Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/A10C8D16090011EFBD221D4C017001B1.roa
File: A10C8D16090011EFBD221D4C017001B1.roa (raw, json)
Hash identifier: IUekqPDXEG0zBDS9DhQfHE9ZinBDqcPVUnv5hfS3LpE=
Subject key identifier: 2D:BC:FD:D9:C0:DB:6D:B7:03:0C:28:9F:F1:A8:4F:61:30:92:5B:7A
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 878D
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/A10C8D16090011EFBD221D4C017001B1.roa
Signing time: Fri 03 May 2024 03:52:58 +0000
ROA not before: Fri 03 May 2024 03:52:55 +0000
ROA not after: Sat 11 May 2024 03:52:55 +0000
asID: 39600
IP address blocks: 156.238.136.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 34701 (0x878d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: May 3 03:52:55 2024 GMT
Not After : May 11 03:52:55 2024 GMT
Subject: CN=66345f9a-2921
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:aa:6c:14:c9:87:d8:84:a3:c2:9e:f6:e7:38:
ba:2e:1a:c2:60:eb:9c:f1:58:f5:c4:a7:1e:49:a1:
5f:87:ed:5a:c4:d2:2c:c8:21:eb:c5:3f:d8:17:b9:
68:9e:68:6b:b5:d2:ce:d6:86:55:ab:56:18:d4:8f:
42:f6:e2:c3:02:81:22:86:53:66:49:62:d0:3a:ab:
77:12:89:94:71:ca:2d:06:e7:5a:f9:25:f5:f4:98:
84:25:ba:d0:58:71:1b:b3:c5:d9:35:f2:a4:33:6f:
4f:7d:5f:2c:7d:2e:d1:b4:d6:c5:93:78:61:f8:9d:
30:b7:38:36:f5:e6:a2:48:b9:f9:1b:09:88:08:27:
62:ee:9d:00:8d:be:22:97:b5:fa:9b:29:6f:ab:e8:
ff:ef:89:ac:58:1d:c5:fc:c8:aa:36:27:15:4d:46:
9c:c7:19:2f:72:b1:b3:33:3c:3c:de:d9:d5:14:e1:
d5:0c:e4:94:25:58:f6:44:ae:ff:01:ed:4e:66:5e:
1a:33:16:35:37:60:2c:51:24:98:74:4c:fd:24:b8:
88:64:99:77:df:77:9c:17:89:63:48:ee:cb:98:53:
44:1e:ec:b9:69:80:ad:ac:f4:b4:84:5c:64:95:67:
08:7e:6d:44:ba:be:d2:76:1c:cf:7d:ce:80:07:a6:
32:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:BC:FD:D9:C0:DB:6D:B7:03:0C:28:9F:F1:A8:4F:61:30:92:5B:7A
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/A10C8D16090011EFBD221D4C017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.238.136.0/21
Signature Algorithm: sha256WithRSAEncryption
01:08:b9:28:16:06:ca:9a:80:12:8a:2b:e5:11:25:f4:93:68:
8f:e8:cf:d8:9b:59:40:e0:c1:b6:b7:7d:a6:70:93:7f:3d:30:
3b:82:50:44:1b:f8:0f:14:f2:38:b6:ae:33:f0:c5:6c:94:9e:
19:37:16:24:c1:94:a8:eb:13:ce:e3:3d:bb:d4:d0:21:85:4c:
00:f1:d5:0d:63:f1:bc:f9:19:24:c9:11:26:34:7e:04:f8:fa:
30:4e:8e:38:b4:6d:90:a0:51:8c:bf:d2:3c:ef:83:4e:29:33:
b2:dd:d1:d4:e2:3f:39:f5:03:53:97:97:99:4c:ea:bb:68:f4:
08:06:77:f3:55:bd:40:a1:c5:18:e8:3e:0a:51:73:8c:20:70:
35:39:bc:33:55:76:f3:eb:5f:50:f0:8a:9e:f8:fd:e5:18:c9:
81:64:24:8a:eb:92:a2:58:b5:ad:d5:d3:e1:36:ca:bd:bb:47:
64:56:db:4d:e3:0e:9e:bb:c9:31:20:b8:7a:c6:1f:d0:50:ad:
36:fb:ee:0f:b8:90:a1:2c:dd:75:b8:0a:18:db:e0:53:62:b4:
54:dc:34:bf:43:60:78:0f:b9:93:c0:71:a6:d3:c4:a3:e8:37:
9b:2c:2e:68:79:90:90:7d:c4:a9:37:8e:f5:9d:b3:7e:c5:11:
70:5a:8b:dc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 12 01:39:49 2024 by rpki-client on console-fra.rpki-client.org