Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/281ACD267F0E11EFB6A19E4C762E951A.roa
File: 281ACD267F0E11EFB6A19E4C762E951A.roa (raw, json)
Hash identifier: 7dElmE0N8dgeQ7uOkle87ddQPcie57W/RQV6ClnxUqU=
Subject key identifier: 33:53:1C:46:0D:54:27:72:88:DC:1D:72:23:1D:26:06:2E:82:19:83
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: BDB9
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/281ACD267F0E11EFB6A19E4C762E951A.roa
Signing time: Mon 30 Sep 2024 09:27:05 +0000
ROA not before: Mon 30 Sep 2024 09:27:01 +0000
ROA not after: Thu 21 Nov 2024 09:27:01 +0000
asID: 63139
IP address blocks: 156.229.64.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 48569 (0xbdb9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Sep 30 09:27:01 2024 GMT
Not After : Nov 21 09:27:01 2024 GMT
Subject: CN=66fa6ee9-47e6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:34:98:83:89:bd:dc:1e:b9:c4:51:4d:de:84:
ba:cb:9f:e9:d0:a5:a0:e2:14:88:25:f5:c1:0a:be:
74:d3:63:9c:09:ff:fa:13:64:f0:d1:d6:bb:b2:93:
8c:cd:df:2b:1c:cf:83:59:77:40:4d:ad:e4:2f:2d:
66:0e:52:80:9b:37:8e:9c:1c:12:b4:bb:09:20:aa:
6e:5f:fe:d4:84:15:10:ab:a6:c5:be:66:44:79:0f:
e4:da:73:79:57:7b:71:4e:ec:08:05:df:31:58:33:
a6:1b:44:79:39:d7:db:04:e4:3e:ab:90:00:4b:64:
1e:5c:74:01:66:b5:70:47:a5:34:59:73:c8:65:a8:
e4:f2:67:fd:33:f3:3c:89:cf:86:8f:9a:a1:d3:19:
85:d3:d9:3b:9c:ad:61:79:fb:79:eb:84:8c:fc:f3:
2b:2d:b3:19:38:19:32:26:9f:bb:29:5c:ef:8c:5d:
34:b4:4a:f4:04:5f:15:7e:01:8d:12:5f:31:eb:71:
5f:4f:90:9d:d2:b3:36:0e:31:17:91:52:04:7d:68:
44:f5:9e:58:b7:7e:23:25:8d:e4:0a:47:2e:bf:7a:
dd:2e:d9:22:c9:dc:1c:7a:44:73:20:24:27:57:72:
c3:8a:c0:14:eb:03:da:54:e4:51:31:1c:0f:0d:a1:
c0:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:53:1C:46:0D:54:27:72:88:DC:1D:72:23:1D:26:06:2E:82:19:83
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/281ACD267F0E11EFB6A19E4C762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.229.64.0/23
Signature Algorithm: sha256WithRSAEncryption
22:10:ff:7f:83:7a:12:29:80:bb:ca:66:e5:1a:98:d6:7d:a6:
03:83:40:17:1c:b4:c3:3e:5a:aa:80:d7:48:f0:3e:f9:4d:12:
6c:88:5c:c2:22:49:d5:af:d7:fd:30:1f:26:6d:80:82:a2:7f:
5f:3a:b6:05:d8:47:96:86:77:26:7f:6c:b9:c3:93:9f:d1:ef:
0e:bb:ce:c9:b4:fc:94:70:c1:9b:71:6c:23:43:7d:bb:8c:f0:
bc:02:fc:10:a3:3f:16:64:76:c3:ab:a6:83:71:ff:76:bc:5a:
68:83:d3:1c:e7:1e:d5:a6:d1:d8:6e:ca:0f:76:a0:d7:fd:92:
c8:8a:19:5d:8a:09:09:4f:cd:3b:c8:a6:4a:77:fb:ec:a1:00:
68:a4:09:41:aa:de:94:f5:46:10:e5:eb:fe:f0:96:db:0c:a8:
00:ae:4c:33:8d:d4:d4:be:c2:87:b2:a9:d3:37:0f:b1:50:61:
d7:7d:0e:ce:1c:bb:68:81:2d:ff:29:6c:a4:e1:73:d2:1d:ef:
42:fd:ae:9b:0f:96:b1:8c:fa:87:d5:7d:20:63:cd:ce:ee:8b:
a2:c7:0c:0d:de:bc:82:44:ed:c3:15:6d:9a:43:3a:07:6b:04:
23:50:1d:be:35:69:bc:cd:b3:97:90:81:6a:c8:df:fe:01:b1:
ea:7b:48:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:05:22 2024 by rpki-client on console-fra.rpki-client.org