Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/57FCB29E4A6011EF87BC7F8E762E951A.roa
File: 57FCB29E4A6011EF87BC7F8E762E951A.roa (raw, json)
Hash identifier: ivYXgG08Vh7UViHo3NR1zkKiPenufn4kd4TQOpTAjKc=
Subject key identifier: DD:40:01:21:36:63:09:05:10:02:75:7B:5D:0D:3F:85:DD:94:83:F9
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 9FD9
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/57FCB29E4A6011EF87BC7F8E762E951A.roa
Signing time: Thu 25 Jul 2024 08:31:52 +0000
ROA not before: Thu 25 Jul 2024 08:31:49 +0000
ROA not after: Sat 03 Aug 2024 08:31:49 +0000
asID: 22773
IP address blocks: 156.242.28.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 40921 (0x9fd9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jul 25 08:31:49 2024 GMT
Not After : Aug 3 08:31:49 2024 GMT
Subject: CN=66a20d78-1228
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:b8:b5:94:eb:ed:80:19:07:03:02:25:29:67:
e8:dd:4f:df:b8:5d:a1:6d:bf:fb:d6:f2:e6:c3:eb:
0c:89:ee:5b:68:d8:77:ad:96:c2:28:c0:9f:82:20:
d2:4d:bf:e7:a1:13:38:f0:28:4f:a1:42:a6:81:c2:
b3:ff:3f:13:44:98:08:cb:c7:45:89:02:e3:20:01:
b0:21:5a:1b:b8:48:ef:9d:6a:40:52:20:ba:67:7a:
7e:4f:c0:12:ef:24:9c:a5:87:20:67:e3:d7:b1:67:
97:b4:1f:6b:2a:1f:aa:a6:83:f9:78:cf:17:3e:30:
39:0e:1c:9c:fb:b1:3c:2a:bc:bd:24:d6:7e:71:1e:
67:7d:4a:53:14:c7:b0:1c:f6:54:15:34:3e:b6:78:
f3:b2:47:26:ab:85:7b:27:95:f9:bc:dc:97:df:bd:
35:e5:9a:20:19:28:ad:7c:b4:0e:46:e3:32:ea:e3:
ac:b9:27:69:82:a7:71:b4:b6:b1:e8:24:5f:ac:25:
b7:be:4e:eb:f2:30:90:03:7b:5f:f9:7b:b8:0e:4f:
b7:4f:d8:3f:50:96:9d:0c:8d:7a:0b:8d:65:5c:39:
48:af:6b:b3:52:32:a0:d0:75:7b:51:3e:8f:3a:50:
6a:bd:e5:ea:73:98:58:0f:1a:c1:2e:bd:91:f8:b9:
52:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:40:01:21:36:63:09:05:10:02:75:7B:5D:0D:3F:85:DD:94:83:F9
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/57FCB29E4A6011EF87BC7F8E762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.242.28.0/22
Signature Algorithm: sha256WithRSAEncryption
69:51:8d:b3:c9:fd:80:cf:6e:73:78:d8:89:08:d7:69:dc:18:
f8:fa:53:2a:c7:e6:cb:4f:8d:a0:ea:ab:44:ea:9e:cf:d9:36:
94:14:5f:05:bb:4d:3e:c6:20:f2:9b:a1:cb:12:21:74:74:7d:
eb:c2:43:18:7a:d4:3a:1a:c6:f8:0a:2a:12:dc:3d:d6:3d:13:
14:54:39:a5:e2:48:ff:16:5a:a8:c7:c6:0a:2b:7f:a7:e8:af:
75:a7:31:e1:36:17:c7:ba:91:65:31:46:74:17:f7:df:73:9e:
f4:39:31:74:df:cb:95:c8:93:a3:41:a9:e3:cc:2f:67:d4:cd:
a9:84:94:1e:99:db:73:0e:52:0a:22:56:7f:c4:56:d6:ff:ae:
2f:f1:d6:fd:56:32:de:44:11:32:b1:3c:fa:e0:b0:04:90:3b:
1c:ba:7e:dd:fc:0c:8b:20:51:7a:b7:55:a6:2f:fe:3a:f2:46:
4f:0a:29:fb:16:81:bd:b5:a3:c3:72:d3:23:33:81:80:eb:be:
af:1e:49:43:a9:65:70:f6:cc:33:0e:f8:ba:db:de:7b:dd:c0:
f6:a5:32:a3:02:e8:83:ac:f1:a9:87:65:1b:8a:a0:d7:f8:62:
a1:fc:ac:10:52:80:6f:a4:6e:fb:23:5d:98:e6:45:9a:b5:a5:
07:0d:da:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Aug 4 03:57:24 2024 by rpki-client on console-fra.rpki-client.org