Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/496E077C3A1211EFA55ACDAC762E951A.roa
File: 496E077C3A1211EFA55ACDAC762E951A.roa (raw, json)
Hash identifier: 0wZhA8FfyxhHucI+35hE9kJUIum8xpLs3NieqJz7ZtQ=
Subject key identifier: 7D:F4:97:9E:14:E3:0E:1A:27:07:D4:43:7E:EC:D0:CA:23:1E:36:C0
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 9862
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/496E077C3A1211EFA55ACDAC762E951A.roa
Signing time: Thu 04 Jul 2024 14:32:49 +0000
ROA not before: Thu 04 Jul 2024 14:32:45 +0000
ROA not after: Tue 06 Aug 2024 14:32:45 +0000
asID: 272092
IP address blocks: 156.227.21.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 39010 (0x9862)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jul 4 14:32:45 2024 GMT
Not After : Aug 6 14:32:45 2024 GMT
Subject: CN=6686b291-6c65
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:5d:d0:97:77:f1:cd:eb:47:7a:6a:54:11:65:
28:5b:c9:bc:c5:fb:ae:68:f2:db:26:e7:9f:de:fd:
db:50:7b:fb:83:f2:b1:7a:83:2b:d1:77:35:dc:6c:
ec:37:18:fb:17:ad:1a:c8:be:03:3a:1c:76:6e:32:
74:99:33:fb:55:4b:0c:65:3f:e5:17:4e:19:32:b1:
7f:22:b2:ba:a1:ab:26:46:0a:23:d3:ed:48:2b:79:
a1:4d:f0:63:13:2c:c8:ed:01:16:25:40:79:58:03:
42:0a:bd:93:a5:25:b0:9d:d5:d9:66:5a:3d:9f:cf:
9b:95:28:57:19:69:c7:2c:b5:f8:20:54:30:c5:cd:
06:4f:7d:56:e1:f7:6b:56:eb:62:b7:2f:db:51:8a:
64:0f:9d:c4:21:94:a4:38:eb:71:9a:29:c6:5f:1c:
a0:67:98:7a:0d:40:1f:fb:12:7f:8c:82:97:25:5b:
23:8d:c7:58:c0:39:fd:91:ff:3e:3e:9b:36:75:40:
d6:a2:8f:33:af:c6:62:21:23:12:1c:cd:1f:2e:88:
8e:90:6c:d9:86:2b:a9:cd:83:ea:e8:05:3d:1d:86:
8b:67:24:fc:d8:62:3d:c9:f5:aa:f2:b3:e3:5a:40:
8a:aa:3f:ff:53:d7:be:62:f7:8c:c6:23:92:2c:61:
e3:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:F4:97:9E:14:E3:0E:1A:27:07:D4:43:7E:EC:D0:CA:23:1E:36:C0
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/496E077C3A1211EFA55ACDAC762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.227.21.0/24
Signature Algorithm: sha256WithRSAEncryption
16:c6:25:2d:d7:31:ef:cb:11:52:79:f2:11:d4:2d:6b:67:a9:
a6:cd:bb:04:d1:05:8d:28:d6:5c:98:da:8f:2c:b0:a9:3f:2a:
96:6f:a6:ab:45:18:91:07:8a:b1:51:0f:df:3a:2c:b8:c8:a4:
58:da:86:b1:c3:a5:a6:60:56:4c:f2:1e:06:c1:f1:b3:d4:b8:
46:0e:96:1d:6c:9d:25:17:be:96:b4:cb:0b:03:2d:71:7a:6a:
c7:78:98:37:18:d6:6a:23:dd:97:cd:b9:f9:fe:ea:76:6a:64:
dc:5e:82:69:b3:ec:49:be:30:94:6e:74:6e:62:48:44:39:fc:
ce:c6:40:73:9d:d3:93:4b:70:d6:ec:ac:03:d8:a2:7a:21:08:
e2:c5:fc:01:5a:80:6d:ad:fe:d6:64:b2:01:4b:f1:8e:f2:59:
de:6f:32:a5:75:56:b2:76:5a:b4:d3:a2:5d:30:40:a1:70:62:
63:22:ed:ae:82:00:62:cb:31:9f:34:dd:25:0b:16:02:a0:d6:
3d:c2:e5:e5:8f:1e:97:34:e4:e0:84:3c:50:cf:fa:ab:a6:c3:
09:ab:f3:35:bf:c2:30:dd:05:57:7f:1a:ce:70:72:fe:d5:91:
ec:37:c3:fc:b1:5b:53:99:d9:8b:49:18:7c:ad:aa:7a:43:05:
26:ea:8c:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 7 02:41:49 2024 by rpki-client on console-fra.rpki-client.org