Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/B0EC83801D0F11EFACBC07267DDC24C2.roa
File: B0EC83801D0F11EFACBC07267DDC24C2.roa (raw, json)
Hash identifier: SWdMA3LOddtsw4Heg6lREXr08VLNzdHpdffLJdEC7Yk=
Subject key identifier: 1D:6A:26:70:A5:66:FA:D1:2A:06:72:D0:4A:75:A9:CA:6C:7B:5A:BB
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 8CA6
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/B0EC83801D0F11EFACBC07267DDC24C2.roa
Signing time: Tue 28 May 2024 16:31:10 +0000
ROA not before: Tue 28 May 2024 16:31:07 +0000
ROA not after: Sat 07 Sep 2024 16:31:07 +0000
asID: 138415
IP address blocks: 156.241.16.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 36006 (0x8ca6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: May 28 16:31:07 2024 GMT
Not After : Sep 7 16:31:07 2024 GMT
Subject: CN=665606ce-ab48
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:91:4d:33:d7:4b:50:f1:bc:8b:10:ac:56:66:
f1:49:db:5e:d2:49:4f:31:c9:6a:07:0a:bb:a6:a9:
06:7e:41:43:7f:42:67:78:bc:17:4e:0f:f5:29:fc:
fc:30:a3:96:11:c3:ed:f7:04:e4:c4:5a:46:26:c8:
b2:8b:9d:c1:bd:c1:ab:8d:b7:60:46:55:f5:13:44:
de:fa:9b:7c:ec:94:d0:b4:d8:33:8b:6e:72:c2:78:
70:bc:ba:dd:03:60:de:b8:02:85:54:96:6d:93:4f:
f4:bf:d5:6d:68:e8:f6:c0:27:c2:64:89:a1:10:ef:
cf:03:7e:7e:11:20:71:6c:fe:fa:13:d5:9c:ae:8a:
bd:ef:a9:3a:8a:39:6d:e6:6e:52:6f:79:a5:f7:1d:
a3:48:f8:1c:5e:1f:41:17:bd:b3:35:76:94:41:54:
76:99:a7:da:5f:0a:12:86:31:f5:3a:d1:d0:6f:08:
6f:89:5e:f5:28:cc:92:bc:b8:ed:6d:87:5b:f3:c1:
cd:2a:fe:0d:59:e6:36:73:f2:c2:fe:e1:57:ff:27:
40:7d:b8:9a:94:04:be:59:f7:55:40:04:fa:3b:d8:
21:98:63:8c:c6:39:c3:15:cf:55:d8:07:f2:60:5d:
b1:a1:89:8d:8f:06:91:61:99:b8:72:59:a1:c0:94:
7c:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:6A:26:70:A5:66:FA:D1:2A:06:72:D0:4A:75:A9:CA:6C:7B:5A:BB
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/B0EC83801D0F11EFACBC07267DDC24C2.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.241.16.0/20
Signature Algorithm: sha256WithRSAEncryption
0f:20:d3:3f:bf:4f:3d:97:97:69:f5:5c:ca:8d:79:f6:bc:e4:
ee:b4:09:65:4b:91:cb:45:94:fb:2b:2b:20:5d:dc:57:27:62:
8b:39:c9:8f:a8:0b:f5:d7:4b:84:f5:eb:bf:2c:2d:9d:df:63:
ad:b1:8d:b2:02:c9:9c:7c:9e:1e:61:77:a7:0c:88:8c:8c:5a:
c8:7d:af:56:38:a4:ca:3c:da:6e:ad:ba:9a:70:d8:17:20:cc:
c5:71:38:0e:15:3b:eb:c7:ec:c1:d9:19:41:6a:ee:d0:0d:3c:
c7:1d:8f:6c:59:88:e1:f4:6d:a2:63:dd:4a:4c:c3:39:f4:c8:
e8:2c:56:37:d3:34:d4:ca:c2:90:79:52:82:64:ee:ab:d1:ee:
34:d8:59:b0:4b:78:d5:7e:d9:18:50:e3:09:d7:f3:d9:3f:fe:
e8:46:5d:b3:81:d0:45:40:80:6c:57:72:60:d5:c0:ae:22:a5:
c1:9d:f7:1c:57:08:83:5d:22:e2:9d:55:66:50:6e:8c:30:f1:
ce:16:c0:e5:61:51:5f:1e:de:dc:31:04:13:08:44:b1:7a:c3:
05:66:29:b4:b4:95:2b:a8:8e:a0:55:0f:2f:b9:f1:51:6b:cf:
8d:ce:8a:2b:70:0a:14:a7:43:09:bf:c3:a0:ee:51:f4:06:a9:
45:28:11:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 8 03:49:17 2024 by rpki-client on console-fra.rpki-client.org