Authority Key Identifier:
keyid:48:A2:F2:C4:AA:4A:EA:39:BE:46:BF:E5:F9:9C:92:62:9B:BE:D8:FC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/785B1C50467311EB88ADDC3EF8AEA228.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.129.134.0/24
102.129.140.0/23
102.165.11.0/24
102.165.13.0-102.165.14.255
102.165.36.0/22
102.165.50.0/23
102.165.56.0/22
Signature Algorithm: sha256WithRSAEncryption
34:2a:be:46:bd:b6:c0:6c:a8:b4:a2:31:17:bd:9a:76:ab:97:
ef:24:f7:25:46:23:48:1f:2b:8f:28:cb:b6:20:fc:09:bf:93:
fb:3a:6f:d6:eb:21:74:39:b0:4b:b3:34:b3:b4:36:8e:f8:47:
e8:b5:f4:c5:e3:07:17:54:1c:af:9d:64:5a:ed:3e:a5:10:1c:
ea:07:7a:7e:f5:0a:64:c0:9e:14:a9:41:31:bb:f0:0d:e6:2a:
99:ae:34:d2:39:2f:e1:82:36:b8:76:de:b6:17:d5:a8:23:c8:
d4:27:66:3f:2b:09:c8:c0:4d:f9:83:a5:1d:c3:a3:16:ff:b2:
37:05:b5:28:cc:d9:6f:23:c3:de:28:3d:35:22:4a:a6:10:4f:
21:4e:a7:02:5b:1a:77:fe:c7:fd:50:60:60:14:61:5a:8d:8b:
b8:58:39:90:4a:a9:4f:14:5d:83:1a:38:f6:6f:d3:13:20:f7:
12:17:51:ec:88:ce:fe:7b:55:cf:dc:5c:e0:c1:22:b6:2b:48:
8e:cf:00:86:ef:f5:e9:9c:ce:14:b3:82:b5:33:6b:17:24:5d:
3c:ef:24:9b:8b:48:f0:70:7a:fd:69:aa:12:cd:bb:a5:6e:a1:
04:dc:00:bc:d4:cd:fd:63:76:3c:a9:a5:3c:a8:34:b5:dc:fe:
19:bb:ea:d1
-----BEGIN CERTIFICATE-----
MIIFrzCCBJegAwIBAgICAwYwDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAxMKRjM2
QzU4RDZBRjExMC8GA1UEBRMoNDhBMkYyQzRBQTRBRUEzOUJFNDZCRkU1Rjk5Qzky
NjI5QkJFRDhGQzAeFw0yMDEyMjUwNTM4NDlaFw0yMjA5MDIwNTM4NDlaMBgxFjAU
BgNVBAMTDTVmZTU3YWVjLWNkNDAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQClD6D5Q5ywOpgDe2TSAiJ0HQJTU8j17g5HDByloe1aCjRn0bLBMCNhnfF/
AcyOURjigQncdUmb2RTxGxbaQTM6qWLH4TdGfvddbFveJ6CJgLapqkAek1gV7NqT
PvjRR3YxfmeecnAELujoA0hFWQGMx1gGhHjYmsXLeDL96X3Ioe9Rz5TnwMNtWmEZ
P9XR2jWRyw2ICS6lkFIsAbXqbRlXTwBHfWX1TWm0dMN6MoODJ/QSlzDrrZlYUh1z
0oOeR/FKnQ8rOH5bls1jLhlb2FbKYsB9S0fJVTPv56e6pA6pVVsYfFsE97MuBPGC
gU6Wn5iiJi1Cf8BMWc3TFgUtJRlHAgMBAAGjggLRMIICzTAdBgNVHQ4EFgQUlJKI
v1WAHSV0zvRNQ7IrYoyXuxwwHwYDVR0jBBgwFoAUSKLyxKpK6jm+Rr/l+ZySYpu+
2PwwDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNkM1OEQ2L0Q2OUE0REZFNzMxNjExRTk5MTMzMDM3Q0Y4QUVBMjI4L1NLTHl4
S3BLNmptLVJyX2wtWnlTWXB1LTJQdy5jcmwwZwYIKwYBBQUHAQEEWzBZMFcGCCsG
AQUFBzAChktyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hZnJp
bmljL1NLTHl4S3BLNmptLVJyX2wtWnlTWXB1LTJQdy5jZXIwTwYDVR0gAQH/BEUw
QzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5p
Yy5uZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEF
BQcwC4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJl
cl9yZXBvc2l0b3J5L0YzNkM1OEQ2L0Q2OUE0REZFNzMxNjExRTk5MTMzMDM3Q0Y4
QUVBMjI4Lzc4NUIxQzUwNDY3MzExRUI4OEFEREMzRUY4QUVBMjI4LnJvYTA1Bggr
BgEFBQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54
bWwwSwYIKwYBBQUHAQcBAf8EPDA6MDgEAgABMDIDBABmgYYDBAFmgYwDBABmpQsw
DAMEAGalDQMEAGalDgMEAmalJAMEAWalMgMEAmalODANBgkqhkiG9w0BAQsFAAOC
AQEANCq+Rr22wGyotKIxF72adquX7yT3JUYjSB8rjyjLtiD8Cb+T+zpv1ushdDmw
S7M0s7Q2jvhH6LX0xeMHF1Qcr51kWu0+pRAc6gd6fvUKZMCeFKlBMbvwDeYqma40
0jkv4YI2uHbethfVqCPI1CdmPysJyMBN+YOlHcOjFv+yNwW1KMzZbyPD3ig9NSJK
phBPIU6nAlsad/7H/VBgYBRhWo2LuFg5kEqpTxRdgxo49m/TEyD3EhdR7IjO/ntV
z9xc4MEititIjs8Ahu/16ZzOFLOCtTNrFyRdPO8km4tI8HB6/WmqEs27pW6hBNwA
vNTN/WN2PKmlPKg0tdz+Gbvq0Q==
-----END CERTIFICATE-----
Generated at Thu Jun 6 16:50:51 2024 by rpki-client on console-fra.rpki-client.org