Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/0F65BF8E060F11EFAD01AE4C017001B1.roa
File: 0F65BF8E060F11EFAD01AE4C017001B1.roa (raw, json)
Hash identifier: 16cXO0NcrHJs3sa6ah5RADU0aoQvKdy2FCIRokbt6R0=
Subject key identifier: 82:B6:9B:CC:32:DD:4E:67:D6:0F:95:12:46:74:A2:D7:EF:67:C3:99
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 86B6
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/0F65BF8E060F11EFAD01AE4C017001B1.roa
Signing time: Mon 29 Apr 2024 09:58:42 +0000
ROA not before: Mon 29 Apr 2024 09:58:39 +0000
ROA not after: Wed 15 May 2024 09:58:39 +0000
asID: 5065
IP address blocks: 156.255.64.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 34486 (0x86b6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Apr 29 09:58:39 2024 GMT
Not After : May 15 09:58:39 2024 GMT
Subject: CN=662f6f52-2b36
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:c2:dd:2d:f7:37:f6:58:8a:6e:96:c1:2f:9b:
3a:bc:98:92:32:50:7d:6d:a3:22:5d:b1:96:46:99:
a4:23:fc:7d:15:1a:f4:72:4d:d0:76:e5:37:5d:5c:
cd:27:43:c2:68:b9:4c:48:0c:80:ae:7b:73:17:f0:
c9:85:9e:dc:f1:44:60:e3:b6:fa:74:86:88:59:13:
e8:c4:6e:58:76:a4:81:93:be:82:3b:ee:02:b2:fd:
27:df:71:a2:96:63:1c:37:99:55:d8:b3:bc:44:d1:
98:a4:67:96:7f:f6:e0:8e:df:e3:f5:e7:aa:a7:c2:
77:00:6f:7f:e0:80:75:e9:f2:2b:20:4b:c0:25:c2:
24:31:fb:76:4a:70:a8:a7:c0:38:4d:b1:c5:4a:97:
0c:f3:99:b2:29:d1:61:8a:9f:01:6b:4c:3d:5c:65:
e2:65:41:dd:1b:32:00:e1:21:dd:95:f5:54:46:ca:
0c:cc:af:d5:74:42:80:92:4c:16:6c:07:b5:91:3d:
77:9c:4f:3b:5a:eb:7c:09:c8:93:b2:e8:5e:fb:77:
a0:e4:7f:0e:ee:f1:e8:d0:94:4b:4d:28:76:0a:54:
46:65:5a:85:fc:11:dc:a9:58:76:96:b7:ca:62:b6:
81:ed:23:e6:c2:8b:a0:41:d7:c3:e2:63:50:df:d7:
30:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:B6:9B:CC:32:DD:4E:67:D6:0F:95:12:46:74:A2:D7:EF:67:C3:99
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/0F65BF8E060F11EFAD01AE4C017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.255.64.0/22
Signature Algorithm: sha256WithRSAEncryption
80:f2:9b:0f:b3:2c:79:b8:12:58:0b:c3:e8:3b:9f:8a:3f:f3:
a3:f9:9e:73:80:b3:9d:a4:af:4f:7a:ca:3e:6e:01:8d:f7:cb:
d7:9c:30:1d:f3:95:39:b4:0c:13:50:f9:7a:6e:eb:cb:b1:61:
98:d4:26:30:87:8b:fb:b5:99:0f:3e:be:a7:43:8e:df:0a:3a:
d7:50:97:98:d2:7a:60:e8:11:1f:86:ae:51:ef:77:4b:02:dc:
39:d2:80:3c:4f:83:bb:68:d7:d1:f0:3a:11:6b:c9:5a:86:0b:
31:8a:dc:2a:b2:33:d3:47:44:f7:5a:1f:32:be:2f:9d:14:fe:
c6:8f:b4:1a:38:11:7a:7e:e4:9d:9a:7f:db:06:3d:1a:86:09:
8a:2d:9d:e8:6a:ee:e8:a5:f2:f5:4f:94:5e:9c:62:a7:c2:36:
9d:d5:43:00:78:65:a3:41:b6:f3:5d:9f:e7:97:8c:37:f3:70:
9f:8f:8d:5e:57:51:5e:5e:40:fa:96:dd:fa:c8:09:23:1f:ec:
9b:22:7b:ad:c6:ba:91:43:12:21:bc:10:c5:18:35:3b:f6:ae:
47:32:e1:d5:32:de:76:c2:b1:45:fa:84:9a:6a:65:e4:e5:5e:
6e:8d:ab:c8:18:bb:16:87:35:6d:d7:09:ab:24:37:66:3b:59:
de:ad:00:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 16 01:35:16 2024 by rpki-client on console-fra.rpki-client.org