Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36FA15D/98166C5E623711EB931CB859F8AEA228/ED71F9C63DBC11EE9AA2542A4AD9E6FC.roa
File: ED71F9C63DBC11EE9AA2542A4AD9E6FC.roa (raw, json)
Hash identifier: RLSbc2KIl84WebchPClIUm/qyj3wPIBcuUX4aWRpHuU=
Subject key identifier: 4D:EB:74:6D:B7:7B:C6:2F:58:89:4C:B6:52:EA:51:CB:A6:24:24:47
Certificate issuer: /CN=F36FA15DAR/serialNumber=44A9F69F4141DA76B7353EB0D581523AFE2B81E1
Certificate serial: 0BA6
Authority key identifier: 44:A9:F6:9F:41:41:DA:76:B7:35:3E:B0:D5:81:52:3A:FE:2B:81:E1
Authority info access: rsync://rpki.afrinic.net/repository/arin/RKn2n0FB2na3NT6w1YFSOv4rgeE.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36FA15D/98166C5E623711EB931CB859F8AEA228/ED71F9C63DBC11EE9AA2542A4AD9E6FC.roa
Signing time: Fri 18 Aug 2023 11:46:54 +0000
ROA not before: Fri 18 Aug 2023 11:46:50 +0000
ROA not after: Sun 18 Aug 2024 11:46:50 +0000
asID: 203020
IP address blocks: 161.123.192.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2982 (0xba6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36FA15DAR/serialNumber=44A9F69F4141DA76B7353EB0D581523AFE2B81E1
Validity
Not Before: Aug 18 11:46:50 2023 GMT
Not After : Aug 18 11:46:50 2024 GMT
Subject: CN=64df5a2e-c822
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:ae:27:70:ec:67:a3:6b:dd:a8:a7:4c:e4:3d:
97:27:7d:20:70:3a:c8:dd:6c:76:19:6b:59:fc:0d:
7e:3d:82:c3:f1:44:f7:2f:60:c1:de:16:95:e2:59:
2a:52:d1:c1:f9:c8:ca:03:79:44:b9:cd:ae:16:9f:
05:d9:d3:ed:dd:dd:e7:25:ec:58:76:b5:a4:69:44:
5d:b1:ac:8c:9d:ca:40:90:79:d2:2b:0e:ec:0a:45:
73:d4:67:14:fc:8f:2c:4c:15:a8:6f:f4:3d:d8:c3:
f6:83:36:42:85:12:95:2b:61:d6:41:07:c8:06:72:
0e:f1:b3:59:68:c9:e0:e7:b1:a4:fe:44:6c:28:45:
83:5b:9c:fd:60:11:09:38:ae:2b:82:1f:d4:51:2f:
8f:bd:86:5f:7e:7b:4e:04:57:7f:e9:5e:36:cc:a4:
60:1b:21:a5:4a:b3:27:e0:66:6b:89:25:7f:95:25:
c7:13:4c:de:e4:46:e2:79:fc:9f:ec:fd:53:a4:98:
45:ec:27:51:92:76:d8:f1:37:db:44:15:d3:7d:b2:
69:7b:11:4b:80:80:72:a1:3a:81:20:ec:34:6f:f4:
85:1c:69:bf:8c:59:0e:0e:3e:f2:d5:6c:58:61:34:
dc:d7:1d:87:9c:95:e2:ee:0d:e6:91:e4:7f:29:1f:
dc:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:EB:74:6D:B7:7B:C6:2F:58:89:4C:B6:52:EA:51:CB:A6:24:24:47
X509v3 Authority Key Identifier:
keyid:44:A9:F6:9F:41:41:DA:76:B7:35:3E:B0:D5:81:52:3A:FE:2B:81:E1
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36FA15D/98166C5E623711EB931CB859F8AEA228/RKn2n0FB2na3NT6w1YFSOv4rgeE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/RKn2n0FB2na3NT6w1YFSOv4rgeE.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36FA15D/98166C5E623711EB931CB859F8AEA228/ED71F9C63DBC11EE9AA2542A4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
161.123.192.0/24
Signature Algorithm: sha256WithRSAEncryption
