Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/1782D960CCBA11EE81ABAA7E775412E6.roa
File: 1782D960CCBA11EE81ABAA7E775412E6.roa (raw, json)
Hash identifier: KMjaihs12ZWgnDQwKLWwwyd0wU/BWJL4MrMkM1MD7h4=
Subject key identifier: 17:F9:D6:07:C3:2A:9E:1A:86:1F:B7:0A:2B:5A:F0:4D:1B:00:08:73
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 7111
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/1782D960CCBA11EE81ABAA7E775412E6.roa
Signing time: Fri 16 Feb 2024 10:56:53 +0000
ROA not before: Fri 16 Feb 2024 10:56:49 +0000
ROA not after: Fri 26 Apr 2024 10:56:49 +0000
asID: 9009
IP address blocks: 156.246.40.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 28945 (0x7111)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Feb 16 10:56:49 2024 GMT
Not After : Apr 26 10:56:49 2024 GMT
Subject: CN=65cf3f74-d158
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:05:57:89:fc:a0:ae:57:fc:db:be:b2:2b:76:
a1:6b:d2:e4:ab:6a:59:6d:f6:2f:23:77:5e:48:b1:
9a:34:28:50:76:7d:79:b6:1e:f1:de:72:1d:8a:17:
42:8c:2a:6d:76:47:ed:6a:7b:9a:6d:2b:68:f9:4b:
fd:45:e7:1f:72:a1:ab:c6:43:b1:5e:31:51:b2:a4:
b4:85:59:5c:74:55:9a:b9:d5:72:88:1e:ce:30:bf:
8b:ca:83:4a:46:af:c6:22:1b:d4:84:c4:39:2b:f5:
7f:58:90:f2:3c:51:b5:04:35:3e:85:8f:20:b7:c5:
13:c8:c6:39:9a:98:9e:fa:e6:fb:21:56:43:9b:d1:
83:20:1e:2c:92:9d:9c:3f:36:cb:6c:0f:ef:cc:6d:
46:32:52:82:d8:39:83:6a:a8:a8:32:31:15:88:9e:
88:51:c6:cc:3d:4d:1d:69:11:1d:73:d1:97:56:90:
b1:1c:dc:4a:df:a6:12:ee:05:3e:89:cf:9e:36:76:
5e:be:3a:9c:58:78:cf:93:e6:6a:02:59:7c:66:9b:
e7:7a:6a:c0:e1:a1:66:b9:a8:95:30:89:7c:78:26:
1d:ed:b3:37:d4:e1:c2:04:2d:69:fc:74:3e:21:bf:
47:e3:04:a4:21:0e:5b:09:01:fd:42:c1:96:18:c7:
b6:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:F9:D6:07:C3:2A:9E:1A:86:1F:B7:0A:2B:5A:F0:4D:1B:00:08:73
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/1782D960CCBA11EE81ABAA7E775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.246.40.0/24
Signature Algorithm: sha256WithRSAEncryption
b6:df:d8:44:6b:d4:c1:76:62:20:09:ad:51:a6:fc:6a:fc:97:
3b:d0:3f:13:85:78:1e:66:06:1c:80:66:60:3e:39:7d:b1:c5:
cf:d2:93:87:f3:a8:11:b5:c4:ec:25:16:82:f6:8c:dc:58:6b:
26:5a:0a:ea:2b:7b:d6:b4:8d:f5:8c:e0:eb:ed:e4:ff:a3:35:
b4:a0:fb:54:f0:06:81:09:80:6f:92:34:e9:b9:33:3d:30:2f:
82:4d:b5:35:a3:6e:dd:1b:58:ee:7f:1d:da:e6:c2:3e:b0:e4:
53:1a:60:0c:15:a3:4a:ef:d3:89:c8:e4:3b:0f:ce:80:00:4c:
40:af:a4:3d:51:84:3e:7f:ec:7e:c3:47:98:18:8d:8e:48:8f:
4d:53:c3:07:7f:82:e0:15:bd:8e:4e:c5:21:eb:df:b2:c7:be:
41:27:ee:db:e9:79:3f:85:75:2d:8e:1c:21:7d:3e:68:28:1d:
be:90:8f:70:f2:b5:f6:a5:9d:a5:6a:c2:ca:00:09:ac:6b:50:
fe:e4:59:55:53:a4:fa:53:44:17:0b:18:0a:e7:61:66:f6:95:
f0:df:a1:96:cd:66:61:2d:ad:16:75:27:a8:b3:5f:2d:d7:75:
76:64:30:df:78:7a:98:41:0a:5f:4e:06:44:dc:c6:b3:33:81:
c0:7a:59:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 26 11:01:52 2024 by rpki-client on console-ams.rpki-client.org