Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/0EAC523649AF11EFA9D54757762E951A.roa
File: 0EAC523649AF11EFA9D54757762E951A.roa (raw, json)
Hash identifier: fPS+STJ8p4h37+5K0jXnO8KoVXBDt9dtTuOHRlUPSAQ=
Subject key identifier: 09:E8:8D:48:5A:92:73:E0:7D:3C:26:FB:D2:4F:95:93:EB:D2:F5:F2
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 9F67
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/0EAC523649AF11EFA9D54757762E951A.roa
Signing time: Wed 24 Jul 2024 11:22:49 +0000
ROA not before: Wed 24 Jul 2024 11:22:45 +0000
ROA not after: Fri 02 Aug 2024 11:22:45 +0000
asID: 20473
IP address blocks: 156.236.77.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 40807 (0x9f67)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jul 24 11:22:45 2024 GMT
Not After : Aug 2 11:22:45 2024 GMT
Subject: CN=66a0e409-417e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:eb:69:95:2e:17:ae:f7:ce:fb:11:b7:67:ec:
04:96:7c:6c:f0:05:e7:f8:2c:44:07:9f:1b:17:93:
06:6b:bf:49:43:c5:c9:4a:52:c4:bc:fe:4a:ce:f7:
dd:bf:be:70:18:ff:77:58:6f:0f:a5:81:fa:e8:52:
d3:45:22:78:76:03:cf:dd:01:7d:35:dd:c3:7a:bc:
c0:55:09:fd:bd:3d:16:7b:82:e7:c6:f4:b8:42:99:
42:f0:83:4b:22:03:2f:56:1f:f5:75:56:32:8b:8a:
24:fa:8e:bf:7f:c4:6d:49:49:fc:38:0d:a6:3d:ff:
69:c0:2f:b5:23:94:2b:39:48:a1:c2:95:e7:d1:d2:
e8:56:3f:c2:d1:52:3b:79:f5:3b:0b:af:36:56:08:
d7:63:39:1b:3c:71:45:79:26:4e:bb:d3:44:25:d5:
0d:ab:48:49:44:68:f0:27:77:c9:aa:51:8a:4f:ae:
65:7d:45:cf:d6:32:73:b2:0d:b9:b8:10:19:d7:63:
30:16:14:58:60:00:9f:e3:c2:15:33:4d:e7:2e:64:
bb:de:0e:e2:84:6b:17:e2:81:7d:92:0d:07:17:c6:
4b:7b:d7:16:74:af:23:3b:2f:22:ed:e1:b3:9a:9e:
bb:f5:85:2a:25:02:17:ac:c5:c1:7b:1c:fe:f6:bb:
24:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:E8:8D:48:5A:92:73:E0:7D:3C:26:FB:D2:4F:95:93:EB:D2:F5:F2
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/0EAC523649AF11EFA9D54757762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.236.77.0/24
Signature Algorithm: sha256WithRSAEncryption
16:0c:11:0b:f4:b4:42:ca:b1:de:83:71:72:f2:37:58:d3:51:
27:20:bd:12:90:75:86:55:0a:ad:2c:b9:04:b9:03:e1:41:e2:
d6:c6:89:ce:07:35:a0:9b:fb:42:c5:1e:fb:8c:bb:21:4f:f9:
52:2b:13:84:c5:b4:44:4e:41:ae:ee:88:d4:ac:f3:19:e4:04:
4e:e6:2a:23:99:34:6f:43:c3:ec:cf:f0:ee:61:0a:40:a0:2f:
fe:d7:b9:59:75:f8:3f:41:38:98:15:b8:c6:ff:b9:8d:2a:e8:
40:75:07:f3:23:e3:be:9d:37:e5:12:66:1f:05:86:09:ea:e3:
fd:0e:eb:c2:2a:d6:37:1b:69:bd:59:7e:c8:ad:d5:a6:c2:c5:
6c:31:7f:c9:63:b4:a6:fa:0e:24:8a:06:f3:49:00:ad:1b:7e:
a7:06:4c:ff:3a:ed:bd:4c:be:c6:fd:df:f8:85:d2:1a:f5:62:
12:66:b0:e3:ff:f3:c2:20:cf:b9:8f:46:d5:1a:1f:49:45:bc:
39:57:fa:fd:d8:d5:b9:d4:b0:dd:bc:d0:d4:2a:5e:7c:0b:72:
94:27:08:c3:0e:41:54:7e:8f:3e:8e:68:f0:f4:61:ab:85:ad:
bb:64:d2:dd:c7:1c:fe:86:bd:fd:2b:1e:a4:bb:a5:c7:60:9a:
9a:0b:1a:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Aug 2 16:11:33 2024 by rpki-client on console-fra.rpki-client.org