Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/306C68E6F91711EDB5A1F8174AD9E6FC.roa
File: 306C68E6F91711EDB5A1F8174AD9E6FC.roa (raw, json)
Hash identifier: 41CLRN8Z9uf+nl7R2mLm7jv4QlMXwct/5PJ1s1e2nyg=
Subject key identifier: CE:9E:F1:FF:93:75:77:5C:6B:A8:8E:0A:DB:A9:69:8E:64:A7:91:37
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 26B8
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/306C68E6F91711EDB5A1F8174AD9E6FC.roa
Signing time: Tue 23 May 2023 03:09:11 +0000
ROA not before: Tue 23 May 2023 03:09:05 +0000
ROA not after: Sun 05 May 2024 03:09:05 +0000
asID: 398968
IP address blocks: 156.229.136.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 9912 (0x26b8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: May 23 03:09:05 2023 GMT
Not After : May 5 03:09:05 2024 GMT
Subject: CN=646c2e57-875f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:5d:03:fb:03:ae:11:4e:4c:c7:99:b3:46:aa:
5f:ee:b6:c7:12:30:08:3d:ed:f8:55:bf:88:37:80:
f2:02:7d:a5:e2:9c:6e:9b:54:1f:1f:ab:14:50:a3:
81:88:27:d7:10:38:3e:31:af:d3:36:36:9f:5d:9f:
48:8b:c0:e9:d5:7d:30:50:bf:2c:36:21:e3:82:90:
dd:31:da:b1:2e:7b:79:15:2c:ad:fa:e5:7f:e5:87:
9f:84:67:39:b4:bf:d5:af:d4:a1:ff:ce:ca:98:f8:
cc:36:b9:c5:42:13:06:52:fa:ba:fb:3c:42:ff:5f:
43:16:c8:03:e3:eb:07:43:d9:be:f2:20:f7:11:01:
7f:11:3f:a4:15:46:fd:2b:e0:bf:52:a7:ea:17:c0:
8d:87:18:91:4d:fd:6b:85:e9:99:d8:6d:05:37:6f:
3b:16:af:7f:04:9a:5f:39:b7:48:7e:30:79:32:53:
16:bc:45:6a:7c:f6:8a:43:ab:d7:34:2f:12:ab:c8:
b0:03:fe:ec:d4:2e:67:86:10:22:a8:d5:73:47:55:
3f:5b:00:2c:07:fc:a5:d7:0a:c3:30:68:b9:9c:40:
41:5d:e1:55:d1:01:98:09:bd:9e:af:fc:64:bc:02:
cd:ab:44:36:8c:4f:50:a5:f2:1d:ae:ce:22:40:af:
f5:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:9E:F1:FF:93:75:77:5C:6B:A8:8E:0A:DB:A9:69:8E:64:A7:91:37
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/306C68E6F91711EDB5A1F8174AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.229.136.0/21
Signature Algorithm: sha256WithRSAEncryption
2a:19:48:98:68:56:ff:33:95:bc:dc:49:ec:74:95:27:cf:d3:
a6:5d:f9:cf:5c:f6:ac:ff:45:a0:a4:9c:bb:ad:21:31:80:c9:
21:1b:df:af:f3:36:08:93:f3:25:80:66:01:0c:c0:d0:0d:50:
31:42:cf:e3:d2:8c:66:dd:8b:7b:5f:02:b5:38:6b:ab:72:b7:
c5:03:ff:66:39:c3:95:fa:f4:ad:e0:0b:96:fb:8c:0b:a0:e6:
77:ce:d8:35:e5:69:95:a7:bc:91:d1:26:a3:88:bd:b0:0d:02:
e2:b6:3b:01:a0:05:31:ea:a0:77:06:16:70:12:18:80:26:96:
8e:1a:87:84:56:c6:72:ed:b4:9a:7d:08:5e:46:94:42:48:3f:
f6:61:04:db:d6:e2:0b:ff:ea:ff:f8:cb:f9:0c:7d:f7:0d:c8:
90:f4:14:5f:08:dc:cf:c6:46:f0:f2:8c:cc:78:54:de:3c:db:
6a:ef:c4:53:ef:c9:91:f6:de:ed:41:b2:37:c0:bd:c2:97:5b:
a8:3c:98:80:dc:3e:40:ce:93:5f:a9:07:43:ac:f2:26:59:ed:
26:b0:19:d5:89:e6:13:44:b1:f2:f3:9f:85:ab:a2:e6:4a:87:
64:c4:60:a7:28:00:92:3c:8c:e0:93:53:b5:4d:a4:36:6f:49:
18:ef:1c:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 6 02:29:25 2024 by rpki-client on console-fra.rpki-client.org