Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36F0628/F0CCBE7CFBA011EBAB786C49D8A014CE/281E3C96E8C811ED8D522B444AD9E6FC.roa
File: 281E3C96E8C811ED8D522B444AD9E6FC.roa (raw, json)
Hash identifier: lJ3nal9WNhvI08Uti08LpsyhukrSp/k/ty9eBrG+Dz8=
Subject key identifier: DF:52:6A:0D:77:EF:04:16:B9:23:F2:06:86:FE:2B:21:81:98:9F:24
Certificate issuer: /CN=F36F0628AF/serialNumber=8605D7599A0402F70EC2F258D6C16BD2E4E8D1FE
Certificate serial: 02D0
Authority key identifier: 86:05:D7:59:9A:04:02:F7:0E:C2:F2:58:D6:C1:6B:D2:E4:E8:D1:FE
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/hgXXWZoEAvcOwvJY1sFr0uTo0f4.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36F0628/F0CCBE7CFBA011EBAB786C49D8A014CE/281E3C96E8C811ED8D522B444AD9E6FC.roa
Signing time: Tue 02 May 2023 09:03:08 +0000
ROA not before: Tue 02 May 2023 09:03:05 +0000
ROA not after: Wed 02 Aug 2023 09:03:05 +0000
asID: 29802
IP address blocks: 196.44.125.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 720 (0x2d0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36F0628AF/serialNumber=8605D7599A0402F70EC2F258D6C16BD2E4E8D1FE
Validity
Not Before: May 2 09:03:05 2023 GMT
Not After : Aug 2 09:03:05 2023 GMT
Subject: CN=6450d1cc-9ae7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:fb:f5:23:43:08:9b:fb:64:26:38:7c:28:c4:
7b:bf:8a:a0:a0:03:7f:5b:0a:6b:ad:5c:f4:3c:b3:
3d:e9:19:ce:01:ee:37:cf:99:98:de:e3:dc:c8:ff:
34:01:5a:a3:40:ec:7d:6c:b0:ee:bd:62:bb:46:a1:
52:f3:8d:61:23:92:73:f9:db:fd:c9:b7:de:42:a9:
6e:72:d8:b3:6a:06:e6:2e:ab:17:92:f5:6b:c4:e1:
30:24:ea:a5:69:c2:f5:7b:e1:38:58:2e:59:98:0d:
56:c0:1c:17:cf:30:0e:49:43:16:6b:e8:24:64:72:
1e:ba:ed:73:79:a4:84:f5:7d:a0:e2:93:44:08:c6:
5f:a2:73:b2:35:47:7d:db:df:86:a7:d8:2f:42:dc:
44:81:fd:02:50:59:be:e7:05:4b:1c:f9:2f:aa:77:
6a:9d:38:c7:ff:ee:c4:d8:0d:98:5a:b3:99:3c:18:
1f:76:7c:99:4e:6e:dd:c4:29:7b:50:b7:4e:a7:eb:
6c:78:f2:9e:30:6b:7c:00:8b:ba:b9:77:c5:62:36:
c0:36:ff:46:b2:a9:fa:96:a6:73:1f:79:7c:41:c4:
f5:2b:3f:52:d3:13:33:b4:b1:7c:99:0c:d1:ff:47:
e5:5b:ec:51:97:65:e6:05:f6:1e:ca:d5:a1:88:c0:
45:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:52:6A:0D:77:EF:04:16:B9:23:F2:06:86:FE:2B:21:81:98:9F:24
X509v3 Authority Key Identifier:
keyid:86:05:D7:59:9A:04:02:F7:0E:C2:F2:58:D6:C1:6B:D2:E4:E8:D1:FE
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36F0628/F0CCBE7CFBA011EBAB786C49D8A014CE/hgXXWZoEAvcOwvJY1sFr0uTo0f4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/hgXXWZoEAvcOwvJY1sFr0uTo0f4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36F0628/F0CCBE7CFBA011EBAB786C49D8A014CE/281E3C96E8C811ED8D522B444AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
196.44.125.0/24
Signature Algorithm: sha256WithRSAEncryption
55:6a:60:e3:3d:cb:80:d7:49:e7:1a:34:9c:1c:64:5e:5a:80:
47:f6:61:8c:9b:38:8f:4f:41:bd:26:cb:86:c8:00:9b:1f:22:
20:f8:86:ab:d5:d8:89:83:d5:e4:f2:7e:2f:ab:9e:7e:e5:c6:
97:b7:23:ac:dd:63:e0:34:8b:46:c2:9b:9c:0a:91:11:32:1a:
ae:51:5f:59:f7:a9:86:63:40:4c:b9:8c:55:eb:45:16:4c:37:
0d:8e:55:e4:67:04:31:c3:e2:33:9e:4b:96:b2:c8:b9:25:83:
59:79:ac:d9:fe:f7:fe:b0:ed:0b:fd:4b:e3:1f:85:25:38:35:
f9:2f:f6:94:cf:6d:bd:a3:e1:5b:79:f8:0a:1e:12:f0:4d:a4:
5c:92:11:bc:d0:eb:42:c2:ac:11:e0:e8:2c:48:22:81:f8:e0:
33:42:49:bc:34:3f:2f:89:6c:d9:90:a5:7d:55:7d:fc:97:e1:
12:66:e7:49:b1:dd:28:c9:18:59:20:a9:43:5d:31:ea:49:73:
70:38:c9:6d:0c:9c:13:eb:fa:60:fb:56:46:34:4c:b6:45:6b:
c3:bf:33:37:9b:f6:91:e9:2e:40:d4:96:59:b5:ee:11:c9:97:
bb:66:a0:4a:20:fd:99:bc:a4:7a:42:eb:16:95:34:5a:4b:67:
ad:69:b9:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:50:53 2024 by rpki-client on console-fra.rpki-client.org