Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/A9E60C4C68C811EE808EE64B4AD9E6FC.roa
File: A9E60C4C68C811EE808EE64B4AD9E6FC.roa (raw, json)
Hash identifier: PU6QnwAH2I1uEWxgGl+XQRWZfz93YyLRmv99adMiUvk=
Subject key identifier: 64:2B:B1:06:D8:F0:E1:A5:2C:9B:73:AD:EF:65:F2:DB:E5:FC:1C:37
Certificate issuer: /CN=F36C58D6AF/serialNumber=48A2F2C4AA4AEA39BE46BFE5F99C92629BBED8FC
Certificate serial: 0DC8
Authority key identifier: 48:A2:F2:C4:AA:4A:EA:39:BE:46:BF:E5:F9:9C:92:62:9B:BE:D8:FC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/A9E60C4C68C811EE808EE64B4AD9E6FC.roa
Signing time: Thu 12 Oct 2023 06:29:15 +0000
ROA not before: Thu 12 Oct 2023 06:29:12 +0000
ROA not after: Wed 23 Oct 2024 06:29:12 +0000
asID: 834
IP address blocks: 102.165.44.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3528 (0xdc8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36C58D6AF/serialNumber=48A2F2C4AA4AEA39BE46BFE5F99C92629BBED8FC
Validity
Not Before: Oct 12 06:29:12 2023 GMT
Not After : Oct 23 06:29:12 2024 GMT
Subject: CN=6527923b-aa98
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:53:1b:3b:3b:49:b4:f0:44:1a:cb:dc:87:e9:
0d:55:98:75:62:8f:27:44:38:8d:b5:cf:14:f8:82:
65:71:87:96:c3:87:fc:f1:b6:6c:e5:d1:f4:ed:e5:
8c:2f:1a:8e:a7:49:85:d9:5b:f4:ee:99:cb:29:13:
e7:82:60:d1:f9:cd:33:81:b2:98:8b:b1:09:f8:95:
05:7d:64:d5:0d:4e:56:1c:d4:9c:a7:3d:a5:47:1d:
06:f4:3d:31:22:83:2c:85:14:c9:3a:1e:71:0e:e9:
3d:b4:db:ff:6a:ff:5f:e5:34:94:9c:b4:3d:35:83:
65:01:fa:6c:4a:5f:39:da:1c:25:7f:ad:cb:7d:4c:
65:a9:cc:52:ca:c9:d4:bd:e8:db:c3:b9:9b:0b:31:
b5:17:24:41:63:fd:be:14:a4:94:bf:8e:0b:f3:be:
60:59:09:e5:60:00:96:9c:6b:b0:60:bb:55:a4:95:
39:02:b5:b5:9d:8a:ec:b7:f3:1b:52:1c:2e:21:c8:
a7:36:5c:87:cf:9b:13:43:d8:f3:9f:9a:14:5b:9b:
31:6d:eb:ff:ec:e6:b7:2a:26:c6:70:07:90:c0:33:
80:00:4b:1c:58:a7:18:92:ca:46:b0:45:b7:b1:2d:
4a:d5:18:44:f2:22:d7:8c:a0:6c:6e:55:1d:f2:ae:
97:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:2B:B1:06:D8:F0:E1:A5:2C:9B:73:AD:EF:65:F2:DB:E5:FC:1C:37
X509v3 Authority Key Identifier:
keyid:48:A2:F2:C4:AA:4A:EA:39:BE:46:BF:E5:F9:9C:92:62:9B:BE:D8:FC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/A9E60C4C68C811EE808EE64B4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.165.44.0/23
Signature Algorithm: sha256WithRSAEncryption
8f:90:08:b7:ff:7a:5e:c4:5d:0a:31:56:d7:eb:27:44:03:37:
d0:dd:28:60:b6:30:15:c1:74:05:7e:88:d6:35:f6:f5:53:ec:
c1:5e:a9:d2:d6:eb:5e:d4:46:3e:0f:3e:e1:cf:82:30:9b:0d:
67:35:03:b6:6d:48:13:58:dc:da:2e:33:57:ac:a7:b7:ee:cf:
55:fb:f4:ff:a2:32:2b:3d:8c:e9:91:9d:90:16:38:d3:9b:1f:
10:28:f5:07:fe:10:eb:ec:10:56:8f:2a:a7:86:08:86:99:ef:
5d:e6:62:43:48:64:2c:c9:2f:fc:bb:ca:59:82:b9:b0:36:ed:
6a:95:10:32:46:09:ff:20:34:85:d8:76:bd:08:54:2e:9e:9a:
9e:09:41:69:0c:62:78:5b:4b:cf:58:f2:2b:90:24:47:c2:65:
cf:86:29:08:f6:8e:cd:e0:9b:00:6a:08:df:d7:6e:da:c7:1a:
0c:69:46:55:5d:9b:87:34:f2:29:e8:ac:c7:95:a1:1b:8b:f3:
4e:f7:28:aa:a9:f7:e5:33:a7:34:db:e5:06:90:41:74:1a:5b:
e9:78:2f:6e:ea:0d:c4:2b:18:d2:94:6a:e6:29:ec:dc:7b:ad:
62:29:4c:c0:7f:99:fc:b7:c5:d1:9f:93:2c:11:d5:90:7c:9d:
34:06:21:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Oct 24 05:43:34 2024 by rpki-client on console-fra.rpki-client.org