0f:bd:08:2a:e9:55:50:2b:60:99:b5:28:7e:ae:14:9f:c4:f4:
c6:b7:9a:f7:de:e9:31:91:57:59:32:c6:87:43:54:d8:14:08:
d4:c0:1e:05:db:de:2b:5a:ff:78:f4:59:ab:ed:b4:d9:b1:38:
93:ea:ce:8c:76:7a:89:3c:22:b6:70:0d:26:82:6e:fa:45:91:
2c:95:05:ec:4e:55:b7:01:b2:93:29:eb:48:64:b2:04:4e:1c:
d0:80:08:58:59:f5:21:3d:e1:e9:2a:fa:26:73:ee:5b:70:85:
d0:72:72:81:85:7d:e8:d8:24:2f:fe:88:6d:b4:79:49:69:be:
18:e4:59:de:3a:71:da:58:3d:b3:8e:d2:5e:3f:d9:bc:49:65:
c0:dc:5f:d3:15:1d:ad:9e:c3:54:6d:9b:b1:47:43:c2:9f:17:
31:f8:78:7e:08:21:e3:d9:3d:e0:c1:cd:8c:05:4f:7d:ad:3d:
61:6e:2b:18:19:db:5c:24:1d:27:d8:6a:77:97:30:93:4e:8b:
13:f0:a5:b8:23:81:29:36:3f:bf:92:62:bd:c9:0b:64:6f:8b:
d4:27:3b:08:18:2e:5e:c8:2f:cf:62:b6:fe:de:ec:89:9f:09:
2b:67:59:3a:c8:61:bf:60:57:e4:1f:69:20:be:53:b4:4d:26:
40:4e:5f:0e
-----BEGIN CERTIFICATE-----
MIIFgDCCBGigAwIBAgICC6YwDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAwwKRjM2
RkExNURBUjExMC8GA1UEBRMoNDRBOUY2OUY0MTQxREE3NkI3MzUzRUIwRDU4MTUy
M0FGRTJCODFFMTAeFw0yMzA4MTgxMTQ2NTBaFw0yNDA4MTgxMTQ2NTBaMBgxFjAU
BgNVBAMTDTY0ZGY1YTJlLWM4MjIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQC2ridw7Geja92op0zkPZcnfSBwOsjdbHYZa1n8DX49gsPxRPcvYMHeFpXi
WSpS0cH5yMoDeUS5za4WnwXZ0+3d3ecl7Fh2taRpRF2xrIydykCQedIrDuwKRXPU
ZxT8jyxMFahv9D3Yw/aDNkKFEpUrYdZBB8gGcg7xs1loyeDnsaT+RGwoRYNbnP1g
EQk4riuCH9RRL4+9hl9+e04EV3/pXjbMpGAbIaVKsyfgZmuJJX+VJccTTN7kRuJ5
/J/s/VOkmEXsJ1GSdtjxN9tEFdN9sml7EUuAgHKhOoEg7DRv9IUcab+MWQ4OPvLV
bFhhNNzXHYecleLuDeaR5H8pH9zXAgMBAAGjggKiMIICnjAdBgNVHQ4EFgQUTet0
bbd7xi9YiUy2UupRy6YkJEcwHwYDVR0jBBgwFoAURKn2n0FB2na3NT6w1YFSOv4r
geEwDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNkZBMTVELzk4MTY2QzVFNjIzNzExRUI5MzFDQjg1OUY4QUVBMjI4L1JLbjJu
MEZCMm5hM05UNncxWUZTT3Y0cmdlRS5jcmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hcmlu
L1JLbjJuMEZCMm5hM05UNncxWUZTT3Y0cmdlRS5jZXIwTwYDVR0gAQH/BEUwQzBB
BggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5pYy5u
ZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEFBQcw
C4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9y
ZXBvc2l0b3J5L0YzNkZBMTVELzk4MTY2QzVFNjIzNzExRUI5MzFDQjg1OUY4QUVB
MjI4L0VENzFGOUM2M0RCQzExRUU5QUEyNTQyQTRBRDlFNkZDLnJvYTA1BggrBgEF
BQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54bWww
HwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAChe8AwDQYJKoZIhvcNAQELBQAD
ggEBAA+9CCrpVVArYJm1KH6uFJ/E9Ma3mvfe6TGRV1kyxodDVNgUCNTAHgXb3ita
/3j0WavttNmxOJPqzox2eok8IrZwDSaCbvpFkSyVBexOVbcBspMp60hksgROHNCA
CFhZ9SE94ekq+iZz7ltwhdBycoGFfejYJC/+iG20eUlpvhjkWd46cdpYPbOO0l4/
2bxJZcDcX9MVHa2ew1Rtm7FHQ8KfFzH4eH4IIePZPeDBzYwFT32tPWFuKxgZ21wk
HSfYaneXMJNOixPwpbgjgSk2P7+SYr3JC2Rvi9QnOwgYLl7IL89itv7e7ImfCStn
WTrIYb9gV+QfaSC+U7RNJkBOXw4=
-----END CERTIFICATE-----
Generated at Mon Aug 19 05:25:49 2024 by rpki-client on console-fra.rpki-client.org