Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/586A363249A911EFBD09EDAF762E951A.roa
File: 586A363249A911EFBD09EDAF762E951A.roa (raw, json)
Hash identifier: hxF4xwpeWGWVRIZz7nd10GNrwEl0yavQSPuacwpaWtI=
Subject key identifier: 85:7E:A3:DF:3D:52:E4:93:D4:B3:69:D0:A7:47:62:1F:4C:17:E0:6E
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 9F4F
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/586A363249A911EFBD09EDAF762E951A.roa
Signing time: Wed 24 Jul 2024 10:41:55 +0000
ROA not before: Wed 24 Jul 2024 10:41:52 +0000
ROA not after: Fri 02 Aug 2024 10:41:52 +0000
asID: 204957
IP address blocks: 156.225.10.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 40783 (0x9f4f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jul 24 10:41:52 2024 GMT
Not After : Aug 2 10:41:52 2024 GMT
Subject: CN=66a0da73-8a24
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f6:d4:f6:1c:fa:4f:9f:76:93:f8:04:0d:0b:7a:
03:db:60:72:f5:5d:f4:ae:24:aa:ba:ca:38:56:c6:
19:6b:76:1a:4e:66:0c:b8:0e:12:b4:b1:9e:c1:9f:
59:f9:ea:41:4f:a8:9b:5e:76:0c:48:58:17:22:93:
44:76:41:4f:1f:34:4d:d7:67:ed:4a:6b:a7:11:f6:
fc:1b:5c:bb:4d:f2:33:77:bc:d6:24:99:b0:b2:14:
42:e8:3a:a1:75:d8:41:fe:ca:4d:f3:1e:ad:33:b4:
93:4b:33:60:18:2b:19:eb:86:64:95:91:65:3d:0e:
e3:20:68:a1:7b:b7:8f:3b:cf:60:ef:c1:fc:a2:11:
30:ce:ca:b4:29:5e:7d:41:a4:47:7a:f8:61:ca:9e:
86:da:86:b1:65:fb:ab:cf:fb:cc:33:ef:2d:7a:45:
35:88:1a:49:ca:49:0d:ae:ec:51:2a:61:6f:03:f9:
d8:3a:9e:40:de:cb:fc:7f:19:38:f8:2c:f7:7d:36:
e1:5e:75:91:0e:dc:9d:43:32:c2:6b:42:8e:ec:f8:
10:07:52:cb:69:6b:3d:3f:4a:c3:b2:a7:f2:2a:70:
fd:e0:59:3a:3a:b5:02:3e:18:ab:b8:ee:54:08:ca:
d4:ca:c3:36:5b:b8:9a:01:82:6f:f7:ad:f8:c2:d2:
08:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:7E:A3:DF:3D:52:E4:93:D4:B3:69:D0:A7:47:62:1F:4C:17:E0:6E
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/586A363249A911EFBD09EDAF762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.225.10.0/24
Signature Algorithm: sha256WithRSAEncryption
68:7f:3b:11:e7:cf:06:c8:cc:79:82:41:97:e7:0f:df:69:92:
6f:06:16:9f:b5:d1:58:b7:0a:53:59:b7:b2:eb:ac:57:4f:8d:
59:53:51:09:e3:53:64:9e:64:be:a0:60:82:d5:e6:e9:e2:4a:
bc:b0:fb:c4:26:f7:de:8b:12:04:88:24:0f:b1:86:b4:b5:49:
6e:29:38:d9:ce:59:8c:41:e2:ff:16:41:6f:70:76:95:db:b1:
5f:ea:c3:39:6a:55:21:b7:58:5a:6e:3b:2d:d5:8f:83:0e:28:
bc:e3:04:7a:ac:80:cd:58:4a:f9:7f:5d:f0:fc:38:32:a4:f9:
de:57:7c:89:e4:17:26:99:18:2e:47:64:51:61:43:d8:f0:90:
97:04:ce:b2:8c:72:01:47:79:8a:52:be:7f:78:4c:a4:eb:50:
1c:4d:58:5c:bd:1b:09:5c:c7:6f:d6:70:d4:19:65:08:60:07:
d9:06:42:8d:37:61:42:ca:19:4d:b0:1d:69:11:73:d0:63:7c:
74:f4:31:49:9c:7d:06:8d:d7:24:3b:73:29:6a:44:3c:f5:86:
cb:ec:2a:87:70:ce:99:4d:90:71:f4:79:fc:f7:0a:1d:3b:77:
79:a5:af:a9:83:25:be:79:70:86:76:f0:66:b7:c2:43:48:d8:
7c:79:da:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Aug 2 14:56:24 2024 by rpki-client on console-ams.rpki-client.org