Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36F8F4F/8A377BBC2A7511EC90817559D8A014CE/04170E303D1F11EE91FFC3314AD9E6FC.roa
File: 04170E303D1F11EE91FFC3314AD9E6FC.roa (raw, json)
Hash identifier: ayPHFjK6aO/bSOPQ+RpYmlgYnZ27XNYVUqmk6I1tIMY=
Subject key identifier: 4A:03:2B:C7:C0:34:95:20:D0:E9:CF:BA:FB:0E:B8:6C:6C:8E:F9:F2
Certificate issuer: /CN=F36F8F4FAF/serialNumber=DC17A0EC58652D31896123A65610C3A32046556B
Certificate serial: 02D9
Authority key identifier: DC:17:A0:EC:58:65:2D:31:89:61:23:A6:56:10:C3:A3:20:46:55:6B
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/3Beg7FhlLTGJYSOmVhDDoyBGVWs.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36F8F4F/8A377BBC2A7511EC90817559D8A014CE/04170E303D1F11EE91FFC3314AD9E6FC.roa
Signing time: Thu 17 Aug 2023 16:56:32 +0000
ROA not before: Thu 17 Aug 2023 16:56:28 +0000
ROA not after: Sat 17 Aug 2024 16:56:28 +0000
asID: 19905
IP address blocks: 41.208.100.0/24 maxlen: 24
41.208.101.0/24 maxlen: 24
41.208.102.0/24 maxlen: 24
41.208.103.0/24 maxlen: 24
41.208.104.0/24 maxlen: 24
41.208.105.0/24 maxlen: 24
41.208.106.0/24 maxlen: 24
41.208.107.0/24 maxlen: 24
41.208.108.0/24 maxlen: 24
41.208.109.0/24 maxlen: 24
41.208.110.0/24 maxlen: 24
41.208.112.0/24 maxlen: 24
41.208.113.0/24 maxlen: 24
41.208.114.0/24 maxlen: 24
41.208.115.0/24 maxlen: 24
41.208.117.0/24 maxlen: 24
41.208.118.0/24 maxlen: 24
41.208.119.0/24 maxlen: 24
41.208.120.0/24 maxlen: 24
41.208.121.0/24 maxlen: 24
41.208.122.0/24 maxlen: 24
41.208.123.0/24 maxlen: 24
41.208.124.0/24 maxlen: 24
41.208.125.0/24 maxlen: 24
41.208.126.0/24 maxlen: 24
41.208.127.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 729 (0x2d9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36F8F4FAF/serialNumber=DC17A0EC58652D31896123A65610C3A32046556B
Validity
Not Before: Aug 17 16:56:28 2023 GMT
Not After : Aug 17 16:56:28 2024 GMT
Subject: CN=64de5140-0682
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:1b:81:1f:cd:9e:9c:94:e1:23:82:1c:46:98:
76:9b:86:39:73:eb:1b:0c:15:e3:08:32:f5:3f:ae:
43:22:61:af:c6:02:47:cc:ff:3e:4f:b3:89:be:22:
86:52:a5:a5:47:2e:75:08:d9:7b:ac:fc:c8:20:e3:
5b:05:ef:19:2a:14:cb:79:95:d1:d8:bc:51:26:8c:
da:dc:91:b1:75:16:17:52:57:6e:a7:6c:ac:db:25:
5e:0f:d1:56:36:11:c6:d3:ac:cc:32:15:c5:b3:6a:
c6:6b:be:57:e3:7a:5a:c5:72:22:45:80:40:f8:f7:
07:70:93:70:b9:4f:ca:a8:c9:68:bb:ac:f1:d3:1f:
a6:51:35:73:be:a9:d8:be:ed:29:e2:b7:ad:b4:fe:
d7:f7:3e:5b:98:21:c2:70:63:c6:49:92:c2:d9:80:
63:a3:d2:24:06:23:35:35:31:e6:64:97:09:28:b7:
9c:68:49:7c:92:34:e1:cc:0a:9f:69:97:c4:0f:2b:
99:63:bd:a8:cf:05:86:59:0c:5e:a6:5d:79:4a:10:
58:4c:87:7a:a6:c1:cd:b5:05:6d:3b:1b:44:2a:9a:
50:9a:f2:32:eb:8c:70:33:2f:ab:9d:83:2b:0c:86:
26:93:7c:ec:a5:7c:7c:af:8e:84:fa:57:95:8e:f8:
bf:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:03:2B:C7:C0:34:95:20:D0:E9:CF:BA:FB:0E:B8:6C:6C:8E:F9:F2
X509v3 Authority Key Identifier:
keyid:DC:17:A0:EC:58:65:2D:31:89:61:23:A6:56:10:C3:A3:20:46:55:6B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36F8F4F/8A377BBC2A7511EC90817559D8A014CE/3Beg7FhlLTGJYSOmVhDDoyBGVWs.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/3Beg7FhlLTGJYSOmVhDDoyBGVWs.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36F8F4F/8A377BBC2A7511EC90817559D8A014CE/04170E303D1F11EE91FFC3314AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
