Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/040B2B34090111EF9292294D017001B1.roa
File: 040B2B34090111EF9292294D017001B1.roa (raw, json)
Hash identifier: D20kk0NuryZjp+Bhp6saPqJLGLHPEcMk/FWl6rzpGY8=
Subject key identifier: 03:10:F6:3A:34:BC:77:B3:70:96:C7:F7:D4:98:DA:A5:C1:02:B1:E9
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 8793
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/040B2B34090111EF9292294D017001B1.roa
Signing time: Fri 03 May 2024 03:55:44 +0000
ROA not before: Fri 03 May 2024 03:55:41 +0000
ROA not after: Sat 11 May 2024 03:55:41 +0000
asID: 39600
IP address blocks: 156.255.8.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 34707 (0x8793)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: May 3 03:55:41 2024 GMT
Not After : May 11 03:55:41 2024 GMT
Subject: CN=66346040-127f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:b7:14:2f:8a:94:b4:7b:e0:76:0c:cc:a0:44:
66:de:5d:69:7b:24:c3:9a:b1:b3:9e:25:54:ef:a9:
b3:90:5c:b1:33:d6:43:61:a9:64:83:4e:f4:d4:16:
52:c3:20:6a:96:aa:1e:11:c5:e6:36:f2:b2:74:1f:
24:ec:ef:bb:13:87:c4:a2:0b:4e:01:53:93:7b:66:
19:e0:77:01:75:ef:a7:fe:fc:ab:c6:d8:9f:8c:3b:
d1:4d:2e:ad:e5:d2:82:6c:40:30:50:00:69:57:ed:
0f:48:5b:0a:dc:94:a9:b6:43:2d:c5:49:1f:a8:d4:
5a:aa:63:03:e2:25:eb:71:3d:38:42:1f:28:2a:8d:
52:a1:dc:99:d0:d6:dd:47:a3:6f:33:34:aa:db:aa:
c6:1e:a6:18:ba:ba:b1:53:d7:91:2b:1a:71:03:40:
51:59:c7:ca:d4:cd:d4:50:34:99:c5:1e:a7:19:9a:
e1:54:55:27:2b:b4:d1:73:0b:10:74:45:d9:cc:41:
9b:5c:14:1f:7b:1b:46:75:e0:66:dd:82:40:c6:f6:
f4:57:c1:cf:2b:76:bc:3b:64:97:3d:5a:ae:58:cf:
7c:d0:b8:45:3e:65:1c:72:ea:c7:7a:49:c1:03:93:
5f:11:72:04:ec:74:46:c1:98:af:ea:fe:60:12:e0:
58:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:10:F6:3A:34:BC:77:B3:70:96:C7:F7:D4:98:DA:A5:C1:02:B1:E9
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/040B2B34090111EF9292294D017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.255.8.0/21
Signature Algorithm: sha256WithRSAEncryption
b8:8a:03:23:a6:d1:07:97:f1:83:df:25:f9:63:42:6e:09:83:
c4:31:c0:9b:d9:a0:82:5a:58:28:25:72:3d:6b:dc:79:50:f6:
20:00:93:3c:b3:6d:b7:cf:da:2a:31:00:9c:a5:62:52:f4:f4:
d9:a9:32:78:4c:e6:77:b8:c0:58:cc:70:81:80:2e:54:db:83:
0a:39:ef:e5:b1:d8:3c:4b:06:e0:eb:d6:bf:71:94:a0:bb:54:
2a:7b:7e:a2:1b:11:62:d9:af:bf:8c:db:55:d9:43:a8:ec:7f:
7f:c3:e6:81:b7:3a:2f:69:73:9d:76:cc:00:55:c3:1b:85:88:
b5:6a:ba:2f:47:1f:e5:e1:48:79:ee:7c:35:05:43:a1:59:df:
a4:e9:61:17:80:2c:8b:c3:3f:e7:0b:24:0f:a9:60:cf:ac:8c:
14:cc:1a:bd:64:33:97:e3:e8:d4:3c:e3:fd:63:da:e7:b0:ef:
28:4c:e5:f4:83:1e:d9:2a:d0:56:e6:ea:f4:b1:d9:84:67:5f:
c4:58:97:15:f5:33:d3:a7:00:b3:3d:c4:35:0a:a2:68:7b:48:
76:0b:ef:b8:cf:41:1f:69:4d:62:51:8f:0d:40:5d:e8:f6:b8:
77:05:ef:c9:0d:c0:45:ee:8e:4e:1d:6e:85:f6:76:bf:35:9b:
f9:f0:b9:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 12 01:39:49 2024 by rpki-client on console-fra.rpki-client.org