Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/BA8BF34A8B3811EDB2A77EC9F1222468.roa
File: BA8BF34A8B3811EDB2A77EC9F1222468.roa (raw, json)
Hash identifier: CqDJU4sisGtNXekn5EnPDUsp4TYwo/6e81TTM3h61uU=
Subject key identifier: D7:69:D4:D9:71:C5:4F:B1:21:5B:BC:C4:AC:30:D1:A8:30:B5:D1:6E
Certificate issuer: /CN=F36C58D6AF/serialNumber=48A2F2C4AA4AEA39BE46BFE5F99C92629BBED8FC
Certificate serial: 09A1
Authority key identifier: 48:A2:F2:C4:AA:4A:EA:39:BE:46:BF:E5:F9:9C:92:62:9B:BE:D8:FC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/BA8BF34A8B3811EDB2A77EC9F1222468.roa
Signing time: Tue 03 Jan 2023 07:32:08 +0000
ROA not before: Tue 03 Jan 2023 07:32:03 +0000
ROA not after: Wed 03 Jan 2024 07:32:03 +0000
asID: 6315
IP address blocks: 102.129.218.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2465 (0x9a1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36C58D6AF/serialNumber=48A2F2C4AA4AEA39BE46BFE5F99C92629BBED8FC
Validity
Not Before: Jan 3 07:32:03 2023 GMT
Not After : Jan 3 07:32:03 2024 GMT
Subject: CN=63b3d9f8-2c51
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:a3:64:f8:b7:cd:5f:32:bc:6f:cd:8f:e8:44:
80:fb:c8:25:ae:12:96:c8:00:d0:87:06:6f:7d:f0:
ce:4b:75:bc:77:54:00:1e:8c:db:81:b7:32:2d:c2:
9d:13:53:6e:f8:43:30:a9:4d:4e:2a:eb:d3:bc:45:
cf:0e:13:65:7c:3e:b1:40:8f:1a:74:38:0c:cf:40:
a7:4c:e2:95:ce:c4:f7:35:c4:b0:7f:f0:fd:a4:14:
a5:76:a8:ec:8f:54:24:c1:2e:4b:fe:3a:53:9e:ab:
c8:17:8d:1e:f5:23:cd:2a:1a:95:03:43:c0:05:8f:
8d:f2:08:d3:69:07:81:f5:f0:3d:b3:78:ff:f9:b0:
13:7f:c0:4c:07:43:07:db:d5:4b:80:dd:6c:c6:31:
bb:88:09:16:26:ac:44:b8:63:60:1c:80:e5:99:a2:
c7:a1:a9:e9:38:94:14:df:e2:12:ae:72:97:7f:a6:
fa:7c:35:16:7e:6f:8a:93:56:52:fe:19:c0:c4:4d:
54:41:05:07:61:b1:e7:cd:7f:64:38:71:69:ff:c0:
bd:72:c5:7c:86:e0:35:b0:6a:31:f2:c5:50:c9:1a:
b0:4a:6a:07:c7:d1:19:da:65:d8:fa:f6:a7:4f:48:
20:22:e3:40:af:76:88:7b:aa:89:9b:58:0a:e1:0a:
e6:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:69:D4:D9:71:C5:4F:B1:21:5B:BC:C4:AC:30:D1:A8:30:B5:D1:6E
X509v3 Authority Key Identifier:
keyid:48:A2:F2:C4:AA:4A:EA:39:BE:46:BF:E5:F9:9C:92:62:9B:BE:D8:FC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/BA8BF34A8B3811EDB2A77EC9F1222468.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.129.218.0/24
Signature Algorithm: sha256WithRSAEncryption
d4:88:77:29:16:85:c0:67:6e:62:21:b6:b7:d3:f8:70:cf:85:
5a:bd:8d:c0:66:13:a9:84:32:8f:67:88:ce:bb:e4:20:35:37:
da:4a:ab:47:55:5d:c5:e4:da:cf:50:ee:85:e7:30:7e:1d:c9:
11:9a:b4:2b:68:63:93:99:e7:c5:ca:b0:87:2e:15:f8:6f:96:
5e:16:00:a1:1e:df:79:17:69:de:5a:77:06:3d:55:00:c5:ae:
