Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/06317EFE07B211EFA10A3121017001B1.roa
File: 06317EFE07B211EFA10A3121017001B1.roa (raw, json)
Hash identifier: zUFZ6KRrAGnZVBlU/Jfo53SDwGEBSTos4S29EghQjmU=
Subject key identifier: 3B:92:9A:CF:9E:63:75:4F:6A:A6:9B:76:48:FC:07:40:E7:84:E5:FD
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 8745
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/06317EFE07B211EFA10A3121017001B1.roa
Signing time: Wed 01 May 2024 11:57:46 +0000
ROA not before: Wed 01 May 2024 11:57:42 +0000
ROA not after: Sat 11 May 2024 11:57:42 +0000
asID: 44559
IP address blocks: 156.233.32.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 34629 (0x8745)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: May 1 11:57:42 2024 GMT
Not After : May 11 11:57:42 2024 GMT
Subject: CN=66322e3a-07d9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:2a:18:b9:fd:04:3a:6a:1b:a7:46:40:5a:71:
bc:88:fd:f1:61:e4:75:c7:6c:41:8f:c5:f7:e3:69:
73:13:38:a7:f6:3e:aa:fa:48:84:bf:5d:74:75:0d:
10:0c:7b:bb:3c:d4:5c:07:bb:f3:90:30:d5:91:f6:
54:58:a5:7e:10:73:4c:31:37:85:98:43:60:80:9d:
cd:31:44:d3:55:dd:f4:8f:5c:b8:c4:e4:7e:2e:dc:
96:0a:95:60:7b:e4:e0:77:64:c2:7c:4f:5e:05:61:
0e:70:c3:7f:da:56:c1:61:56:ce:ca:84:14:ff:5f:
16:92:49:6c:dd:8c:36:a5:bb:ed:af:5d:f0:fa:fc:
ce:7a:8d:28:ec:40:2b:cb:50:0d:0c:b3:a1:79:aa:
74:29:91:2a:e2:44:b8:7f:59:5a:c4:c3:b1:00:44:
3f:37:d0:4d:5b:dd:37:57:b8:df:7a:76:7e:a1:33:
71:bb:8d:bc:ee:16:bf:8c:59:9b:c5:30:c4:79:c8:
8d:18:9f:dd:83:81:8a:c0:66:1c:b5:9e:3a:7e:23:
b9:f1:df:18:5d:aa:27:90:45:6f:f5:e5:12:c6:ce:
96:47:b1:9c:86:53:5b:e1:ad:a2:f4:ed:0f:30:af:
fb:ad:ad:c9:ff:bf:50:2e:e3:b7:ba:aa:17:c7:77:
96:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:92:9A:CF:9E:63:75:4F:6A:A6:9B:76:48:FC:07:40:E7:84:E5:FD
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/06317EFE07B211EFA10A3121017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.233.32.0/19
Signature Algorithm: sha256WithRSAEncryption
3d:47:f2:ce:c9:2d:df:27:e6:94:2a:e0:1f:b8:a8:4d:a2:e8:
03:8c:0e:59:e3:d8:35:d0:8a:26:5e:d9:c9:84:9c:73:49:ab:
48:b1:16:aa:0c:c2:11:ad:06:04:9c:8a:78:7e:3d:61:a6:17:
e1:1b:de:dc:fc:6f:cb:33:00:5f:f1:1d:82:64:61:52:9a:c9:
c5:b6:88:97:62:6f:69:db:e9:a7:12:1d:d5:25:5a:19:80:fc:
cb:de:00:b7:65:bf:9a:65:6c:f7:8a:0d:b3:52:6f:1b:61:c7:
4d:c1:dd:78:b3:0c:b2:25:1d:61:43:d5:22:e3:25:55:c4:6a:
d2:4e:5a:aa:60:52:b0:14:05:53:a9:f4:20:b1:60:9b:46:34:
cd:75:b1:44:80:40:f2:d3:b6:ad:6f:ec:21:84:0f:14:9e:61:
5a:56:5e:a6:72:95:0e:98:8e:64:26:a4:10:e8:e6:8f:b2:d9:
b6:8b:5b:3b:82:be:1f:a4:e9:44:99:5b:b0:25:63:20:84:aa:
60:41:20:3b:9c:4c:36:33:9f:3f:7e:ab:39:50:80:d7:f9:21:
c0:7b:ae:aa:2d:f6:09:37:5c:65:cd:f2:f7:16:80:4a:2f:58:
f0:6a:b3:8d:f0:0c:4e:87:7c:1f:7d:b4:d8:65:0c:49:76:d8:
25:fd:38:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 12 01:39:49 2024 by rpki-client on console-fra.rpki-client.org