Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3692D98/AFE95F7498F011EE8A47CA59D25BE465/C1BCB47EA49B11EEA7F09C7BD25BE465.roa
File: C1BCB47EA49B11EEA7F09C7BD25BE465.roa (raw, json)
Hash identifier: gz4HnzudcEdG7daG99SnCrdpvkLt7xIOj0v+ughfxFA=
Subject key identifier: 72:55:20:F7:AC:77:B6:AF:F2:28:AC:FC:6B:C7:72:CE:3D:F6:1B:DD
Certificate issuer: /CN=F3692D98AF/serialNumber=F98781E67D9EA96AF25806AC86D1006F821FAA36
Certificate serial: 22
Authority key identifier: F9:87:81:E6:7D:9E:A9:6A:F2:58:06:AC:86:D1:00:6F:82:1F:AA:36
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/-YeB5n2eqWryWAashtEAb4IfqjY.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3692D98/AFE95F7498F011EE8A47CA59D25BE465/C1BCB47EA49B11EEA7F09C7BD25BE465.roa
Signing time: Wed 27 Dec 2023 09:38:57 +0000
ROA not before: Wed 27 Dec 2023 09:38:54 +0000
ROA not after: Sun 31 Dec 2023 09:38:54 +0000
asID: 329370
IP address blocks: 102.210.169.0/24 maxlen: 24
2c0f:6540::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 34 (0x22)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3692D98AF, serialNumber=F98781E67D9EA96AF25806AC86D1006F821FAA36
Validity
Not Before: Dec 27 09:38:54 2023 GMT
Not After : Dec 31 09:38:54 2023 GMT
Subject: CN=658bf0b1-c833
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:82:23:d3:e2:a0:b6:0e:04:1b:7b:f9:c0:73:
c0:e3:22:68:c0:33:55:1d:8e:c2:17:84:19:63:96:
97:de:e9:7e:39:c5:85:ba:60:07:d4:8f:d5:90:1e:
97:e0:86:b0:33:a3:53:22:ec:a5:cc:b1:bb:7a:99:
f8:6d:ee:ab:04:fb:44:fc:08:fa:9d:55:4e:ec:25:
33:8d:d1:f3:8c:13:8c:56:ae:a1:bf:a9:6c:8d:c3:
a0:81:6b:ac:48:a0:54:ff:ec:58:99:88:90:42:1e:
e2:10:2f:fb:38:14:37:63:4d:be:f5:80:d3:c7:b7:
48:bc:1b:22:31:51:b0:39:63:6a:5f:45:47:81:e8:
79:ae:d1:80:92:bd:63:ec:1b:23:4a:e4:92:ce:c3:
ad:33:70:3c:de:f7:a5:5a:ea:2a:a9:b7:93:34:aa:
ab:f0:21:34:12:8a:dd:d1:f6:75:19:c9:15:9e:17:
9f:d2:87:7d:12:4d:5f:54:67:80:f0:64:0e:62:d2:
2a:a1:bc:ba:92:3b:a9:56:a5:8f:57:49:7d:82:e6:
d8:57:e2:c6:59:e6:78:c5:59:4b:53:8f:03:4d:a8:
3e:4d:1e:04:04:41:e2:0b:7b:8f:66:6c:c3:8e:89:
8f:cc:4b:37:72:c5:1c:ec:da:44:d1:e7:03:58:33:
3f:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:55:20:F7:AC:77:B6:AF:F2:28:AC:FC:6B:C7:72:CE:3D:F6:1B:DD
X509v3 Authority Key Identifier:
keyid:F9:87:81:E6:7D:9E:A9:6A:F2:58:06:AC:86:D1:00:6F:82:1F:AA:36
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3692D98/AFE95F7498F011EE8A47CA59D25BE465/-YeB5n2eqWryWAashtEAb4IfqjY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/-YeB5n2eqWryWAashtEAb4IfqjY.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3692D98/AFE95F7498F011EE8A47CA59D25BE465/C1BCB47EA49B11EEA7F09C7BD25BE465.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.210.169.0/24
IPv6:
2c0f:6540::/32
Signature Algorithm: sha256WithRSAEncryption
7c:56:8f:bc:d5:3b:d4:4d:c3:4a:d8:1c:0e:4c:02:21:13:9e:
0d:81:60:25:60:51:52:23:71:8b:af:aa:a3:77:62:10:e7:0a:
f5:da:08:88:35:31:72:bf:97:35:75:02:94:e9:d7:b6:e6:13:
1d:05:62:21:d6:fe:0a:f0:df:31:47:6e:68:a8:1b:72:f3:e4:
6f:47:e5:38:32:0f:b7:5a:27:35:d1:f7:83:89:c0:5e:28:82:
9a:43:63:8f:76:77:8e:52:11:b9:57:42:b6:ef:0c:47:93:59:
1a:30:4b:74:93:19:5c:29:c1:97:b2:02:31:aa:0d:38:28:3d:
2d:58:e3:52:d1:34:45:af:27:2a:68:a8:8a:7b:f2:bd:cc:46:
61:dc:fb:16:2e:eb:ba:1d:c8:79:c7:7a:d9:d4:0c:00:f8:24:
e3:b8:93:fb:e8:38:7f:a3:90:ab:09:0f:1c:ba:49:57:da:f6:
4e:c8:93:dc:13:3a:27:1e:85:76:64:b0:c6:df:d3:b6:88:0b:
c0:76:ec:31:78:b4:4a:9f:67:6f:59:65:f5:3e:da:d7:25:a8:
98:dd:8b:0b:9a:ea:75:0d:a1:e3:04:89:0c:69:6b:8f:a0:b0:
4e:8c:5d:ef:e3:82:49:83:37:5d:43:8e:3b:99:59:47:b0:97:
75:08:07:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 2 18:18:45 2025 by rpki-client