Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36FA15D/98166C5E623711EB931CB859F8AEA228/CE97635AEBEC11ED83AAAF6D4AD9E6FC.roa
File: CE97635AEBEC11ED83AAAF6D4AD9E6FC.roa (raw, json)
Hash identifier: lVmmgfJMbUK7LXW8Q+cbc6m9fsF5At1WvKXkyoX6sek=
Subject key identifier: EC:E7:64:F1:06:7C:A0:4D:E0:1F:FE:39:45:16:CE:32:71:6E:19:4B
Certificate issuer: /CN=F36FA15DAR/serialNumber=44A9F69F4141DA76B7353EB0D581523AFE2B81E1
Certificate serial: 0AB1
Authority key identifier: 44:A9:F6:9F:41:41:DA:76:B7:35:3E:B0:D5:81:52:3A:FE:2B:81:E1
Authority info access: rsync://rpki.afrinic.net/repository/arin/RKn2n0FB2na3NT6w1YFSOv4rgeE.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36FA15D/98166C5E623711EB931CB859F8AEA228/CE97635AEBEC11ED83AAAF6D4AD9E6FC.roa
Signing time: Sat 06 May 2023 09:03:03 +0000
ROA not before: Sat 06 May 2023 09:02:59 +0000
ROA not after: Mon 06 May 2024 09:02:59 +0000
asID: 149020
IP address blocks: 161.123.69.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2737 (0xab1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36FA15DAR/serialNumber=44A9F69F4141DA76B7353EB0D581523AFE2B81E1
Validity
Not Before: May 6 09:02:59 2023 GMT
Not After : May 6 09:02:59 2024 GMT
Subject: CN=645617c7-93c5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:9c:46:a9:8c:44:f5:11:6e:fc:90:94:e8:ff:
b9:27:4c:d6:59:35:b0:0a:c9:16:3c:33:49:c2:15:
83:b7:a6:04:61:f9:f4:71:d0:35:1f:b9:b9:b3:5f:
dc:76:b6:0d:de:e2:46:e7:90:ac:46:34:35:47:ba:
68:63:70:90:19:32:e5:7b:e5:70:f4:a1:b0:10:46:
e8:8b:0d:0d:dd:e9:56:bc:fc:7f:26:30:de:d5:b6:
3c:78:07:69:67:dc:17:bc:81:c5:7b:70:91:1f:d4:
0e:93:e4:cc:5e:be:d7:dc:f2:d0:5e:50:57:4d:21:
79:b5:6f:20:67:6b:ff:26:99:19:9c:16:47:63:f6:
8e:d4:a6:2e:00:18:0a:e1:22:d1:ad:34:15:12:4c:
74:8c:01:6c:f2:ca:9a:c2:54:ee:d9:d7:13:92:2e:
c6:68:59:64:ff:a6:fd:03:7c:75:a8:44:91:42:c1:
05:a6:39:e1:c6:d6:8b:13:cf:0d:e5:39:bf:dd:b1:
60:e7:22:17:80:ed:2f:59:74:ad:58:a1:37:e6:76:
ab:35:d4:c1:0d:d6:2a:26:2c:1f:33:fb:ea:30:64:
d9:b9:97:f5:57:8e:a4:ce:dc:de:a9:22:20:b7:9a:
5e:cc:a5:a7:d3:9e:fb:60:33:77:b7:fb:f1:8a:d2:
06:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:E7:64:F1:06:7C:A0:4D:E0:1F:FE:39:45:16:CE:32:71:6E:19:4B
X509v3 Authority Key Identifier:
keyid:44:A9:F6:9F:41:41:DA:76:B7:35:3E:B0:D5:81:52:3A:FE:2B:81:E1
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36FA15D/98166C5E623711EB931CB859F8AEA228/RKn2n0FB2na3NT6w1YFSOv4rgeE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/RKn2n0FB2na3NT6w1YFSOv4rgeE.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36FA15D/98166C5E623711EB931CB859F8AEA228/CE97635AEBEC11ED83AAAF6D4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
161.123.69.0/24
Signature Algorithm: sha256WithRSAEncryption
28:a5:72:b1:4a:11:27:5b:1c:87:c8:97:9f:9e:3e:f2:78:bb:
18:4a:9c:4c:a2:b6:46:90:60:00:9c:aa:e3:12:40:4a:30:cb:
dc:c4:b3:f3:f4:93:7c:72:81:2d:35:cb:b2:12:e0:0a:cf:5d:
8d:3d:6a:97:5f:8b:23:ae:df:7e:e0:b7:f3:0b:15:78:c5:ad:
49:cf:38:6f:67:2f:e6:c4:34:89:d2:5e:ad:54:51:cb:4c:00:
b3:f7:9b:20:e5:cc:6d:33:f0:b3:09:4c:4e:ca:51:e7:49:0e:
53:e3:0d:97:4f:73:b9:d1:97:70:9e:16:0a:a7:8f:e2:e0:d6:
d2:22:a8:ca:92:30:18:8c:41:5c:88:f6:73:4a:9c:c8:d5:41:
f5:1d:d4:85:69:eb:39:f0:b6:cf:37:8f:b7:ff:7c:8e:9d:9c:
4d:31:e7:9f:9b:3d:3a:c7:cc:6b:15:c0:d0:06:ac:0f:96:02:
b1:ba:66:1a:5c:a7:98:38:20:68:d1:20:2b:10:15:4f:36:72:
61:6b:40:f2:89:67:d5:73:6d:b8:d1:28:d2:c6:39:19:ba:34:
55:63:ae:be:d4:1f:0b:d0:c6:1b:9c:0e:85:65:45:3f:6d:29:
c9:39:a3:b0:16:24:cf:78:26:13:fc:da:85:34:77:9f:13:2b:
be:3f:6c:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:50:54 2024 by rpki-client on console-fra.rpki-client.org