Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36FCA07/8A4B771C72B111EEA0E0096E4AD9E6FC/6098DACC72BB11EEBE905E0D4AD9E6FC.roa
File: 6098DACC72BB11EEBE905E0D4AD9E6FC.roa (raw, json)
Hash identifier: kmZ7WpXrwZXvbeg4eo9aAOA9pQflsGvYxiGpqET8Mpo=
Subject key identifier: EE:E4:4D:ED:62:F4:D9:9D:20:CA:3F:63:07:4E:F9:95:23:EF:97:5E
Certificate issuer: /CN=F36FCA07AF/serialNumber=BC3DE1E9840080B83C65278CDEA85EA298829481
Certificate serial: 04
Authority key identifier: BC:3D:E1:E9:84:00:80:B8:3C:65:27:8C:DE:A8:5E:A2:98:82:94:81
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/vD3h6YQAgLg8ZSeM3qheopiClIE.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36FCA07/8A4B771C72B111EEA0E0096E4AD9E6FC/6098DACC72BB11EEBE905E0D4AD9E6FC.roa
Signing time: Tue 24 Oct 2023 22:19:20 +0000
ROA not before: Tue 24 Oct 2023 22:19:17 +0000
ROA not after: Tue 24 Sep 2024 22:19:17 +0000
asID: 329337
IP address blocks: 196.49.102.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4 (0x4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36FCA07AF
Validity
Not Before: Oct 24 22:19:17 2023 GMT
Not After : Sep 24 22:19:17 2024 GMT
Subject: CN=653842e8-0ad3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:dc:5f:93:e4:cd:c7:c8:24:06:dc:d5:c1:56:
28:d7:72:40:ec:a3:ef:50:d1:dd:e2:f7:43:58:22:
84:5e:58:35:bc:1f:9b:2e:ab:b2:29:f1:06:d4:74:
df:fe:50:88:35:d6:df:94:3f:d9:a3:a4:d8:43:db:
bf:87:d1:27:0c:9e:29:2f:ec:85:d9:17:49:98:06:
60:d9:09:9f:50:e2:84:b9:a0:99:3a:7c:15:dc:3e:
ed:58:ec:da:58:e4:ca:c8:48:0d:63:5b:be:45:28:
0e:c0:5a:85:28:c6:c8:c1:5d:a5:9e:d8:b2:a9:19:
9e:ad:17:e3:7c:86:e6:b2:44:d8:9b:54:35:ba:d1:
b0:24:c7:70:de:fb:fc:c2:ac:db:bb:41:0a:f2:48:
8e:f5:20:a5:52:a6:58:5a:07:f4:24:b7:b0:0f:a7:
1d:d4:25:9c:df:d1:66:54:e5:b0:e3:00:bf:e5:51:
71:08:20:a7:a5:f3:fc:f9:46:d7:e7:a6:66:d4:d0:
bf:1b:7a:bb:9f:6d:f5:45:ec:37:b8:e8:80:af:a0:
62:92:f3:5f:a3:44:11:aa:41:2f:8c:df:41:ad:e2:
36:ae:6f:45:10:75:c3:31:21:89:81:a4:a5:21:7f:
ae:c1:e0:87:ba:1b:ab:dd:8b:89:5d:86:46:88:09:
95:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:E4:4D:ED:62:F4:D9:9D:20:CA:3F:63:07:4E:F9:95:23:EF:97:5E
X509v3 Authority Key Identifier:
keyid:BC:3D:E1:E9:84:00:80:B8:3C:65:27:8C:DE:A8:5E:A2:98:82:94:81
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36FCA07/8A4B771C72B111EEA0E0096E4AD9E6FC/vD3h6YQAgLg8ZSeM3qheopiClIE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/vD3h6YQAgLg8ZSeM3qheopiClIE.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36FCA07/8A4B771C72B111EEA0E0096E4AD9E6FC/6098DACC72BB11EEBE905E0D4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
196.49.102.0/24
Signature Algorithm: sha256WithRSAEncryption
55:6c:a9:ac:83:83:5b:ea:a1:a9:8b:9d:23:f1:fd:b3:f7:b2:
dc:4d:ad:c8:28:4c:b1:28:50:5b:16:d6:7b:88:87:13:82:d8:
de:45:a7:c4:f9:aa:2c:5f:67:bb:55:d7:83:c5:bc:75:6f:aa:
d9:07:eb:89:d2:8e:36:02:49:5e:f4:80:ed:09:2e:c5:ed:ed:
60:0e:43:43:62:2d:21:4c:15:63:ee:af:70:a5:c1:f1:e0:51:
c7:71:e6:be:c9:65:b6:28:6b:4d:42:31:38:a5:22:b9:56:88:
6b:ae:ea:09:bc:4c:a9:2b:77:a3:43:d9:64:2b:a5:30:15:7c:
1f:c9:02:b0:8c:fd:c3:5e:92:73:0e:9d:27:d9:4c:11:ff:65:
7e:8f:65:4d:8d:ac:43:ee:e2:7b:f0:9f:6f:75:a3:97:1d:e8:
f5:9c:d4:b7:fd:8d:35:65:a6:2d:7f:99:0e:77:37:59:23:69:
e5:fb:71:32:aa:9b:ef:17:cd:d6:57:4e:3d:90:73:da:92:01:
5c:ff:22:81:36:79:86:b9:81:2a:02:c2:53:05:d4:70:db:56:
4e:d6:b1:7b:f6:f7:a6:3c:a4:f2:29:7b:ce:d1:ea:f6:b8:ff:
13:41:fd:2f:38:bb:c3:d7:a3:c6:7c:54:d9:0f:58:57:d1:bf:
40:9e:50:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 20:39:47 2025 by rpki-client