Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/090C3EEA44F511EF9F5260B5762E951A.roa
File: 090C3EEA44F511EF9F5260B5762E951A.roa (raw, json)
Hash identifier: i35NfMRgQVbElwoHNNEQ7S+MbSq/RniRXo11rFjcvJA=
Subject key identifier: DA:34:04:78:4C:D1:5C:EC:85:27:0A:4F:FE:FF:07:73:5E:70:FC:A2
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 9D77
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/090C3EEA44F511EF9F5260B5762E951A.roa
Signing time: Thu 18 Jul 2024 11:01:08 +0000
ROA not before: Thu 18 Jul 2024 11:01:05 +0000
ROA not after: Sat 27 Jul 2024 11:01:05 +0000
asID: 5065
IP address blocks: 156.239.143.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 40311 (0x9d77)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jul 18 11:01:05 2024 GMT
Not After : Jul 27 11:01:05 2024 GMT
Subject: CN=6698f5f4-b8de
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:ef:d9:e6:79:5e:62:a8:5d:17:ec:fc:16:7d:
da:5c:ec:5d:bd:f8:c5:97:88:a6:cb:d2:05:b8:c1:
12:76:20:19:ea:bb:b3:81:79:ea:27:f4:f5:9b:cf:
e3:08:b4:42:fe:34:18:86:f6:f3:75:aa:56:80:8b:
95:1b:b7:b4:07:e2:d7:7b:47:6f:ae:9d:0b:e6:c6:
07:1e:d0:d2:14:9d:e1:08:a1:43:d0:0d:20:43:8d:
1c:a9:7b:a3:c4:5a:41:be:14:62:55:71:20:42:66:
01:20:5e:d3:f8:03:09:4c:70:69:90:07:4d:04:0a:
96:30:2e:37:cc:71:93:8b:2a:c5:7e:7a:17:27:48:
83:61:57:3f:18:a5:09:47:6c:ba:da:29:ff:92:3a:
03:47:09:bf:13:f7:00:ea:6a:48:f2:47:22:bc:29:
7e:0e:c5:04:92:78:86:bb:ae:c2:0c:6d:61:9a:44:
55:d2:fd:e9:9e:8e:d6:1b:54:6c:db:bf:0c:44:20:
44:75:93:d4:ca:b2:53:76:3a:be:ec:e6:92:5b:b8:
fe:b0:6a:05:09:d3:d9:58:bc:e0:d7:95:f8:02:be:
47:85:d9:a2:e6:ae:6f:03:3a:c8:f4:47:4b:b9:8b:
9c:25:3f:bd:05:b7:84:31:58:50:eb:74:fb:a4:e6:
3f:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:34:04:78:4C:D1:5C:EC:85:27:0A:4F:FE:FF:07:73:5E:70:FC:A2
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/090C3EEA44F511EF9F5260B5762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.239.143.0/24
Signature Algorithm: sha256WithRSAEncryption
1f:e9:dc:3a:1f:40:18:64:f8:5a:79:9f:f1:5c:c7:1a:ad:6f:
56:3d:6a:e3:eb:90:f2:d1:41:29:88:44:0a:12:41:0f:31:ed:
84:c0:89:51:37:89:03:12:eb:fd:cf:42:fb:98:01:09:b9:46:
b4:88:87:f1:e1:82:86:d6:af:73:a3:79:29:9d:7a:68:8b:48:
4d:32:7d:6f:31:ae:a3:b6:35:eb:54:a4:e4:c2:10:d8:44:47:
a6:40:34:5b:57:fc:9f:09:ab:c9:68:6f:04:9b:bc:cb:45:eb:
fe:4d:f3:b5:0f:fa:93:ae:f0:d2:66:c5:d6:99:a7:a4:ea:62:
ff:5c:6c:3d:b2:9c:64:1a:8e:38:49:aa:07:57:2e:88:3d:5b:
eb:70:86:07:08:70:0b:6b:60:d0:bd:24:e9:aa:3f:64:a2:d1:
e6:f3:25:8c:14:04:66:a6:c9:41:01:51:75:97:73:f1:e3:7f:
b6:a1:e8:12:3f:61:25:9b:ce:20:64:33:52:48:5d:51:47:20:
3b:16:90:45:9a:ef:2b:ba:14:0b:ef:c9:1f:1e:d7:60:b0:f7:
10:ad:55:2f:c4:2b:48:e0:ff:38:af:c3:ad:99:6b:02:95:7c:
fb:1d:d4:80:d5:02:b9:84:c4:d0:21:25:e6:fc:cd:79:fc:28:
46:b2:ce:3e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 28 03:03:26 2024 by rpki-client on console-ams.rpki-client.org