Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36F62C3/49DEC774556911E5A9048281F8AEA228/A1F0AD6EFD4711ECBB09B984F1222468.roa
File: A1F0AD6EFD4711ECBB09B984F1222468.roa (raw, json)
Hash identifier: e40ucQ5X1K1jJnr0HcR4cj3IgkbrgCfKLITSFD67Sh0=
Subject key identifier: 4C:C3:0E:65:7B:92:CA:DA:E8:30:53:01:3F:20:D1:BD:BE:BB:3D:45
Certificate issuer: /CN=F36F62C3AF/serialNumber=D7D72A6487BD776A8BBFAD4F38613C3B15350983
Certificate serial: 09EF
Authority key identifier: D7:D7:2A:64:87:BD:77:6A:8B:BF:AD:4F:38:61:3C:3B:15:35:09:83
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/19cqZIe9d2qLv61POGE8OxU1CYM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36F62C3/49DEC774556911E5A9048281F8AEA228/A1F0AD6EFD4711ECBB09B984F1222468.roa
Signing time: Wed 06 Jul 2022 16:21:04 +0000
ROA not before: Wed 06 Jul 2022 16:20:53 +0000
ROA not after: Wed 24 Jul 2024 16:20:53 +0000
asID: 6083
IP address blocks: 2001:42a0::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2543 (0x9ef)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36F62C3AF/serialNumber=D7D72A6487BD776A8BBFAD4F38613C3B15350983
Validity
Not Before: Jul 6 16:20:53 2022 GMT
Not After : Jul 24 16:20:53 2024 GMT
Subject: CN=62c5b670-fc40
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f0:7d:ed:3b:bc:9b:57:c0:c7:c4:14:47:7e:ca:
0d:89:29:1f:a3:ff:23:b9:93:58:aa:eb:cb:f8:54:
55:66:cd:94:1a:66:82:90:31:f9:b9:d8:00:cc:56:
f9:a3:2f:0a:f1:0a:53:81:4a:cd:03:83:e3:ef:03:
c0:55:a9:af:5a:06:ff:6c:aa:50:34:b9:f6:85:8b:
db:81:11:94:3c:02:50:fd:29:68:bd:35:2b:e6:4f:
f0:14:d7:68:4d:d4:2b:b1:fb:0f:af:ec:92:55:19:
04:f7:a4:b9:15:0e:65:37:86:28:39:63:16:a2:6c:
47:da:01:f3:a5:85:0b:bc:e5:08:d1:5f:12:74:79:
be:6a:28:d6:f2:41:66:16:d3:10:4b:c9:51:5d:00:
8c:ab:90:13:83:cd:df:a5:96:52:13:57:ea:f3:2b:
08:ba:44:f1:af:d6:fa:cf:f1:f6:25:52:70:c8:82:
6f:35:2a:f1:9d:b8:3e:9a:9d:88:4f:1d:2b:43:1e:
97:87:e3:5c:c7:82:f3:32:15:e1:66:57:e5:b3:79:
79:71:8d:be:b5:7c:58:a7:06:13:0e:d2:56:0e:b5:
b3:65:a6:01:d8:95:97:00:a2:df:40:2c:73:7b:8d:
9a:06:95:58:34:fd:2d:ae:9b:cb:5b:1b:95:4e:f6:
66:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:C3:0E:65:7B:92:CA:DA:E8:30:53:01:3F:20:D1:BD:BE:BB:3D:45
X509v3 Authority Key Identifier:
keyid:D7:D7:2A:64:87:BD:77:6A:8B:BF:AD:4F:38:61:3C:3B:15:35:09:83
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36F62C3/49DEC774556911E5A9048281F8AEA228/19cqZIe9d2qLv61POGE8OxU1CYM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/19cqZIe9d2qLv61POGE8OxU1CYM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36F62C3/49DEC774556911E5A9048281F8AEA228/A1F0AD6EFD4711ECBB09B984F1222468.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2001:42a0::/32
Signature Algorithm: sha256WithRSAEncryption
b0:67:a9:e3:3a:74:8a:fc:f1:32:73:dd:75:04:24:17:53:40:
33:0b:c4:95:9d:27:81:b3:5c:48:9c:2d:c3:3d:3d:1a:30:eb:
e3:99:6d:9c:41:45:7e:56:97:a8:92:b0:7b:31:63:00:35:91:
83:68:65:7b:db:44:7c:f2:7b:0a:e6:c1:f0:3b:84:1a:6c:65:
0a:33:25:c4:8d:c1:26:e6:96:2a:e8:10:6d:5f:bc:61:4e:78:
57:61:53:18:3a:a2:bc:4e:6c:6d:27:5b:07:fe:c8:fb:c2:c8:
25:5e:6a:f0:ba:13:32:13:aa:3a:71:3c:1b:6c:61:b8:15:40:
42:b8:1b:df:1f:3b:ec:87:8d:11:13:aa:58:16:a4:08:cb:62:
17:85:71:a5:dd:c0:3a:82:0f:09:ea:d6:fc:21:f6:bb:04:3b:
6d:e1:07:a2:37:53:ee:d3:ad:b0:9c:80:6f:89:38:5d:c2:aa:
3a:f3:1a:3b:3e:d4:91:49:a9:15:d0:c9:e2:49:75:e6:b4:d7:
9d:76:4b:7c:ef:ac:4d:99:36:d8:6c:97:7b:6c:41:1c:5b:80:
68:8b:9f:50:97:ba:7e:ca:98:3e:dc:bd:a4:65:7a:af:a4:aa:
35:cb:cd:01:a9:f0:58:1f:3d:9b:17:03:e1:cb:6c:6a:24:97:
a4:96:c4:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 25 03:28:17 2024 by rpki-client on console-ams.rpki-client.org