fd:21:61:31:4f:2c:9d:f5:11:80:4e:26:fc:5d:06:e4:56:3f:
07:7e:95:52:8d:02:e9:17:25:f9:32:af:f4:ca:a1:1d:74:7d:
a6:ed:d8:d2:c0:df:b6:f0:38:eb:6c:3c:d2:42:25:6c:35:29:
ea:6d:04:ed:d9:e7:09:64:ce:86:64:e6:d8:61:e0:5d:9a:29:
3f:a2:74:8d:a2:10:f6:e6:70:b0:72:0e:df:7b:a9:d1:3f:96:
25:30:de:11:3d:f1:bd:5d:52:a7:06:c5:ee:9e:80:cd:7d:dc:
b3:75:1a:0d:c4:6d:37:b4:3e:bc:76:86:82:4c:69:09:17:60:
e4:fa:98:33:e4:c9:40:86:26:a0:5d:a7:53:d5:d9:42:d6:8a:
17:31:23:40:67:25:0a:7d:94:81:0c:a4:6d:97:54:02:69:e1:
34:3c:70:0b
-----BEGIN CERTIFICATE-----
MIIFgzCCBGugAwIBAgICCaEwDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAwwKRjM2
QzU4RDZBRjExMC8GA1UEBRMoNDhBMkYyQzRBQTRBRUEzOUJFNDZCRkU1Rjk5Qzky
NjI5QkJFRDhGQzAeFw0yMzAxMDMwNzMyMDNaFw0yNDAxMDMwNzMyMDNaMBgxFjAU
BgNVBAMMDTYzYjNkOWY4LTJjNTEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQCxo2T4t81fMrxvzY/oRID7yCWuEpbIANCHBm998M5Ldbx3VAAejNuBtzIt
wp0TU274QzCpTU4q69O8Rc8OE2V8PrFAjxp0OAzPQKdM4pXOxPc1xLB/8P2kFKV2
qOyPVCTBLkv+OlOeq8gXjR71I80qGpUDQ8AFj43yCNNpB4H18D2zeP/5sBN/wEwH
Qwfb1UuA3WzGMbuICRYmrES4Y2AcgOWZosehqek4lBTf4hKucpd/pvp8NRZ+b4qT
VlL+GcDETVRBBQdhsefNf2Q4cWn/wL1yxXyG4DWwajHyxVDJGrBKagfH0RnaZdj6
9qdPSCAi40Cvdoh7qombWArhCuZnAgMBAAGjggKlMIICoTAdBgNVHQ4EFgQU12nU
2XHFT7EhW7zErDDRqDC10W4wHwYDVR0jBBgwFoAUSKLyxKpK6jm+Rr/l+ZySYpu+
2PwwDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNkM1OEQ2L0Q2OUE0REZFNzMxNjExRTk5MTMzMDM3Q0Y4QUVBMjI4L1NLTHl4
S3BLNmptLVJyX2wtWnlTWXB1LTJQdy5jcmwwZwYIKwYBBQUHAQEEWzBZMFcGCCsG
AQUFBzAChktyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hZnJp
bmljL1NLTHl4S3BLNmptLVJyX2wtWnlTWXB1LTJQdy5jZXIwTwYDVR0gAQH/BEUw
QzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5p
Yy5uZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEF
BQcwC4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJl
cl9yZXBvc2l0b3J5L0YzNkM1OEQ2L0Q2OUE0REZFNzMxNjExRTk5MTMzMDM3Q0Y4
QUVBMjI4L0JBOEJGMzRBOEIzODExRURCMkE3N0VDOUYxMjIyNDY4LnJvYTA1Bggr
BgEFBQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54
bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABmgdowDQYJKoZIhvcNAQEL
BQADggEBANSIdykWhcBnbmIhtrfT+HDPhVq9jcBmE6mEMo9niM675CA1N9pKq0dV
XcXk2s9Q7oXnMH4dyRGatCtoY5OZ58XKsIcuFfhvll4WAKEe33kXad5adwY9VQDF
rv0hYTFPLJ31EYBOJvxdBuRWPwd+lVKNAukXJfkyr/TKoR10fabt2NLA37bwOOts
PNJCJWw1KeptBO3Z5wlkzoZk5thh4F2aKT+idI2iEPbmcLByDt97qdE/liUw3hE9
8b1dUqcGxe6egM193LN1Gg3EbTe0Prx2hoJMaQkXYOT6mDPkyUCGJqBdp1PV2ULW
ihcxI0BnJQp9lIEMpG2XVAJp4TQ8cAs=
-----END CERTIFICATE-----
Generated at Thu Jun 6 16:50:52 2024 by rpki-client on console-fra.rpki-client.org