Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/4EEC93F0038311EFB284CF09017001B1.roa
File: 4EEC93F0038311EFB284CF09017001B1.roa (raw, json)
Hash identifier: fC9uxcCOTHT/f1jJ0H7QuwMrUB57WScyPfz2XJMWVIk=
Subject key identifier: 06:78:18:40:CF:48:7B:83:AA:3C:66:5C:41:C2:D7:22:E2:E6:9F:75
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 8580
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/4EEC93F0038311EFB284CF09017001B1.roa
Signing time: Fri 26 Apr 2024 04:13:17 +0000
ROA not before: Fri 26 Apr 2024 04:13:14 +0000
ROA not after: Tue 03 Sep 2024 04:13:14 +0000
asID: 131685
IP address blocks: 156.226.173.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 34176 (0x8580)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Apr 26 04:13:14 2024 GMT
Not After : Sep 3 04:13:14 2024 GMT
Subject: CN=662b29dd-f92f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:5c:05:66:94:3c:97:af:54:3b:70:68:ee:31:
92:ff:ed:2d:c4:b4:c2:85:4f:08:dd:17:cf:39:e7:
32:06:c5:b7:88:1f:16:a8:3c:f9:df:18:18:62:5f:
5f:9c:c6:93:35:de:e3:46:4d:bd:1f:7f:3a:df:cf:
64:26:d3:73:6a:22:19:33:45:e9:e2:d7:6b:51:d3:
6f:c6:39:90:ad:bf:70:6e:64:89:98:d3:05:99:3b:
c6:d0:c1:69:dd:25:0a:fb:b6:04:0e:55:2c:de:b7:
20:d7:da:47:2d:27:33:b8:5f:1c:cb:a6:76:11:67:
be:c4:b9:e0:70:7f:df:c5:24:5a:30:0c:64:81:2a:
1f:e8:ab:b5:e1:8c:ca:31:81:34:63:85:f7:80:5f:
2f:9c:12:52:d2:e0:46:0f:ff:fd:46:85:5f:ec:2f:
c9:af:2a:e3:2f:ef:68:37:3b:87:55:6d:39:6c:db:
10:cd:1c:6e:ef:91:40:7e:a2:59:af:f9:a3:c0:52:
06:2c:d7:2c:04:55:42:d3:c7:00:c5:4e:c2:2c:e6:
d0:4c:88:35:0a:72:1d:85:ef:11:c6:1a:ac:d0:ac:
50:aa:da:10:43:3f:04:c3:a4:f5:b1:b5:5a:23:67:
31:e8:49:84:a5:d5:bd:ac:40:57:31:9d:45:d4:f5:
97:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:78:18:40:CF:48:7B:83:AA:3C:66:5C:41:C2:D7:22:E2:E6:9F:75
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/4EEC93F0038311EFB284CF09017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.226.173.0/24
Signature Algorithm: sha256WithRSAEncryption
ab:7a:9e:42:b1:a9:0a:06:3d:3d:a2:ce:63:18:39:31:53:fc:
d0:f5:10:50:49:aa:41:2c:81:52:86:73:97:79:23:50:ee:25:
28:25:77:58:6b:70:b2:d3:f1:ae:2d:db:85:3b:c8:ef:92:4a:
56:aa:77:44:6e:83:24:79:72:08:2d:af:99:8e:2b:96:43:d4:
cb:1c:28:70:b0:44:74:70:49:c2:40:10:f6:bb:12:93:16:07:
58:ee:6a:0d:2e:d5:37:6f:87:d7:5c:0d:5d:7d:87:aa:7b:fe:
09:78:07:87:91:04:37:de:b2:e2:c1:4f:dd:47:68:35:2c:3e:
9f:5b:78:d4:00:43:9a:7e:fc:85:57:74:1d:73:62:e6:6a:7a:
00:b6:e3:72:63:ad:04:7d:9a:25:53:03:66:e9:b9:a2:05:ed:
ba:04:60:51:e5:9e:dc:45:9f:27:57:89:58:95:c2:74:25:51:
e1:e8:99:28:df:25:05:84:6e:15:f0:29:2c:ee:5d:3b:9d:71:
f8:31:c6:ae:f8:2a:8e:b4:19:ac:3c:c7:92:26:b1:55:29:b4:
95:2b:83:ce:ca:8e:74:cf:f5:93:d2:55:39:51:2f:ba:75:f4:
f8:cd:c9:e5:d7:98:e8:59:d0:0c:c9:9a:ef:8d:88:7a:0f:b0:
0d:96:79:2e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Sep 3 12:42:41 2024 by rpki-client on console-ams.rpki-client.org