Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/4F778CCE4A6611EF8D5BCEB7762E951A.roa
File: 4F778CCE4A6611EF8D5BCEB7762E951A.roa (raw, json)
Hash identifier: aNkSZNLkmnMNIUK9yWmq0x7ODOX8ZXylKhzBkHVT/78=
Subject key identifier: FD:96:A8:15:6A:E2:AE:33:8C:26:A1:EC:4F:0A:3F:25:6B:EF:AE:5E
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: A003
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/4F778CCE4A6611EF8D5BCEB7762E951A.roa
Signing time: Thu 25 Jul 2024 09:14:35 +0000
ROA not before: Thu 25 Jul 2024 09:14:31 +0000
ROA not after: Sat 03 Aug 2024 09:14:31 +0000
asID: 5065
IP address blocks: 156.239.18.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 40963 (0xa003)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jul 25 09:14:31 2024 GMT
Not After : Aug 3 09:14:31 2024 GMT
Subject: CN=66a2177b-3397
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:ad:db:28:7c:8b:c0:0a:df:85:de:d7:6d:3e:
d5:c5:4f:ed:d7:7b:41:82:39:3a:aa:cb:28:37:45:
bd:7a:30:a2:81:12:de:45:aa:f1:e2:74:c0:8d:0d:
38:07:07:e1:0e:b2:ae:ee:b0:0d:2a:0f:fa:b2:22:
70:a1:cc:f5:ae:b5:e2:0b:ee:89:cb:a9:fb:c7:25:
95:80:1f:a3:09:1a:06:d0:c2:7a:5d:20:0b:32:63:
14:ee:1a:6c:ee:ac:92:d7:45:16:ab:58:1b:68:11:
72:d1:98:46:75:71:36:27:14:03:61:67:57:c0:9b:
18:6d:ff:91:ae:c6:b9:97:15:68:1c:35:fe:61:1f:
77:6c:f3:8a:eb:1c:79:d7:9b:3f:87:fd:2b:4c:b9:
bc:37:d6:ba:8d:b0:c4:c2:77:ad:e9:0c:78:01:31:
36:ac:9e:45:30:62:4e:53:74:d5:cd:f1:60:51:77:
ed:44:ce:d8:8a:6c:a5:45:a5:d6:33:9c:b1:28:dd:
b0:12:03:c4:4c:a2:50:46:c0:42:9a:56:56:c9:c6:
1f:ac:9f:34:22:69:93:49:5b:66:05:e3:14:e4:6f:
9c:bd:31:f1:61:b2:f5:a6:4a:d5:41:35:48:7d:a7:
95:83:3e:4d:eb:f7:53:b6:11:87:d8:eb:1f:aa:a8:
6b:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:96:A8:15:6A:E2:AE:33:8C:26:A1:EC:4F:0A:3F:25:6B:EF:AE:5E
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/4F778CCE4A6611EF8D5BCEB7762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.239.18.0/24
Signature Algorithm: sha256WithRSAEncryption
b9:96:c8:05:d6:aa:3b:83:8a:c9:29:53:cc:60:8b:fe:93:16:
03:01:d0:8d:f0:52:53:25:ce:3a:9b:aa:67:88:88:1d:2a:a1:
f7:5c:c9:bd:37:ba:39:50:c9:98:8f:20:9b:14:05:2a:3e:97:
bf:25:ea:c5:1d:c7:7b:52:6e:d6:e8:97:48:ce:90:a6:90:29:
80:3c:a1:db:22:78:ff:1f:73:df:2a:1e:b3:3a:35:0f:1d:d1:
b6:2f:92:ae:a4:16:de:4f:ab:ad:67:31:04:a0:c5:01:d8:a9:
36:d8:54:9b:94:4c:28:02:a0:66:1a:28:ec:5b:48:19:da:19:
17:3e:db:a3:cd:7d:29:cc:2c:2a:90:98:67:70:09:30:f4:b3:
5f:43:a6:c0:a2:ca:b6:14:eb:6e:54:37:78:4a:68:40:c7:bb:
57:6c:48:65:c1:84:34:34:2b:d5:9f:3e:e9:25:b5:4e:40:c3:
4e:9e:a7:92:1c:d0:d6:8f:6e:d4:8e:26:96:fe:67:27:ea:c0:
02:12:21:1c:01:3f:59:22:83:2b:02:fc:90:6b:7e:c2:63:c1:
1e:94:ca:ed:a2:5e:5a:27:8a:f4:5b:14:f0:ef:40:4e:e2:d9:
1f:24:3f:bc:80:9c:72:44:f5:92:80:7c:ea:d4:53:6f:d4:ce:
60:9a:b5:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Aug 4 03:07:52 2024 by rpki-client on console-ams.rpki-client.org