Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/D9940866DA8B11ED94FAFEF62F6D8C1D.roa
File: D9940866DA8B11ED94FAFEF62F6D8C1D.roa (raw, json)
Hash identifier: b+5lUsTwYG505s1XMMgFJK3j9KkByYpvJ8LDqt7zKzs=
Subject key identifier: 5D:97:B1:CC:7E:8C:29:02:0E:28:4B:3B:8E:5D:72:04:37:17:2E:C7
Certificate issuer: /CN=F36C58D6AF/serialNumber=48A2F2C4AA4AEA39BE46BFE5F99C92629BBED8FC
Certificate serial: 0B0E
Authority key identifier: 48:A2:F2:C4:AA:4A:EA:39:BE:46:BF:E5:F9:9C:92:62:9B:BE:D8:FC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/D9940866DA8B11ED94FAFEF62F6D8C1D.roa
Signing time: Fri 14 Apr 2023 06:16:10 +0000
ROA not before: Fri 14 Apr 2023 06:16:05 +0000
ROA not after: Wed 17 Apr 2024 06:16:05 +0000
asID: 834
IP address blocks: 102.165.57.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2830 (0xb0e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36C58D6AF/serialNumber=48A2F2C4AA4AEA39BE46BFE5F99C92629BBED8FC
Validity
Not Before: Apr 14 06:16:05 2023 GMT
Not After : Apr 17 06:16:05 2024 GMT
Subject: CN=6438efaa-947c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:37:74:f1:17:2e:d2:17:cb:7d:d1:a2:32:b0:
54:21:b1:05:8b:e0:0e:da:43:c2:6a:38:51:f2:4b:
e9:f5:7b:70:69:f7:a9:b8:c2:05:fb:6f:0b:56:d9:
9f:c2:c6:dd:36:d7:dd:88:47:1c:48:a3:de:5e:15:
bc:e4:ad:83:95:b1:e4:7d:2f:eb:b5:3f:d2:8b:46:
e4:6e:63:2f:3e:e6:24:ec:31:49:0a:81:14:42:9f:
36:20:cb:4f:b4:74:98:73:0b:af:79:ca:5e:f4:b4:
68:38:d9:78:42:20:c7:bc:53:c5:22:3d:84:b3:ec:
13:1b:4a:19:cf:e3:5a:d9:5a:c4:e3:d1:7b:ac:4a:
51:df:45:75:8b:5e:eb:d1:75:d4:fc:66:11:b9:72:
bd:f5:8b:c0:93:8d:30:ec:85:ae:b2:1a:f8:c6:b8:
12:64:15:a9:ac:9b:11:27:2a:d5:47:10:95:4a:46:
37:cf:6e:65:15:b9:f7:a1:ce:b1:6e:87:d9:9d:24:
8c:e6:3a:73:25:22:6d:76:5a:f2:ea:c4:df:da:56:
7c:67:d8:47:db:11:63:28:3b:9e:1e:6d:dd:2c:7c:
36:91:43:06:dd:d7:a9:b1:0d:69:69:53:1d:fe:11:
11:2b:a3:1f:5c:4d:f9:82:4e:47:1b:32:38:04:0c:
87:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:97:B1:CC:7E:8C:29:02:0E:28:4B:3B:8E:5D:72:04:37:17:2E:C7
X509v3 Authority Key Identifier:
keyid:48:A2:F2:C4:AA:4A:EA:39:BE:46:BF:E5:F9:9C:92:62:9B:BE:D8:FC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/D9940866DA8B11ED94FAFEF62F6D8C1D.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.165.57.0/24
Signature Algorithm: sha256WithRSAEncryption
d8:d0:81:1b:c9:b3:78:94:27:72:a0:63:3c:c4:cc:35:b6:64:
ba:fc:bc:26:30:6c:41:8c:35:bd:a6:16:13:12:bc:e1:a2:1f:
92:ac:b9:c7:df:7a:84:87:5c:9a:58:ad:49:6a:2c:29:df:df:
53:68:61:5e:ce:d8:ce:b7:22:38:0b:89:bb:76:77:95:01:43:
f3:20:ce:17:16:e5:71:66:06:ea:d5:56:d1:d7:b2:40:a4:4b:
f2:9e:5a:de:74:82:db:92:be:d0:ac:7b:65:8f:69:d2:40:9a:
ed:ad:46:cb:4d:4d:fc:ea:b2:c8:a7:11:81:14:6c:83:19:68:
32:e9:c2:4f:a1:05:e9:6b:2e:34:2e:df:68:19:c2:ab:92:a0:
e8:bf:6f:7b:61:03:4d:16:55:d7:e2:e9:8c:b1:60:e5:d3:9a:
91:e3:bd:b9:3d:92:e2:2d:56:b9:20:32:d9:e8:c1:98:b1:02:
9e:5e:72:9a:bd:ec:79:6c:4e:01:92:5f:d1:00:a7:28:6c:63:
da:c8:5d:91:59:1f:4b:26:29:fe:28:ab:67:cb:9e:77:dd:60:
a9:02:e0:ee:a4:70:01:5e:b1:df:f0:e3:c8:f6:97:c6:e4:e1:
83:10:51:bd:4e:43:cd:e5:fb:99:c3:8d:9d:36:33:b4:63:aa:
fd:f6:bf:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:50:52 2024 by rpki-client on console-fra.rpki-client.org