Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36F8F4F/8A377BBC2A7511EC90817559D8A014CE/DED68D3A3D3211EEA413666E4AD9E6FC.roa
File: DED68D3A3D3211EEA413666E4AD9E6FC.roa (raw, json)
Hash identifier: g1xojRsncaOEwX3XM0w/6CVVqGbKvnQtaTT93nYyB2U=
Subject key identifier: 22:B7:ED:17:E5:03:84:71:07:27:C6:AD:B8:6E:32:AE:FE:DA:32:24
Certificate issuer: /CN=F36F8F4FAF/serialNumber=DC17A0EC58652D31896123A65610C3A32046556B
Certificate serial: 02DB
Authority key identifier: DC:17:A0:EC:58:65:2D:31:89:61:23:A6:56:10:C3:A3:20:46:55:6B
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/3Beg7FhlLTGJYSOmVhDDoyBGVWs.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36F8F4F/8A377BBC2A7511EC90817559D8A014CE/DED68D3A3D3211EEA413666E4AD9E6FC.roa
Signing time: Thu 17 Aug 2023 19:18:39 +0000
ROA not before: Thu 17 Aug 2023 19:18:36 +0000
ROA not after: Sat 17 Aug 2024 19:18:36 +0000
asID: 19905
IP address blocks: 41.208.68.0/24 maxlen: 24
41.208.70.0/24 maxlen: 24
41.208.71.0/24 maxlen: 24
41.208.72.0/24 maxlen: 24
41.208.73.0/24 maxlen: 24
41.208.74.0/24 maxlen: 24
41.208.75.0/24 maxlen: 24
41.208.76.0/24 maxlen: 24
41.208.79.0/24 maxlen: 24
41.208.80.0/24 maxlen: 24
41.208.82.0/24 maxlen: 24
41.208.86.0/24 maxlen: 24
41.208.87.0/24 maxlen: 24
41.208.92.0/24 maxlen: 24
41.208.111.0/24 maxlen: 24
41.208.116.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 731 (0x2db)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36F8F4FAF/serialNumber=DC17A0EC58652D31896123A65610C3A32046556B
Validity
Not Before: Aug 17 19:18:36 2023 GMT
Not After : Aug 17 19:18:36 2024 GMT
Subject: CN=64de728f-199c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:d8:34:e4:56:8a:91:33:81:62:ae:cd:10:5e:
f6:ba:5f:0a:f4:84:72:bd:10:09:87:a5:27:6b:47:
5a:d7:6f:bb:68:15:78:88:e8:65:ba:2a:85:6d:a5:
5e:c8:51:2e:82:08:8c:fd:52:08:b8:3d:f3:75:a1:
64:20:82:87:35:df:d8:ed:15:81:e6:f6:e3:c6:0e:
89:8c:af:9c:ad:c7:53:5a:cc:f4:4f:2d:77:c7:44:
6c:e6:e5:2a:3f:df:9e:0e:78:b2:9d:95:20:f7:cc:
b7:7d:9a:41:3d:9a:72:12:56:44:22:12:54:72:e4:
e9:05:cf:2e:dd:a3:16:92:94:92:35:78:7a:05:3a:
9a:89:ee:88:10:47:f9:47:94:85:82:82:4d:3b:30:
2e:e7:6f:fb:8b:4c:ef:16:21:71:17:73:2d:f9:8c:
79:05:a6:2d:cd:02:38:c4:ea:a1:ca:87:f2:16:aa:
3d:ed:8b:6c:0d:0d:87:90:8c:4c:e1:59:c6:ee:ab:
9c:da:ef:47:83:58:fd:fb:fc:f4:7c:8c:6c:76:5c:
1c:99:ea:65:b8:24:4a:16:84:c4:9d:50:c1:87:11:
5a:07:cd:87:9f:2b:62:4f:4c:54:e4:16:0f:30:28:
86:7e:d7:5f:95:b3:47:1c:88:96:3b:9f:d9:86:20:
6b:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:B7:ED:17:E5:03:84:71:07:27:C6:AD:B8:6E:32:AE:FE:DA:32:24
X509v3 Authority Key Identifier:
keyid:DC:17:A0:EC:58:65:2D:31:89:61:23:A6:56:10:C3:A3:20:46:55:6B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36F8F4F/8A377BBC2A7511EC90817559D8A014CE/3Beg7FhlLTGJYSOmVhDDoyBGVWs.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/3Beg7FhlLTGJYSOmVhDDoyBGVWs.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36F8F4F/8A377BBC2A7511EC90817559D8A014CE/DED68D3A3D3211EEA413666E4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
41.208.68.0/24
41.208.70.0-41.208.76.255
41.208.79.0-41.208.80.255
41.208.82.0/24
41.208.86.0/23
41.208.92.0/24
41.208.111.0/24
41.208.116.0/24
Signature Algorithm: sha256WithRSAEncryption
4f:81:dd:06:eb:85:bd:12:8d:e9:74:8d:de:af:8d:88:bc:62:
af:79:00:4b:6e:ea:fa:37:e5:19:fb:fd:60:01:c3:ae:3c:17:
b4:8c:e7:e2:4b:72:88:90:7b:8d:10:27:39:fe:f2:42:ed:9d:
10:03:f5:6f:cb:a0:c1:df:53:30:47:1c:85:88:32:19:65:a5:
68:fb:dc:78:a0:6f:51:5f:07:98:0e:56:01:70:60:4f:72:7f:
40:e6:f6:5c:d5:70:57:9d:2a:b1:37:50:3c:8b:37:74:b4:b2:
23:d8:14:49:29:a4:db:25:ad:d1:97:fa:a9:0d:b7:e9:17:63:
92:11:67:7d:7e:ef:07:cb:e5:cc:2c:ce:ac:4d:e0:50:9e:16:
89:ad:0d:b4:64:d5:9c:f0:7c:34:19:a1:86:a4:44:90:ef:6d:
99:c3:eb:6b:2a:09:28:58:13:b9:2f:7c:ed:ba:9d:ca:d2:2c:
03:2e:33:18:74:cc:6e:30:3f:69:b1:8b:44:75:70:fb:c7:a5:
ab:3b:8b:55:46:83:2d:53:05:7e:a5:5c:9c:27:c8:13:85:9e:
ad:1a:9d:0a:4f:50:c2:84:e2:55:97:de:9c:11:56:be:0b:3e:
da:1a:c4:da:2e:41:d9:9d:70:af:e8:12:88:66:31:e3:bb:30:
1f:62:7b:dc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Aug 18 04:58:30 2024 by rpki-client on console-ams.rpki-client.org