Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/1A55226E45A611EFA38E8A6E762E951A.roa
File: 1A55226E45A611EFA38E8A6E762E951A.roa (raw, json)
Hash identifier: fTVFipQwl05hG9c0W0OTYJcg1vj9TLr2XNP0PwajsrM=
Subject key identifier: 53:07:5C:D7:2C:1A:EB:2C:86:E0:2C:AE:CA:32:BC:EF:F6:47:0C:F6
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 9D96
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/1A55226E45A611EFA38E8A6E762E951A.roa
Signing time: Fri 19 Jul 2024 08:08:38 +0000
ROA not before: Fri 19 Jul 2024 08:08:35 +0000
ROA not after: Mon 29 Jul 2024 08:08:35 +0000
asID: 54467
IP address blocks: 156.239.224.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 40342 (0x9d96)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jul 19 08:08:35 2024 GMT
Not After : Jul 29 08:08:35 2024 GMT
Subject: CN=669a1f06-cd75
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:f2:13:d1:9d:84:a0:d4:bf:46:14:36:1f:ef:
d1:15:22:5e:23:7e:24:ec:c0:4d:63:31:c7:d4:e3:
55:09:04:6f:9e:a6:e3:b2:de:96:56:69:99:7e:03:
3d:0d:5d:1b:85:a8:b1:77:63:e2:c5:27:58:c9:a1:
a7:94:24:24:2c:ad:00:ff:a7:99:62:76:1f:b5:ab:
1a:d9:ce:74:83:81:b3:15:80:19:65:86:86:91:5f:
58:67:d3:d1:09:b2:13:3c:6f:f6:4d:95:80:b3:10:
72:e5:b6:8a:5f:e8:3f:91:74:b9:62:2f:61:ed:f6:
85:6f:74:38:50:25:f9:86:ae:09:2a:3b:9a:87:c4:
65:40:56:af:0d:c8:08:26:a2:0e:a4:ed:1d:fd:69:
f2:bc:f6:a4:65:7e:79:c0:7d:5c:59:07:86:00:30:
47:d0:d1:77:94:ca:b5:b9:06:0c:87:f7:7f:95:2a:
e8:25:83:e9:96:0d:f3:65:30:89:6b:d8:85:43:52:
39:08:14:5f:36:0a:86:6f:b3:79:c9:d2:56:a2:1d:
45:40:17:3f:1d:70:5d:8a:98:7d:a2:21:6e:b1:cf:
f6:a6:c0:05:d3:44:95:f5:69:83:b9:0e:db:29:4e:
f3:0a:a4:42:cc:a4:24:4c:a3:e8:cf:76:57:ed:d7:
ca:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:07:5C:D7:2C:1A:EB:2C:86:E0:2C:AE:CA:32:BC:EF:F6:47:0C:F6
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/1A55226E45A611EFA38E8A6E762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.239.224.0/19
Signature Algorithm: sha256WithRSAEncryption
05:48:6b:83:d3:d6:c5:03:10:51:b4:b3:0f:cd:8f:49:6e:95:
6a:1b:18:cc:d1:ed:87:81:0a:cf:ef:b2:c0:7a:0b:ca:f9:64:
53:86:c4:b9:70:a3:58:fe:68:87:9d:dd:69:9a:a2:5d:9d:cf:
81:2f:43:fb:c2:73:8a:26:a1:45:90:3f:38:3b:bd:6c:0f:89:
5d:3a:2d:9e:d3:22:b4:41:fc:f7:da:04:fb:63:cd:3f:e3:d1:
c9:72:e1:8c:1a:0a:b2:2c:c2:31:77:34:39:8c:8b:86:30:0f:
9f:0a:2a:df:67:00:84:f0:b4:16:58:f6:ff:9d:1d:95:ab:e3:
ce:01:3a:cf:a4:90:31:23:5a:a1:b0:5c:f0:87:45:4a:1c:ab:
5f:c7:bf:ed:57:c1:cb:b7:ce:74:c4:65:4e:8b:bc:23:5d:b1:
0e:69:72:be:e5:ff:5d:58:7a:75:5c:e6:5c:43:3f:c3:08:f1:
76:17:3c:5e:17:64:f5:3a:04:e7:f7:03:ce:40:74:d5:eb:46:
5f:13:88:ca:7a:e2:87:63:3b:0d:8d:eb:4a:da:c8:60:ee:ea:
bf:eb:31:87:ef:35:d2:d1:8c:31:25:b0:88:10:29:b8:18:51:
84:a8:bd:d0:4b:12:0c:46:87:29:46:be:a8:31:1f:bf:f1:9c:
2f:45:fe:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jul 29 12:09:46 2024 by rpki-client on console-ams.rpki-client.org