Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3659F9C/1D22996E7A0911EDBD422185F1222468/59820A203A9D11EE8D3F4F0D4AD9E6FC.roa
File: 59820A203A9D11EE8D3F4F0D4AD9E6FC.roa (raw, json)
Hash identifier: +/YKlJPveGl81Qepx+nPKA94GRITTOHOp6m08wjnWBc=
Subject key identifier: 6B:67:BB:72:E9:6E:69:33:B9:E2:AF:14:4B:EA:53:55:B8:35:70:1A
Certificate issuer: /CN=F3659F9CAR/serialNumber=09FB3136ECD5E3D7CF00B32C121F12E8AFD0A601
Certificate serial: 0134
Authority key identifier: 09:FB:31:36:EC:D5:E3:D7:CF:00:B3:2C:12:1F:12:E8:AF:D0:A6:01
Authority info access: rsync://rpki.afrinic.net/repository/arin/CfsxNuzV49fPALMsEh8S6K_QpgE.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3659F9C/1D22996E7A0911EDBD422185F1222468/59820A203A9D11EE8D3F4F0D4AD9E6FC.roa
Signing time: Mon 14 Aug 2023 12:23:18 +0000
ROA not before: Mon 14 Aug 2023 12:23:15 +0000
ROA not after: Tue 13 Aug 2024 12:23:15 +0000
asID: 34549
IP address blocks: 66.251.140.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 308 (0x134)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3659F9CAR/serialNumber=09FB3136ECD5E3D7CF00B32C121F12E8AFD0A601
Validity
Not Before: Aug 14 12:23:15 2023 GMT
Not After : Aug 13 12:23:15 2024 GMT
Subject: CN=64da1cb6-bf91
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:a0:84:af:1a:26:8e:19:d3:88:56:7d:81:f4:
14:6a:eb:b9:30:78:ef:37:a1:82:66:a3:f1:ac:e8:
33:08:1c:f4:2c:f0:30:19:8c:02:9d:a4:3f:1d:5b:
d1:be:e3:c2:df:13:39:3e:fa:51:86:3f:0c:70:55:
d0:83:44:9f:77:f5:3f:4d:1b:e9:03:61:61:5a:fa:
cf:5b:29:02:49:22:d4:22:d4:f5:a0:c8:29:5f:9f:
09:50:f2:0b:17:d7:7e:bd:dc:53:53:63:3c:14:0e:
d6:e8:18:04:48:5c:90:03:13:ba:6c:5d:e8:2e:f5:
78:14:bc:1b:f8:e2:9d:f0:7a:5d:8d:4b:0b:1b:96:
7e:8f:06:ec:28:78:40:03:09:29:be:34:b3:ce:40:
99:b3:80:00:4f:d5:02:3f:53:a9:85:e7:4a:3f:84:
a5:d0:87:73:bf:7c:ff:e1:4b:43:35:2c:82:41:fd:
6c:3d:bc:53:5e:87:e6:f7:71:f8:d5:db:ed:34:21:
73:be:c6:0a:64:d9:9d:68:6e:37:a8:2b:5d:cb:d1:
f8:49:8c:b1:95:36:fa:98:38:ac:91:64:e6:ea:f6:
9c:88:ad:24:b6:f2:f6:6f:41:2d:e6:02:17:22:1b:
43:0f:36:d3:6d:7e:36:44:19:b6:64:9e:8e:0d:f2:
e1:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:67:BB:72:E9:6E:69:33:B9:E2:AF:14:4B:EA:53:55:B8:35:70:1A
X509v3 Authority Key Identifier:
keyid:09:FB:31:36:EC:D5:E3:D7:CF:00:B3:2C:12:1F:12:E8:AF:D0:A6:01
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3659F9C/1D22996E7A0911EDBD422185F1222468/CfsxNuzV49fPALMsEh8S6K_QpgE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/CfsxNuzV49fPALMsEh8S6K_QpgE.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3659F9C/1D22996E7A0911EDBD422185F1222468/59820A203A9D11EE8D3F4F0D4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
66.251.140.0/22
Signature Algorithm: sha256WithRSAEncryption
e7:4f:03:75:05:cf:87:9b:2b:85:02:44:97:d6:db:82:41:47:
e1:44:ed:88:3e:83:5b:e4:ee:5d:e6:de:b0:d5:79:df:19:8b:
cb:ec:4d:ae:e3:3f:98:27:c7:f5:33:a5:7e:0f:a2:cf:6d:7d:
bf:e6:c0:00:8f:7c:1c:01:b4:97:12:18:c3:78:a3:23:ee:2a:
61:f7:b0:16:81:54:dd:38:4e:cb:e1:0a:6c:62:d2:dd:a2:b9:
ca:20:23:07:fd:33:41:00:a7:46:86:61:21:e4:73:2e:58:7d:
17:cc:ff:bb:7e:4f:16:e5:95:02:9b:75:bb:62:d7:0d:8d:1a:
db:95:fe:06:ca:68:59:eb:5a:a6:ba:28:0d:9b:92:c3:10:33:
7a:73:22:83:be:7b:63:81:00:82:57:5b:88:50:f8:a7:17:23:
09:29:ab:ed:fd:d3:5f:05:75:7a:bd:0a:c7:34:06:83:b2:13:
cd:30:16:46:71:dc:a0:7a:5a:08:d4:53:73:1f:6e:67:6a:32:
86:db:22:e8:d0:54:c4:54:5c:96:23:7c:55:b5:58:a9:db:5d:
dd:19:3a:21:0a:b4:5d:74:03:18:bc:31:27:7f:da:7c:18:56:
eb:f2:b7:92:08:9a:84:b1:1f:4f:4b:28:98:83:fa:da:60:79:
ea:9c:b9:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 14 04:26:00 2024 by rpki-client on console-fra.rpki-client.org