Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/1AC0F88844E111EFB1EDCDB1762E951A.roa
File: 1AC0F88844E111EFB1EDCDB1762E951A.roa (raw, json)
Hash identifier: 1NsINbeZ6zedpy9Eesx/sQE4vaxUi3X+tFI6A8QQNRI=
Subject key identifier: B5:20:A7:57:17:C0:94:FA:E0:C0:1A:A6:EC:35:F2:3F:00:38:08:04
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 9D59
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/1AC0F88844E111EFB1EDCDB1762E951A.roa
Signing time: Thu 18 Jul 2024 08:38:28 +0000
ROA not before: Thu 18 Jul 2024 08:38:25 +0000
ROA not after: Sun 28 Jul 2024 08:38:25 +0000
asID: 5065
IP address blocks: 156.227.248.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 40281 (0x9d59)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jul 18 08:38:25 2024 GMT
Not After : Jul 28 08:38:25 2024 GMT
Subject: CN=6698d484-b1b0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:70:69:be:ca:99:87:2b:bd:37:6a:a9:38:d9:
34:2a:4a:21:d3:a8:0f:4c:41:22:8e:d3:29:7e:3d:
65:dc:f5:a5:b2:1e:3b:c3:ed:8c:46:8d:ed:ea:d7:
24:29:e1:01:cd:b9:31:eb:07:a6:10:39:4f:da:b1:
e0:16:42:d1:93:29:2f:fb:be:32:d6:e8:d7:24:f9:
bc:ca:ec:82:83:59:55:fe:29:5c:1e:09:d1:2e:7c:
ea:94:38:ea:1a:95:98:99:53:64:6b:ca:bb:1f:b6:
fc:b9:21:76:9f:a6:02:0f:44:72:18:bd:88:cc:62:
96:42:84:d0:b3:76:a7:b0:54:e4:f7:86:ce:f7:f4:
c6:23:6a:32:a1:ed:35:78:ed:c0:9f:4f:b0:b7:34:
8d:dc:a9:d0:54:03:9e:47:73:df:03:74:af:eb:25:
fe:b8:39:20:e5:7c:bc:0a:51:9c:f2:05:df:b0:3c:
86:79:c0:0d:45:5b:5a:e7:1d:52:7f:48:57:8e:27:
51:b2:37:2b:99:59:cd:b4:cf:ac:e4:57:4f:08:3d:
45:d5:64:fa:61:f1:6d:11:ee:12:c6:3c:9c:4b:15:
19:7f:3e:c2:03:85:90:b5:4a:3c:6b:fc:25:6c:a3:
cc:1f:ec:c5:67:28:f9:ff:d4:25:85:94:65:7e:a2:
73:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:20:A7:57:17:C0:94:FA:E0:C0:1A:A6:EC:35:F2:3F:00:38:08:04
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/1AC0F88844E111EFB1EDCDB1762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.227.248.0/22
Signature Algorithm: sha256WithRSAEncryption
00:d8:e8:51:0f:63:a0:f5:f6:d1:46:57:76:79:63:8f:fc:a0:
08:8c:b2:ed:b9:53:dd:d9:ca:97:8c:ec:72:db:38:af:1b:cc:
d5:04:2a:c9:02:0e:3a:66:1d:e4:ea:9b:81:43:1d:db:4c:27:
5d:94:1d:ef:6e:44:ad:b0:3f:42:56:02:83:93:68:f2:ce:fb:
e2:98:ac:b0:b6:f7:b4:ff:f2:3f:37:f9:b0:90:a7:9d:7e:6c:
9a:e3:b4:b0:a0:88:e9:1e:5b:57:93:f4:1d:85:f2:b0:40:2d:
d0:cb:20:d8:a2:05:75:ae:12:1c:a7:d9:56:ce:5c:7e:7d:4a:
b5:e1:fc:0b:f8:b2:97:59:19:c2:4d:22:96:1d:51:c3:3a:40:
d9:90:02:1a:a4:be:d9:3a:04:43:ca:fe:54:c1:71:d5:90:25:
88:e9:4f:25:c3:24:77:57:a3:2e:04:0a:a1:2e:57:13:05:4d:
15:23:ea:68:df:52:d4:cb:4c:a6:6d:f6:c8:6c:55:0e:2c:61:
f3:71:8e:4b:11:86:ec:70:77:be:1f:d6:bc:61:c3:95:c3:00:
d5:5a:33:d4:0a:01:bd:70:35:32:d3:6e:33:d4:b9:f9:65:b7:
21:b9:fa:10:d2:63:69:4f:da:fe:68:0c:6d:d8:38:19:4d:d1:
82:a7:33:e0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jul 29 03:38:52 2024 by rpki-client on console-ams.rpki-client.org