Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36E29ED/1C5B5D02DC0911EC9CEBDE9BF1222468/6801F8BA052F11EEA1EA00584AD9E6FC.roa
File: 6801F8BA052F11EEA1EA00584AD9E6FC.roa (raw, json)
Hash identifier: TxeQg6LCnogfAGkr0oXvUgGAyQSkws7NVVKzuGKEiSM=
Subject key identifier: 17:8E:4A:21:69:B7:84:24:DE:F5:B5:E7:BC:BA:85:02:1C:6B:8A:56
Certificate issuer: /CN=F36E29EDAF/serialNumber=2A3CC9E5519A5A5BB13D08310CA934824896FA5A
Certificate serial: 0192
Authority key identifier: 2A:3C:C9:E5:51:9A:5A:5B:B1:3D:08:31:0C:A9:34:82:48:96:FA:5A
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/KjzJ5VGaWluxPQgxDKk0gkiW-lo.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36E29ED/1C5B5D02DC0911EC9CEBDE9BF1222468/6801F8BA052F11EEA1EA00584AD9E6FC.roa
Signing time: Wed 07 Jun 2023 12:32:46 +0000
ROA not before: Wed 07 Jun 2023 12:32:41 +0000
ROA not after: Sun 30 Jun 2024 12:32:41 +0000
asID: 327996
IP address blocks: 2c0f:5a00::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 402 (0x192)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36E29EDAF/serialNumber=2A3CC9E5519A5A5BB13D08310CA934824896FA5A
Validity
Not Before: Jun 7 12:32:41 2023 GMT
Not After : Jun 30 12:32:41 2024 GMT
Subject: CN=648078ee-cdf0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:23:cc:0c:30:fd:5a:4c:26:bc:7e:1a:a8:5b:
de:7b:15:57:da:7a:c5:76:51:d2:70:5d:4d:d2:af:
8a:94:07:38:7c:dc:df:6d:07:a6:bb:27:a2:b2:74:
7a:5b:54:18:9b:88:b8:33:35:6e:b1:08:fd:c1:e5:
c7:25:38:04:84:cf:48:0b:e8:dd:d6:bd:47:3d:c6:
38:32:1a:3a:69:ab:80:d2:74:fd:45:8a:31:8f:80:
dc:83:0e:19:18:41:48:a6:43:94:b0:7f:57:7b:c5:
c2:d1:bf:b6:14:03:45:d7:67:77:ba:ec:af:c6:39:
a2:4a:09:97:59:3e:b8:af:80:57:a6:c0:50:cc:02:
06:03:0d:28:ed:6e:f0:f0:b5:1a:1f:a5:5a:f2:90:
b4:3c:0c:2f:20:71:2d:62:1e:ac:b3:b3:2b:83:2b:
d6:e9:2e:3a:01:51:33:2e:d6:e0:04:9e:f8:5e:71:
3d:b5:b9:a5:f6:f3:b9:6c:68:6c:fc:e6:d4:75:e6:
04:a9:bb:c4:2e:20:9f:f6:2e:5d:0f:54:e2:a2:62:
aa:34:00:cc:1a:66:5d:2c:a0:eb:aa:35:90:2e:5a:
74:81:ed:37:4f:23:54:7a:1f:14:5d:36:aa:5c:db:
d8:0f:98:f9:9b:3a:ad:58:98:54:0f:18:ec:e6:36:
07:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:8E:4A:21:69:B7:84:24:DE:F5:B5:E7:BC:BA:85:02:1C:6B:8A:56
X509v3 Authority Key Identifier:
keyid:2A:3C:C9:E5:51:9A:5A:5B:B1:3D:08:31:0C:A9:34:82:48:96:FA:5A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36E29ED/1C5B5D02DC0911EC9CEBDE9BF1222468/KjzJ5VGaWluxPQgxDKk0gkiW-lo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/KjzJ5VGaWluxPQgxDKk0gkiW-lo.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36E29ED/1C5B5D02DC0911EC9CEBDE9BF1222468/6801F8BA052F11EEA1EA00584AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2c0f:5a00::/32
Signature Algorithm: sha256WithRSAEncryption
aa:35:3c:ec:02:1b:40:c6:2c:5d:e5:78:53:3b:64:48:ee:e0:
ed:46:49:09:f3:4e:2c:37:53:c1:36:5e:73:3f:ee:c5:1e:de:
27:aa:6d:bc:27:28:9c:8c:af:f2:32:33:ce:09:26:f7:f3:d2:
21:31:3e:4f:25:5a:12:1f:ca:15:d8:59:ee:e8:94:af:52:31:
7d:0d:2e:6c:89:9d:1b:01:1c:98:f5:87:94:75:f2:e4:d3:ff:
1c:eb:d0:08:65:c6:03:00:e1:94:37:63:34:c9:ad:9e:cc:ef:
28:a6:bb:f3:14:48:34:0e:ff:b4:21:10:00:44:44:d1:7b:d4:
ae:46:f2:44:ea:09:27:35:70:a5:d4:cb:7a:78:2a:f1:5b:61:
10:6a:32:07:23:77:f6:a2:b8:eb:a4:86:bf:30:43:75:af:ed:
30:04:eb:b1:e2:2c:97:86:b4:86:0b:c9:cf:65:e1:11:4b:1f:
24:4c:eb:84:16:ad:6a:5c:e2:f8:18:ff:9e:f6:d4:19:d0:26:
0e:c2:3a:10:bc:61:f2:8b:0a:e9:22:3e:34:45:9e:a2:46:c4:
31:0a:0d:dd:b0:af:96:7a:e0:98:34:c1:57:03:aa:69:56:b1:
60:6b:6b:47:c2:78:78:e1:04:0c:d5:1d:83:df:8d:5e:00:40:
4f:e0:13:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jul 1 02:59:26 2024 by rpki-client on console-ams.rpki-client.org