Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/1B33E5D402F911EF9394D921017001B1.roa
File: 1B33E5D402F911EF9394D921017001B1.roa (raw, json)
Hash identifier: +i7YuxauIfdO8RNC870qwd1oGHXbsVYrdtndVX9F8OQ=
Subject key identifier: 28:59:97:40:30:C1:4F:42:06:F1:21:05:60:45:1B:37:89:25:F0:A2
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 851B
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/1B33E5D402F911EF9394D921017001B1.roa
Signing time: Thu 25 Apr 2024 11:44:00 +0000
ROA not before: Thu 25 Apr 2024 11:43:57 +0000
ROA not after: Sun 05 May 2024 11:43:57 +0000
asID: 39600
IP address blocks: 156.255.84.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 34075 (0x851b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Apr 25 11:43:57 2024 GMT
Not After : May 5 11:43:57 2024 GMT
Subject: CN=662a4200-58ab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:2e:a9:52:e2:e7:4c:b7:91:48:35:4c:36:98:
2c:f5:a6:f3:8f:8a:0e:0f:9b:2a:94:4a:26:b6:d8:
de:46:97:34:87:15:6b:e4:40:3e:ae:3d:3c:1b:89:
ad:10:54:c3:35:14:33:5f:55:8c:ea:71:ef:3b:c9:
1b:72:ad:2c:97:4a:b2:a2:3f:06:91:01:60:ca:d9:
8f:f1:9e:e5:ad:06:5d:86:56:1c:26:7e:ca:1d:9d:
47:30:f6:12:9f:d5:ba:4a:08:0e:45:f6:26:7d:c6:
ed:fb:f5:f2:9d:3b:60:d5:ca:09:d1:dc:4e:09:82:
59:66:5a:38:f2:5b:3a:77:b5:e7:13:f6:bf:f8:21:
39:af:30:dd:08:73:c3:82:95:26:88:da:0c:d8:39:
10:52:25:52:23:74:24:a2:de:d0:52:1b:07:f2:84:
1e:c9:26:53:bb:45:ff:2f:ca:ef:4d:1a:84:d6:be:
5d:4c:1b:7f:ed:a3:9c:41:09:6e:69:d8:fe:7b:75:
95:f1:a4:49:ab:5a:6c:95:bc:50:b3:c0:7d:ee:08:
e8:8f:c4:fd:39:3f:d6:7f:34:8a:b5:cc:33:71:1e:
5b:9c:b6:da:82:7e:f9:52:27:4f:7b:dc:ba:74:aa:
98:45:c4:37:f6:63:c3:55:b8:58:5e:48:f8:f5:b0:
c7:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:59:97:40:30:C1:4F:42:06:F1:21:05:60:45:1B:37:89:25:F0:A2
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/1B33E5D402F911EF9394D921017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.255.84.0/22
Signature Algorithm: sha256WithRSAEncryption
60:6f:a9:21:15:0c:ef:c1:5d:c3:4a:5f:49:96:44:aa:16:76:
f3:13:e0:59:d6:5f:10:74:67:1c:72:bf:e9:99:c3:fa:22:6e:
37:5d:30:82:cb:27:5b:a3:c7:a3:a4:85:51:89:d1:1d:be:c1:
59:07:08:8e:10:00:b3:07:72:05:0f:4f:1e:39:66:93:fa:d0:
3f:10:c5:d0:f6:52:1e:a4:ae:9f:86:85:0d:28:f2:1b:1e:ca:
9d:c3:01:f4:0a:b0:64:6c:2d:fc:e3:20:cd:b5:f9:e1:cb:fb:
2c:a6:ff:d2:18:1a:99:18:66:a5:1b:c1:99:e6:2e:72:95:ca:
01:d4:5d:f8:ca:4d:af:19:87:0a:26:77:30:30:41:74:0b:d0:
65:1f:86:01:94:b1:9f:fc:db:4f:47:45:65:64:ae:f1:1b:f2:
2c:fc:a2:19:38:bf:98:79:4f:5f:16:f5:15:a0:d7:e0:27:88:
1b:63:5f:a1:2a:13:e3:f7:55:23:49:f9:01:e2:5f:ff:4f:06:
24:3b:e3:f2:59:81:5a:d0:15:76:f7:e7:25:d8:ca:01:55:64:
0e:e7:2c:3a:c0:c9:e9:54:15:c2:9f:d0:db:1c:0d:7a:ae:c8:
7b:24:59:c4:be:bd:8b:3a:0d:66:3f:66:c5:bb:84:62:94:79:
00:c9:19:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 6 02:29:25 2024 by rpki-client on console-fra.rpki-client.org