Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/24A5CA7A499311EF854B029A762E951A.roa
File: 24A5CA7A499311EF854B029A762E951A.roa (raw, json)
Hash identifier: H0fDl88+gQixx3gD8TZTtAqu8MVRzTPEY8phmZhVyp8=
Subject key identifier: 7D:60:88:F3:57:03:41:D7:98:5D:2B:C5:0E:64:D9:49:EB:53:E1:0A
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 9EE1
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/24A5CA7A499311EF854B029A762E951A.roa
Signing time: Wed 24 Jul 2024 08:03:00 +0000
ROA not before: Wed 24 Jul 2024 08:02:56 +0000
ROA not after: Fri 23 Aug 2024 08:02:56 +0000
asID: 202656
IP address blocks: 156.246.228.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 40673 (0x9ee1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jul 24 08:02:56 2024 GMT
Not After : Aug 23 08:02:56 2024 GMT
Subject: CN=66a0b533-6654
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:f6:fb:9b:10:13:ff:ca:9a:34:1f:f4:7f:86:
49:93:39:bb:b5:cc:9f:1e:69:56:06:bd:2f:85:f3:
34:05:af:83:d7:b3:7b:61:33:2b:ce:a2:66:cf:91:
d7:5d:ef:5c:83:11:90:e9:46:5d:c1:91:5a:4a:27:
07:36:b3:f3:97:15:73:fc:41:5d:1d:9e:7d:98:5e:
f4:fa:98:8c:d4:e6:ce:e8:c9:a5:7d:5c:a1:af:57:
04:97:96:d4:37:d2:dc:ff:00:a6:30:32:7a:30:6f:
5d:b7:07:dd:94:db:b4:4f:30:b3:b0:c6:4b:1a:3e:
7d:56:a4:5d:fe:eb:10:d2:89:e8:7d:d5:65:bb:60:
ef:65:6a:85:e5:4d:bd:9b:19:a4:0b:47:c8:a1:a9:
61:5a:0f:95:c1:f2:93:2a:ec:a1:38:2e:56:85:d9:
c8:42:ba:48:be:fc:af:0e:43:52:e3:ad:c5:3e:e1:
ad:7e:77:51:63:eb:da:01:0e:ad:86:75:01:42:e7:
c4:86:6f:8e:da:bf:a3:67:a0:27:92:61:04:43:cb:
94:12:34:e1:d3:27:aa:e4:e3:d1:45:73:f2:73:8b:
40:27:92:8e:70:83:78:22:67:4f:25:51:68:48:00:
2e:1f:a9:a1:c9:7e:57:87:e4:d5:6e:78:75:b1:14:
d0:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:60:88:F3:57:03:41:D7:98:5D:2B:C5:0E:64:D9:49:EB:53:E1:0A
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/24A5CA7A499311EF854B029A762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.246.228.0/24
Signature Algorithm: sha256WithRSAEncryption
10:60:f1:3b:c9:92:aa:30:39:e4:a6:e8:c2:18:dd:37:1d:96:
dc:b8:8e:60:25:26:d2:67:e0:39:d4:e8:ff:70:c1:a0:02:d1:
6a:28:6c:00:5b:3d:c5:3e:c3:4a:5e:51:cb:77:85:f7:2a:f9:
77:d7:e5:cd:1c:4a:c5:5f:35:d9:95:2c:77:90:df:de:ba:a7:
07:99:89:c6:6b:04:87:78:f7:cb:4b:8d:26:e1:7e:52:64:0d:
8d:59:f9:0b:ae:b8:fb:9a:1c:1d:84:3e:87:57:1f:b9:53:63:
59:0d:6e:b1:66:e4:1f:f9:1c:ed:2a:27:43:e8:84:01:14:ed:
92:9c:e9:fa:96:b7:b2:cf:c3:6f:50:03:a4:20:f9:7b:a2:7f:
ab:25:c7:89:d9:aa:c4:fd:0c:7b:33:25:08:b0:48:8f:c2:a6:
f6:37:0e:53:b3:8e:b0:01:d0:d4:bd:d5:e9:6e:32:6a:61:47:
23:af:4f:7d:67:ec:72:17:c1:76:f3:8b:be:bc:15:e7:0a:fb:
a9:de:8c:15:b5:20:64:dd:bb:97:29:09:94:e1:54:d2:67:78:
c1:1e:06:f6:bf:e9:c8:72:8e:a1:70:8b:a2:6e:29:d5:ec:15:
e9:fb:4d:81:29:ab:18:1a:71:d9:a3:65:1f:4e:f0:4b:2d:e8:
74:8d:24:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Aug 23 11:11:47 2024 by rpki-client on console-fra.rpki-client.org