Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/20789B6C48E411EFB1A95175762E951A.roa
File: 20789B6C48E411EFB1A95175762E951A.roa (raw, json)
Hash identifier: gME3v5j57iwmPkePRla/ZZG02EMaNVAx3KOuCFdjAD8=
Subject key identifier: 36:FE:AA:94:EE:AB:77:DB:7B:90:93:4B:1D:29:B1:E2:96:01:3D:22
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 9EC8
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/20789B6C48E411EFB1A95175762E951A.roa
Signing time: Tue 23 Jul 2024 11:10:11 +0000
ROA not before: Fri 26 Jul 2024 11:10:07 +0000
ROA not after: Fri 02 Aug 2024 11:10:07 +0000
asID: 204957
IP address blocks: 156.225.10.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 40648 (0x9ec8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jul 26 11:10:07 2024 GMT
Not After : Aug 2 11:10:07 2024 GMT
Subject: CN=669f8f93-478b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:93:76:9c:9a:a6:20:44:a2:b5:cc:bc:31:4b:
42:c8:8c:e1:fc:79:d3:a3:90:cc:42:d7:87:91:90:
04:89:1c:95:0d:00:bf:4f:fe:fc:81:da:44:b4:d3:
9a:32:ed:e4:fd:cb:ce:1c:a3:c9:e9:53:a3:11:4c:
1c:dd:63:c8:52:e0:9c:43:a1:0d:87:53:a9:59:a6:
5e:27:29:61:a7:74:f2:d7:e9:9f:b2:1b:3d:fa:78:
ce:cc:b6:8f:30:d7:09:40:43:37:46:17:41:7b:93:
a2:be:fc:70:8f:ac:8a:92:54:6c:0e:ec:89:43:f3:
ce:f6:e7:69:30:22:02:20:9f:9e:a5:84:94:85:f8:
e2:3c:54:4c:4c:94:22:fe:f0:f0:78:a5:73:05:b2:
2d:cc:43:27:9b:c6:ba:84:42:a6:c5:db:3c:4a:e8:
5a:f6:1d:e3:9e:0a:f7:b3:fb:8d:01:7f:af:00:af:
d6:fa:3c:b9:8e:c9:94:f5:ef:0b:2b:e7:9e:92:d2:
4d:e4:5d:3e:5a:9e:28:58:b9:d4:be:82:2c:ec:09:
17:63:2d:c2:d1:5f:92:29:d8:63:7a:f9:f8:a5:17:
93:e1:63:2d:64:1d:72:7a:c6:af:3a:d7:8b:a4:b9:
d6:a7:51:b2:a8:05:70:18:dd:c3:2f:c8:1b:6e:41:
e9:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:FE:AA:94:EE:AB:77:DB:7B:90:93:4B:1D:29:B1:E2:96:01:3D:22
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/20789B6C48E411EFB1A95175762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.225.10.0/24
Signature Algorithm: sha256WithRSAEncryption
51:65:8f:14:a1:57:2f:45:23:24:36:d9:9d:8c:9c:24:5e:a9:
d1:17:08:9c:d8:0b:09:53:9b:3a:91:a7:c4:5c:a8:24:21:6a:
b1:90:f3:4b:8c:80:72:3a:6b:5e:0c:74:18:19:b0:61:a7:6f:
9f:46:85:3d:35:9f:d6:f4:18:a7:8c:8b:11:4f:c9:e7:fb:76:
e2:e5:41:e8:ac:1f:e6:90:fe:8d:b1:52:7c:0d:f8:f8:97:3b:
9a:e9:d1:87:62:e8:73:68:2c:4f:a4:c2:42:27:b1:cc:83:fb:
74:2f:7c:82:e1:5a:35:d8:62:14:cc:06:77:56:c4:0e:6d:5b:
9a:ef:09:d0:d9:8c:51:4e:1b:fa:07:9a:8f:90:2f:cf:ae:e0:
d7:a8:c0:ff:d5:b5:49:62:f3:b7:bf:62:d6:2f:b8:1a:55:72:
8d:dd:b5:a5:55:ba:6d:63:bb:13:90:13:cf:db:99:8c:59:17:
42:ea:75:7b:7e:33:4d:dc:b0:67:8d:45:38:09:bb:e5:a4:f3:
d9:68:1b:e8:ad:c9:43:c1:d7:52:91:18:d1:48:e8:68:79:f4:
54:cf:ec:0f:d3:ff:39:dd:47:34:ad:aa:be:23:99:00:78:94:
d3:58:8d:5c:5e:40:a9:d8:5a:dc:3c:a6:4d:7b:c3:ed:f2:da:
01:7c:31:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Aug 2 14:56:24 2024 by rpki-client on console-ams.rpki-client.org