Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36FA15D/98166C5E623711EB931CB859F8AEA228/2599024440C011EEB889793A4AD9E6FC.roa
File: 2599024440C011EEB889793A4AD9E6FC.roa (raw, json)
Hash identifier: P/vH26FOiv+7FFQZ1cUKUZp8fBEtTo4O+lU8lswZIzY=
Subject key identifier: 27:8D:BA:15:E3:16:8D:95:BE:D8:FC:67:CB:49:A6:F8:32:A6:72:CC
Certificate issuer: /CN=F36FA15DAR/serialNumber=44A9F69F4141DA76B7353EB0D581523AFE2B81E1
Certificate serial: 0BCE
Authority key identifier: 44:A9:F6:9F:41:41:DA:76:B7:35:3E:B0:D5:81:52:3A:FE:2B:81:E1
Authority info access: rsync://rpki.afrinic.net/repository/arin/RKn2n0FB2na3NT6w1YFSOv4rgeE.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36FA15D/98166C5E623711EB931CB859F8AEA228/2599024440C011EEB889793A4AD9E6FC.roa
Signing time: Tue 22 Aug 2023 07:47:30 +0000
ROA not before: Tue 22 Aug 2023 07:47:27 +0000
ROA not after: Thu 22 Aug 2024 07:47:27 +0000
asID: 203020
IP address blocks: 161.123.102.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3022 (0xbce)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36FA15DAR/serialNumber=44A9F69F4141DA76B7353EB0D581523AFE2B81E1
Validity
Not Before: Aug 22 07:47:27 2023 GMT
Not After : Aug 22 07:47:27 2024 GMT
Subject: CN=64e46812-13d2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:3a:0c:87:ef:0b:2f:fb:08:2d:31:12:16:44:
e4:19:c7:2f:de:41:89:a6:69:d3:91:dd:41:41:25:
f0:c5:78:3e:f9:a7:07:9f:e0:bc:2a:2a:bf:2b:83:
1c:b6:70:d7:6c:51:08:49:be:70:b1:be:38:49:e8:
8b:b8:86:2a:68:8e:10:eb:d6:b0:bf:74:84:c6:c9:
84:61:95:0d:85:54:a6:3b:de:f1:dd:49:9c:9e:b8:
b6:d6:91:1e:4c:e9:19:f1:96:da:d9:42:33:e8:0e:
98:56:35:ec:af:00:e0:66:2b:ec:5d:ed:68:e2:3e:
48:d3:db:e9:48:77:71:95:f8:88:ab:14:45:08:e6:
3e:de:75:95:46:43:df:3c:a4:2c:5c:9d:7a:13:9d:
81:9b:13:66:2e:8f:20:97:dd:04:60:b0:fa:3c:ac:
03:c3:60:e4:75:f1:b9:1f:d8:dc:c9:8b:26:88:1c:
9e:02:14:b1:b2:ba:ab:8d:44:3c:4d:ec:77:1b:56:
58:2c:66:78:65:49:13:a9:7d:b9:99:ec:ae:16:f6:
b8:45:03:cf:e4:6a:91:53:16:0d:69:ad:79:e4:58:
6c:e2:58:b9:7f:e4:d3:14:31:17:22:37:e4:65:5c:
47:02:34:f9:bf:3a:c2:19:8a:f8:ff:d3:be:01:26:
e4:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:8D:BA:15:E3:16:8D:95:BE:D8:FC:67:CB:49:A6:F8:32:A6:72:CC
X509v3 Authority Key Identifier:
keyid:44:A9:F6:9F:41:41:DA:76:B7:35:3E:B0:D5:81:52:3A:FE:2B:81:E1
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36FA15D/98166C5E623711EB931CB859F8AEA228/RKn2n0FB2na3NT6w1YFSOv4rgeE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/RKn2n0FB2na3NT6w1YFSOv4rgeE.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36FA15D/98166C5E623711EB931CB859F8AEA228/2599024440C011EEB889793A4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
161.123.102.0/23
Signature Algorithm: sha256WithRSAEncryption
81:a1:4f:14:fb:ef:35:2d:24:84:98:5e:a0:8e:52:e7:e7:27:
d2:46:bc:75:4d:a3:04:8e:55:83:59:5c:d6:40:45:ab:64:0c:
c9:44:3c:62:dd:26:0a:ea:71:39:24:b8:aa:b0:df:75:cc:57:
f3:1b:3b:af:75:f7:65:83:56:e9:35:f6:f0:79:28:a7:4b:85:
57:a2:72:0b:f3:60:cf:34:de:74:4e:5e:11:d7:82:bb:02:cd:
06:69:3b:ad:1f:fb:7e:7a:b2:bf:6e:eb:79:70:d1:96:35:04:
74:17:b3:d5:65:b1:a8:ef:ba:5a:0c:30:af:ca:5d:e1:99:13:
8f:d0:4f:0a:ba:1c:09:3d:2e:f0:08:ec:1b:f8:16:8a:88:0f:
ff:ab:77:4f:97:dc:b4:d8:15:ba:74:ed:9b:6b:34:3d:f2:50:
b5:fb:69:a3:e3:8e:6b:23:d9:9c:b6:9e:b2:bc:75:16:50:81:
27:38:87:d1:03:52:68:ee:fe:d5:9c:89:aa:04:5a:13:64:1c:
27:73:e1:99:38:b1:48:5d:d3:06:e9:2c:79:ee:fc:2a:95:31:
63:37:ad:c2:37:ab:87:76:96:95:b0:ae:5c:82:ff:65:dd:f3:
64:e1:15:85:a9:48:98:c4:6c:d5:6e:3b:ac:df:33:5a:db:de:
87:f5:44:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Aug 22 17:02:48 2024 by rpki-client on console-fra.rpki-client.org