41.208.100.0-41.208.110.255
41.208.112.0/22
41.208.117.0-41.208.127.255
Signature Algorithm: sha256WithRSAEncryption
6b:29:b1:4f:04:a7:75:38:b8:e6:b7:91:2f:2f:43:0d:0c:8d:
c0:5f:70:39:17:95:fd:60:35:b1:02:cb:6b:7f:4c:d0:40:e7:
b1:bf:7e:17:6a:e7:e9:72:9b:b1:ed:0d:ce:89:0f:1a:6b:84:
0c:1f:9e:d3:2f:57:57:e1:3d:59:b9:cf:57:e0:7f:86:44:56:
43:e0:d8:c6:06:32:f9:8a:6c:8b:b0:c5:73:7f:ef:fb:76:fa:
01:7e:cf:cb:bc:e2:85:fe:4e:ee:91:07:07:ee:fb:4d:c9:38:
33:b9:c5:47:5d:d7:c3:a2:93:8d:a4:8e:86:6b:13:b1:45:e1:
e9:cb:67:3b:99:34:1d:6c:81:26:a1:1b:3a:1d:28:fb:af:29:
fc:1e:6e:7b:45:66:42:60:ce:12:22:44:3d:b0:4f:f7:5b:c8:
ca:62:ff:47:b1:89:ee:ce:10:df:1d:27:e9:32:bb:c6:ef:76:
a5:16:eb:ce:96:26:f4:5a:c0:fe:79:4f:3a:d6:c7:0a:d4:eb:
f4:06:b4:12:f1:02:e2:e8:3a:f9:cb:25:a9:9b:15:15:1a:bf:
4b:4b:c5:eb:bd:63:8d:da:cc:29:e8:7c:01:48:46:80:61:b4:
8e:36:6b:60:6d:74:02:f7:d3:65:97:c7:0a:54:8f:b0:8e:c4:
cc:cd:37:42
-----BEGIN CERTIFICATE-----
MIIFnzCCBIegAwIBAgICAtkwDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAwwKRjM2
RjhGNEZBRjExMC8GA1UEBRMoREMxN0EwRUM1ODY1MkQzMTg5NjEyM0E2NTYxMEMz
QTMyMDQ2NTU2QjAeFw0yMzA4MTcxNjU2MjhaFw0yNDA4MTcxNjU2MjhaMBgxFjAU
BgNVBAMTDTY0ZGU1MTQwLTA2ODIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQC4G4EfzZ6clOEjghxGmHabhjlz6xsMFeMIMvU/rkMiYa/GAkfM/z5Ps4m+
IoZSpaVHLnUI2Xus/Mgg41sF7xkqFMt5ldHYvFEmjNrckbF1FhdSV26nbKzbJV4P
0VY2EcbTrMwyFcWzasZrvlfjelrFciJFgED49wdwk3C5T8qoyWi7rPHTH6ZRNXO+
qdi+7Snit620/tf3PluYIcJwY8ZJksLZgGOj0iQGIzU1MeZklwkot5xoSXySNOHM
Cp9pl8QPK5ljvajPBYZZDF6mXXlKEFhMh3qmwc21BW07G0QqmlCa8jLrjHAzL6ud
gysMhiaTfOylfHyvjoT6V5WO+L8dAgMBAAGjggLBMIICvTAdBgNVHQ4EFgQUSgMr
x8A0lSDQ6c+6+w64bGyO+fIwHwYDVR0jBBgwFoAU3Beg7FhlLTGJYSOmVhDDoyBG
VWswDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNkY4RjRGLzhBMzc3QkJDMkE3NTExRUM5MDgxNzU1OUQ4QTAxNENFLzNCZWc3
RmhsTFRHSllTT21WaEREb3lCR1ZXcy5jcmwwZwYIKwYBBQUHAQEEWzBZMFcGCCsG
AQUFBzAChktyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hZnJp
bmljLzNCZWc3RmhsTFRHSllTT21WaEREb3lCR1ZXcy5jZXIwTwYDVR0gAQH/BEUw
QzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5p
Yy5uZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEF
BQcwC4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJl
cl9yZXBvc2l0b3J5L0YzNkY4RjRGLzhBMzc3QkJDMkE3NTExRUM5MDgxNzU1OUQ4
QTAxNENFLzA0MTcwRTMwM0QxRjExRUU5MUZGQzMzMTRBRDlFNkZDLnJvYTA1Bggr
BgEFBQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54
bWwwOwYIKwYBBQUHAQcBAf8ELDAqMCgEAgABMCIwDAMEAinQZAMEACnQbgMEAinQ
cDAMAwQAKdB1AwQHKdAAMA0GCSqGSIb3DQEBCwUAA4IBAQBrKbFPBKd1OLjmt5Ev
L0MNDI3AX3A5F5X9YDWxAstrf0zQQOexv34Xaufpcpux7Q3OiQ8aa4QMH57TL1dX
4T1Zuc9X4H+GRFZD4NjGBjL5imyLsMVzf+/7dvoBfs/LvOKF/k7ukQcH7vtNyTgz
ucVHXdfDopONpI6GaxOxReHpy2c7mTQdbIEmoRs6HSj7ryn8Hm57RWZCYM4SIkQ9
sE/3W8jKYv9HsYnuzhDfHSfpMrvG73alFuvOlib0WsD+eU861scK1Ov0BrQS8QLi
6Dr5yyWpmxUVGr9LS8XrvWON2swp6HwBSEaAYbSONmtgbXQC99Nll8cKVI+wjsTM
zTdC
-----END CERTIFICATE-----
Generated at Sun Aug 18 05:04:50 2024 by rpki-client on console-fra.rpki-client.org