Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/5EB848B0C47E11ECB46C958DF1222468.roa
File: 5EB848B0C47E11ECB46C958DF1222468.roa (raw, json)
Hash identifier: MxxBQ7rQjHesti/AD9JZzpGGVwX4kI2jigOCbZ4IkSY=
Subject key identifier: 77:FB:7B:62:22:1B:20:AA:1A:36:F6:87:63:94:89:01:27:97:30:0B
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 1394
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/5EB848B0C47E11ECB46C958DF1222468.roa
Signing time: Mon 25 Apr 2022 09:59:18 +0000
ROA not before: Mon 25 Apr 2022 09:59:13 +0000
ROA not after: Mon 30 Jan 2023 09:59:13 +0000
asID: 139057
IP address blocks: 156.251.77.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5012 (0x1394)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Apr 25 09:59:13 2022 GMT
Not After : Jan 30 09:59:13 2023 GMT
Subject: CN=626670f5-194c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:03:6f:0b:c5:ec:0d:6b:1d:5b:0a:38:1c:63:
73:91:6c:78:9a:b8:40:84:84:ba:88:92:fb:8b:4f:
e1:06:e7:8c:0f:34:e5:9b:d0:50:de:e9:3e:e4:d1:
62:13:d9:64:0b:c8:79:e5:d8:0c:08:28:bb:3e:73:
41:35:ff:7a:fa:ad:10:dd:07:96:d3:89:a4:f4:8a:
5f:22:ce:bc:02:ff:be:e1:b4:2d:18:7a:30:0f:44:
2c:f0:ff:7a:c3:9b:3d:35:d0:b9:ee:82:f2:b0:72:
30:3d:3e:1f:4d:9b:f4:7b:35:c0:d8:19:46:dc:e0:
0e:0e:58:9b:c4:00:b6:1d:98:ae:5a:f5:56:ce:a5:
e4:9d:4e:9a:14:9c:7c:df:a1:0a:c7:72:56:88:30:
b5:c4:fe:d0:c7:c5:91:66:ba:bf:43:19:f0:6f:df:
97:5d:87:a8:a3:a1:8c:06:15:9a:81:e4:af:78:c4:
26:a8:1a:19:59:d8:3a:3e:48:d5:ea:ea:47:6f:76:
c5:84:48:27:ef:12:c1:bc:1e:d7:24:c0:a6:f3:47:
b8:5d:7b:1f:56:8b:ed:3b:65:16:43:98:fb:a0:46:
b8:8b:78:56:7b:2e:2b:3c:fa:8f:9d:97:d1:a1:24:
4e:ac:7b:7c:19:1d:77:a8:0a:aa:21:0d:a0:5a:9e:
35:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:FB:7B:62:22:1B:20:AA:1A:36:F6:87:63:94:89:01:27:97:30:0B
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/5EB848B0C47E11ECB46C958DF1222468.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.251.77.0/24
Signature Algorithm: sha256WithRSAEncryption
4b:69:1e:47:7a:32:53:d7:89:94:57:64:13:56:29:b0:38:11:
21:8d:f7:6d:56:f6:c3:ff:ae:21:35:3d:0d:3d:9b:10:da:d0:
98:6b:fb:ff:9c:86:b5:18:c1:4d:97:67:5c:f2:fa:4e:35:51:
e7:cd:10:ba:75:c0:1e:93:73:e6:43:98:1f:05:42:4a:97:3a:
02:50:00:06:be:8c:0e:11:32:18:77:d2:95:3d:3e:11:d9:29:
4f:af:f1:99:43:10:23:6c:a3:6b:9e:ae:34:cb:cd:9f:04:7d:
49:bb:58:f2:70:f1:d8:61:18:48:09:c7:a2:71:51:c5:dd:a1:
d3:92:6f:d5:d0:3b:19:20:f2:9f:f0:78:a6:a0:4c:c7:d8:1f:
44:65:8f:d4:45:7e:a1:cb:25:53:30:70:5e:5f:10:38:03:18:
b6:a7:9b:8c:62:f9:7b:47:15:6a:25:e6:d5:f1:cf:f9:e7:fa:
e2:19:27:10:90:54:50:0c:15:0f:5a:bd:a4:4a:d1:8f:14:cd:
14:4f:c8:cd:3b:26:f3:5e:76:19:95:db:48:67:2f:90:3d:6c:
41:31:39:dd:d5:5d:d8:d9:70:74:0a:54:b2:31:1a:61:8f:11:
1d:a1:2c:18:bd:8c:51:e9:c5:1b:25:d4:dd:0f:e2:2e:e4:13:
5e:02:b0:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:22:19 2023 by rpki-client on console-ams.rpki-client.org