Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F364789C/72EFAF4C910111EABD3F2473F8AEA228/63FB49049D1511EF811DA59D762E951A.roa
File: 63FB49049D1511EF811DA59D762E951A.roa (raw, json)
Hash identifier: NccwsaLxKgez5DXth5XNVxMR0ltvIIF57ISpBDFeXrE=
Subject key identifier: 32:A0:2C:7A:6E:C3:BE:B7:D6:B6:E6:61:3F:93:27:B5:36:94:EE:60
Certificate issuer: /CN=F364789CAF/serialNumber=D1F7C00EF3EB06E8817CFDC1DB96060407E49C0D
Certificate serial: 06B9
Authority key identifier: D1:F7:C0:0E:F3:EB:06:E8:81:7C:FD:C1:DB:96:06:04:07:E4:9C:0D
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/0ffADvPrBuiBfP3B25YGBAfknA0.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F364789C/72EFAF4C910111EABD3F2473F8AEA228/63FB49049D1511EF811DA59D762E951A.roa
Signing time: Thu 07 Nov 2024 14:34:27 +0000
ROA not before: Fri 08 Nov 2024 14:34:23 +0000
ROA not after: Sat 08 Feb 2025 14:34:23 +0000
asID: 11111
IP address blocks: 102.223.198.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1721 (0x6b9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F364789CAF, serialNumber=D1F7C00EF3EB06E8817CFDC1DB96060407E49C0D
Validity
Not Before: Nov 8 14:34:23 2024 GMT
Not After : Feb 8 14:34:23 2025 GMT
Subject: CN=672ccff3-bc72
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:cb:33:82:ac:14:d0:3a:e4:03:2c:bd:4e:9f:
74:1a:d4:8a:6b:1e:71:8c:05:45:44:f4:af:0f:b8:
23:c9:e0:ff:d6:53:3c:a5:10:05:db:79:e0:82:68:
bb:c6:e4:40:d0:2c:3f:df:8a:1b:68:6d:d7:ed:6a:
fc:15:06:27:2c:22:72:b0:0a:d1:ea:e9:e0:03:86:
51:38:46:c4:82:d1:26:d9:af:10:01:b7:51:ec:8b:
86:74:0b:48:9d:c0:ec:38:e7:03:09:64:46:61:63:
98:70:aa:df:0c:48:29:a8:45:7e:8c:ff:d4:99:80:
2b:80:fa:4e:4d:95:76:51:d4:d0:a4:80:a0:ba:a1:
29:1a:04:49:2c:82:cd:7e:bf:78:4c:c9:93:f9:b1:
c3:2f:a4:a1:8e:20:9a:df:e1:81:53:2d:b9:ae:45:
39:40:50:65:fc:eb:ff:42:21:7c:9c:48:c7:19:93:
37:c9:6f:7c:3f:bc:57:49:54:1d:4d:98:2f:6a:13:
d1:a1:07:35:8e:1a:55:f9:39:a1:e4:15:3d:90:05:
09:d2:24:64:65:91:13:90:aa:ec:60:9c:22:6a:e4:
5b:37:79:66:ba:8c:58:2c:34:d2:c0:44:59:fe:dd:
9f:53:14:9a:ef:01:03:9e:0b:f6:6a:f3:27:02:7a:
de:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:A0:2C:7A:6E:C3:BE:B7:D6:B6:E6:61:3F:93:27:B5:36:94:EE:60
X509v3 Authority Key Identifier:
keyid:D1:F7:C0:0E:F3:EB:06:E8:81:7C:FD:C1:DB:96:06:04:07:E4:9C:0D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F364789C/72EFAF4C910111EABD3F2473F8AEA228/0ffADvPrBuiBfP3B25YGBAfknA0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/0ffADvPrBuiBfP3B25YGBAfknA0.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F364789C/72EFAF4C910111EABD3F2473F8AEA228/63FB49049D1511EF811DA59D762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.223.198.0/24
Signature Algorithm: sha256WithRSAEncryption
c0:7d:3a:e1:6b:4f:83:f0:56:01:f0:76:74:da:71:1a:75:8b:
5c:65:07:f5:d4:51:57:bb:9a:78:e6:75:1e:d8:25:ee:89:68:
10:6e:d1:70:f9:7f:c7:95:13:f8:37:42:d5:b4:cf:66:b2:e1:
bf:dd:ab:44:ab:2a:39:89:86:ac:7a:82:bb:e6:22:5e:c0:6e:
4b:37:a5:b6:b5:a1:b4:6a:02:04:62:e8:dd:39:34:de:62:a6:
4f:f5:80:5e:7e:77:2e:dd:c3:9b:24:2a:c3:dc:70:a9:97:6d:
b2:b2:78:2d:42:3b:6d:d8:fc:95:26:c6:f9:af:8e:3e:5b:dd:
89:45:ef:05:6c:f7:2a:3d:27:69:c2:dd:a0:8a:ee:11:bb:01:
70:63:b6:5d:75:39:23:6d:03:26:87:00:88:77:7c:3b:20:d2:
37:6c:af:43:34:9c:76:b9:9b:ec:bc:ac:7a:85:a4:91:a8:cf:
8f:e5:2d:99:26:fb:12:70:3f:2f:15:de:06:dc:e4:a7:65:7f:
de:96:b8:e9:13:d7:ce:76:5c:41:57:97:17:2c:81:d8:04:21:
f0:ad:75:3e:20:e8:ef:d5:06:1f:0e:fb:36:cb:8d:e4:5c:e7:
6b:54:79:79:3d:bd:14:63:01:28:ea:a3:0a:c6:a1:4c:bc:d2:
a6:7a:d4:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 16 03:07:02 2025 by rpki-client