Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/3327B7603CCE11EFB659DC40762E951A.roa
File: 3327B7603CCE11EFB659DC40762E951A.roa (raw, json)
Hash identifier: dnKL8KmBsxOJha5bDzq9/60i2VEPxtiTAXmLjZmlzUA=
Subject key identifier: F6:2D:23:3D:3E:1C:AD:6B:A2:C1:35:DD:F0:F4:08:72:F7:C0:BE:EA
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 9950
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/3327B7603CCE11EFB659DC40762E951A.roa
Signing time: Mon 08 Jul 2024 02:02:59 +0000
ROA not before: Mon 08 Jul 2024 02:02:56 +0000
ROA not after: Fri 09 Aug 2024 02:02:56 +0000
asID: 397423
IP address blocks: 156.225.65.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 39248 (0x9950)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jul 8 02:02:56 2024 GMT
Not After : Aug 9 02:02:56 2024 GMT
Subject: CN=668b48d3-ce31
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:ca:91:3e:a7:1f:8e:c2:0c:c4:3d:34:e1:28:
73:09:ac:ca:28:63:e5:61:bd:5c:1b:1e:b1:a9:61:
11:28:24:19:d7:20:f0:e7:a6:64:f9:00:25:0f:6b:
9d:8e:3e:27:a5:2b:81:f1:31:5b:9b:10:90:fa:30:
9a:be:4d:7d:8b:69:5d:4d:b4:df:f1:11:79:ba:8b:
50:4a:72:75:f1:af:41:55:6a:df:dc:0a:26:1f:c6:
85:58:b6:8d:3e:a5:b5:e3:a1:95:8b:42:b5:7b:cf:
9f:45:f2:b9:a0:06:aa:24:a1:b0:d8:19:71:3e:37:
4a:62:61:1a:58:7e:40:5e:ae:f8:40:36:c9:ed:45:
52:23:77:ea:b3:b6:b0:27:dd:40:a3:2f:9d:17:9d:
1b:a4:2a:74:b1:5c:e7:ac:07:a6:b2:52:58:37:6f:
9f:5e:77:85:88:d4:23:cd:c8:1a:bb:59:bf:c8:2d:
d0:89:0f:d3:4b:ca:b1:39:a8:c0:c4:5f:69:16:87:
3d:5d:8d:0e:9a:07:5e:c4:b6:c7:0f:60:e7:5a:d6:
6f:a4:1c:41:5b:8a:4a:54:c1:05:5c:2d:ce:53:5d:
16:0f:9f:3a:38:dc:25:d4:83:b3:fa:ee:d7:0f:57:
7a:7b:a8:bc:c5:da:2a:b1:82:03:4a:b0:ff:30:d5:
0b:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:2D:23:3D:3E:1C:AD:6B:A2:C1:35:DD:F0:F4:08:72:F7:C0:BE:EA
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/3327B7603CCE11EFB659DC40762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.225.65.0/24
Signature Algorithm: sha256WithRSAEncryption
16:35:39:9a:90:d0:35:aa:59:8d:2c:57:2b:25:98:8e:86:40:
3f:4f:98:0d:db:b9:bc:fd:1d:64:c6:af:07:09:6b:99:e7:38:
15:7a:d1:50:70:81:e4:0c:a9:3b:2d:20:64:95:ba:d8:22:2b:
98:f2:14:d1:9c:b8:92:8f:0f:f9:df:ac:be:f5:50:62:c1:04:
f8:e3:69:fa:e0:83:62:4d:00:c1:b8:ba:3d:7e:c9:3d:91:b9:
9b:55:a5:6b:d9:3b:46:69:f4:a3:eb:b8:37:93:c5:e8:5d:2e:
bf:5f:54:26:44:d2:2a:22:fb:9a:c8:51:2a:2e:ce:ba:c3:73:
33:56:7b:31:3e:d7:9f:a6:47:0c:17:df:48:d6:6b:d4:77:69:
89:8d:13:46:e5:08:58:7b:62:cd:19:20:b1:0d:60:5c:3d:96:
a1:94:62:50:ad:b9:e8:85:05:89:80:31:ff:e3:d1:7c:d2:96:
a4:0a:b7:9e:e4:96:db:00:ae:43:8a:55:01:11:b5:de:23:6f:
0a:af:4e:f4:e6:b7:bc:50:0c:47:39:dc:22:34:96:06:38:32:
2a:b6:82:1d:7c:f0:7b:12:5a:90:e1:5b:da:9a:cb:f2:4a:e8:
09:e4:8c:1a:62:14:e8:18:b2:52:a6:a6:32:cc:04:ef:14:3e:
ae:ff:8e:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Aug 9 10:08:29 2024 by rpki-client on console-fra.rpki-client.org