Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/758A3A76089211EF96EED040017001B1.roa
File: 758A3A76089211EF96EED040017001B1.roa (raw, json)
Hash identifier: iupAsKRVqF/SVehg6anvdcF+rZyd31frBWcCapQ0jHI=
Subject key identifier: 79:7C:F8:48:22:15:F9:16:89:AD:ED:5B:FA:31:CA:D8:7A:76:86:9C
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 876E
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/758A3A76089211EF96EED040017001B1.roa
Signing time: Thu 02 May 2024 14:44:20 +0000
ROA not before: Thu 02 May 2024 14:44:17 +0000
ROA not after: Sat 11 May 2024 14:44:17 +0000
asID: 39600
IP address blocks: 156.255.84.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 34670 (0x876e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: May 2 14:44:17 2024 GMT
Not After : May 11 14:44:17 2024 GMT
Subject: CN=6633a6c4-5b88
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:23:ce:b5:5b:95:3e:13:ba:20:16:f3:65:3d:
23:db:a5:6d:11:e9:f5:03:82:26:14:78:af:80:bd:
d7:00:77:5b:57:2e:12:15:62:97:d5:be:7f:1c:6c:
d6:8c:16:2e:2a:75:a6:77:50:08:64:7c:90:37:0a:
84:b4:72:d6:c3:64:cf:5c:65:b6:a2:d7:37:c4:24:
d6:e2:f9:9d:dd:39:e3:2b:73:1f:2b:c3:71:35:91:
ae:31:e4:0d:fe:4c:a6:97:db:69:54:a6:dc:65:92:
d8:e2:58:ad:8b:1f:63:02:fd:9e:00:e8:2b:53:2a:
47:60:4c:f6:98:43:d5:e8:66:c7:3c:2a:3e:38:f2:
d3:06:f0:77:1c:2b:16:20:a9:df:94:af:f9:99:35:
b4:0a:25:ee:48:35:bd:64:78:5f:0b:91:ee:a0:f3:
41:0d:0f:a5:b8:12:c8:9d:13:6f:bd:a1:1c:00:53:
52:4a:3b:d0:03:1f:d9:9c:86:b6:74:84:62:75:46:
50:33:c3:01:5c:18:e3:37:cc:eb:af:ce:37:d5:c7:
86:95:59:21:69:b5:a6:77:65:82:0d:71:b4:f4:40:
da:2d:4d:00:f6:34:c0:5d:6e:39:d6:5c:cb:fb:2b:
21:68:e1:b1:da:30:f0:56:4a:70:dc:11:48:1b:f0:
aa:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:7C:F8:48:22:15:F9:16:89:AD:ED:5B:FA:31:CA:D8:7A:76:86:9C
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/758A3A76089211EF96EED040017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.255.84.0/22
Signature Algorithm: sha256WithRSAEncryption
40:89:87:c1:50:1f:1d:b5:1f:7b:34:a7:af:6f:f4:76:b0:8e:
e8:1f:d7:16:e8:33:f5:79:4a:b6:b9:5c:fd:3f:82:8e:11:2b:
63:3c:1b:81:df:6b:db:1a:8b:19:6e:99:c0:83:09:d8:ce:d4:
30:2e:5a:7f:e9:a4:f1:13:4c:6f:8a:32:06:73:eb:ef:54:a4:
65:e8:8c:12:d1:14:bd:39:40:5e:81:62:cb:81:2e:08:ef:21:
8f:e5:2c:b8:4b:a3:65:ac:df:c5:e6:62:60:da:d1:ea:af:4c:
2f:44:c6:48:9c:08:0d:58:f5:c8:85:bd:28:3c:5c:f0:56:40:
c4:20:53:ea:f9:6d:6f:62:ba:08:70:80:7a:2f:76:7f:fd:8f:
45:f7:1e:c7:05:cc:28:05:4b:ee:15:62:29:18:e0:96:3e:2c:
75:f4:92:4d:8a:1a:92:aa:e3:69:d6:de:15:e0:25:8f:bb:ec:
22:c5:32:ed:d5:2a:0c:b9:bd:8f:cf:b3:25:e6:ea:d8:05:60:
da:a7:01:8a:1e:5e:26:d0:fd:81:fc:2e:e3:f4:c9:d0:3e:60:
09:a9:89:32:23:65:c4:e2:b8:9c:4c:a7:ce:c7:1a:6b:95:88:
e0:76:3f:bd:25:1f:29:f0:14:e5:db:d4:01:ed:a6:33:45:b2:
49:30:d9:1b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 12 02:36:22 2024 by rpki-client on console-ams.rpki-client.org