Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/1E8969B8128311EF99D8084B017001B1.roa
File: 1E8969B8128311EF99D8084B017001B1.roa (raw, json)
Hash identifier: MGoaIALdlTpdXXIpEzacKMHVkoCf9bdRyXdc8o2m3SQ=
Subject key identifier: 09:15:01:BA:DA:8A:FB:42:40:7D:7F:D7:E0:C2:54:97:2E:E6:59:58
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 8A47
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/1E8969B8128311EF99D8084B017001B1.roa
Signing time: Wed 15 May 2024 06:19:43 +0000
ROA not before: Wed 15 May 2024 06:19:40 +0000
ROA not after: Sun 26 May 2024 06:19:40 +0000
asID: 54467
IP address blocks: 156.239.0.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 35399 (0x8a47)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: May 15 06:19:40 2024 GMT
Not After : May 26 06:19:40 2024 GMT
Subject: CN=664453ff-d466
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:00:bc:95:9c:c6:4c:89:97:31:d6:76:46:96:
c0:42:5f:55:9d:fb:84:2e:d8:a2:cd:46:4a:b0:7d:
be:a3:c0:ce:79:84:27:17:61:a7:a2:7d:1b:f6:de:
fc:10:83:5a:28:7f:21:94:c5:d7:2d:46:68:17:14:
d3:72:50:01:50:81:06:10:d1:11:92:d3:b6:d6:87:
db:c1:87:fb:f5:e7:e2:71:21:49:7c:0a:ea:05:19:
53:28:25:a1:62:a6:eb:85:fa:ee:8e:bf:f6:00:4a:
a3:b7:15:38:72:80:c0:03:e3:d6:78:cd:b9:da:cf:
51:5c:ba:ef:6e:f8:70:a1:82:97:42:fd:6f:11:95:
67:40:09:ee:1b:76:ae:4b:23:eb:4a:51:e7:b0:1b:
6a:0a:fe:95:fb:ff:10:1b:55:64:07:17:c4:48:c5:
90:96:52:98:ab:d7:19:6b:f1:0c:a5:1d:e7:25:ba:
ab:73:a4:f5:ca:93:d2:0d:39:f7:bd:2d:ff:a8:51:
0b:ef:1c:b0:12:b7:3f:26:19:31:2d:e1:27:c6:ca:
db:71:1d:83:ef:df:0c:50:c0:29:3f:89:e9:89:84:
51:5a:d4:4b:73:e8:7e:26:6c:ee:a4:68:53:86:e9:
33:1c:c0:29:d9:8a:bc:94:e5:64:91:c9:63:7e:37:
c8:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:15:01:BA:DA:8A:FB:42:40:7D:7F:D7:E0:C2:54:97:2E:E6:59:58
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/1E8969B8128311EF99D8084B017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.239.0.0/20
Signature Algorithm: sha256WithRSAEncryption
83:87:86:72:ee:39:fc:c0:e3:42:9f:e7:f8:64:55:3d:e3:86:
b0:7c:c7:fb:f4:3e:fd:f6:58:f4:84:bb:49:2b:9f:2f:1f:dc:
69:63:52:a5:3d:ef:a6:7d:14:58:34:87:d8:a1:19:db:84:7e:
87:e6:80:f5:e6:9b:37:c7:c2:bd:2c:37:f1:86:c0:a5:dd:ad:
57:7b:8b:5d:8c:10:5a:93:10:68:dc:9b:3c:5f:21:9b:d7:53:
16:dc:71:66:0e:b3:3c:b8:6e:9a:77:d8:21:18:94:09:e8:d7:
d7:af:76:04:fe:87:d9:39:36:fa:48:60:24:f6:45:9c:48:a3:
55:17:9c:fa:17:b7:0f:0a:42:a6:e2:cb:1b:c9:ba:97:32:40:
36:5e:e4:5b:a4:5e:24:4f:db:6c:bb:b4:3e:9a:77:b3:c8:29:
de:26:62:30:57:f4:2a:80:8e:66:6a:2f:2b:0b:66:f6:d5:87:
77:c3:37:f3:77:81:d5:8e:0f:0f:0b:a5:a7:c1:f4:51:2a:f1:
d0:b6:cf:97:b5:a8:86:95:30:ea:cf:6a:b8:f4:eb:b1:dc:29:
07:85:87:b8:99:d4:5c:7e:22:23:d2:e0:a6:6b:9d:3f:1c:6e:
36:b1:97:9e:5b:0b:7a:c2:53:b2:40:8a:9e:c2:fd:15:4d:69:
92:ce:14:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:02:46 2024 by rpki-client on console-ams.rpki-client.org