Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/23DF4CF647EF11EF9351A075762E951A.roa
File: 23DF4CF647EF11EF9351A075762E951A.roa (raw, json)
Hash identifier: kYweMCN6m82xkZoD7iQoQC+88AxwMWdrr+6jcGvNgew=
Subject key identifier: BB:42:5E:96:E0:6E:28:44:69:10:1E:51:14:31:E6:3C:27:58:0B:B4
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 9E4B
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/23DF4CF647EF11EF9351A075762E951A.roa
Signing time: Mon 22 Jul 2024 05:56:30 +0000
ROA not before: Mon 22 Jul 2024 05:56:26 +0000
ROA not after: Wed 31 Jul 2024 05:56:26 +0000
asID: 398704
IP address blocks: 156.245.244.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 40523 (0x9e4b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jul 22 05:56:26 2024 GMT
Not After : Jul 31 05:56:26 2024 GMT
Subject: CN=669df48e-a6e6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:66:fa:f1:06:60:28:26:15:e0:bb:85:78:36:
41:13:31:c7:c5:c6:1d:73:5a:56:92:bf:cb:31:ee:
e5:7d:43:7e:9a:b5:21:55:33:33:7b:8b:0e:db:94:
8f:0a:d1:c1:81:bd:ff:09:7b:1e:89:8b:c5:93:db:
0b:08:af:dc:47:0b:58:72:41:f1:5f:d3:22:5d:35:
b9:b2:b9:9d:8c:92:75:0f:b2:21:27:71:0b:77:3f:
bc:2d:fe:64:d4:9a:30:46:52:20:44:14:89:95:4f:
ed:e7:40:ca:16:61:4f:68:bf:f0:8a:70:b7:b6:7f:
e9:80:0c:67:17:26:d7:45:5f:b6:c1:18:1a:1e:53:
b2:4f:10:54:d0:3e:cd:3c:2e:57:55:6f:9f:73:d5:
7e:fd:02:43:bf:2a:a9:23:ed:a8:a5:1e:c2:b8:79:
1b:2f:f8:51:34:c6:d8:23:2a:83:87:ba:b0:ab:41:
ca:02:58:f2:95:93:c6:b7:42:62:b4:be:29:8e:2a:
4d:d3:7f:f7:60:20:f5:c7:6f:fa:f5:ee:45:13:41:
24:18:7c:64:a6:cb:54:7e:1a:13:38:63:e2:85:61:
94:4e:03:94:a0:5d:7d:9b:ad:4a:8a:18:b4:be:11:
b3:a2:eb:fb:c1:cb:f8:8d:fb:8b:53:9a:cf:de:10:
e4:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:42:5E:96:E0:6E:28:44:69:10:1E:51:14:31:E6:3C:27:58:0B:B4
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/23DF4CF647EF11EF9351A075762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.245.244.0/22
Signature Algorithm: sha256WithRSAEncryption
84:e1:a8:75:b4:87:fc:e2:47:f4:8f:0b:91:6b:e3:85:50:70:
d8:ba:a3:4f:b0:79:cf:27:fd:87:65:77:ce:00:a9:3f:af:4f:
b1:4a:02:0a:67:6f:53:ec:45:d8:dc:5c:05:25:ea:03:f3:66:
36:3b:a8:ad:83:8e:57:c4:50:ae:2e:19:2f:43:48:99:2b:42:
e0:56:b2:94:f8:1b:90:7c:b3:1b:3b:d1:e9:93:81:c7:dc:d0:
17:cd:21:9e:7e:f2:d9:9c:6b:2c:67:f7:c0:94:4b:95:e4:a9:
67:3a:b8:45:31:40:2d:c0:56:c2:a2:ce:6b:aa:eb:c1:e9:b4:
e9:83:75:1d:eb:8a:e5:53:50:f5:22:d9:fc:ca:83:b2:38:33:
a0:e2:4a:9c:1e:db:e6:51:0d:36:fc:92:c1:3e:63:fe:6e:b9:
a4:86:f2:dd:8f:9b:16:ae:c9:fc:37:8d:b7:c0:82:20:94:60:
a4:0e:45:72:0d:fc:cb:99:a7:5b:14:a5:44:0d:a3:31:7a:3f:
4b:83:99:d8:bb:a1:61:2b:56:3b:47:89:17:82:fa:49:11:06:
32:14:13:8a:de:f0:12:96:2c:36:e6:c5:22:cd:70:c3:b8:f9:
77:58:7e:29:29:16:97:b6:fb:c4:0f:fe:3c:ae:9d:ea:38:c0:
be:4a:24:2c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 31 12:40:21 2024 by rpki-client on console-fra.rpki-client.org