Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/5F759F8EF91911EDB7BD151F4AD9E6FC.roa
File: 5F759F8EF91911EDB7BD151F4AD9E6FC.roa (raw, json)
Hash identifier: OQTnqUV2cVyOXBzBONpkmmqn5M3Ftb3Gkf4iAZFV6so=
Subject key identifier: A5:5A:2A:5D:99:8B:39:18:C1:C4:8F:20:60:92:AC:1C:BD:DB:91:E8
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 26FC
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/5F759F8EF91911EDB7BD151F4AD9E6FC.roa
Signing time: Tue 23 May 2023 03:24:49 +0000
ROA not before: Tue 23 May 2023 03:24:45 +0000
ROA not after: Tue 05 Nov 2024 03:24:45 +0000
asID: 399674
IP address blocks: 156.244.192.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 9980 (0x26fc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: May 23 03:24:45 2023 GMT
Not After : Nov 5 03:24:45 2024 GMT
Subject: CN=646c3201-7e47
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:26:44:ca:2d:ab:f4:40:6d:8e:ff:e0:6b:be:
da:a3:02:57:1f:3d:b2:10:d7:48:4e:1f:28:f5:0d:
3b:5e:d2:61:f9:2b:48:a1:fb:81:ea:6a:35:51:38:
16:07:b3:19:d7:e0:85:33:21:61:97:2f:fe:a7:ba:
ea:7e:52:dd:d8:d5:63:5a:e9:66:16:7b:e8:99:bd:
a1:a0:a2:a3:c7:51:b1:4a:bb:08:e2:28:d1:df:e1:
1e:df:b4:33:75:d1:61:0f:9b:4a:dd:93:41:b8:87:
e2:f7:56:8e:1e:16:38:c8:35:15:de:8f:1f:e3:87:
d5:d7:82:4e:6b:01:71:94:90:ca:c4:43:70:5d:5e:
c0:6d:41:89:2b:74:56:a0:e7:f4:29:e1:56:1d:02:
e2:6b:73:b3:9c:93:ef:8c:e3:bd:87:4e:e0:16:8b:
e9:e9:25:d1:58:3c:68:ff:bf:04:e0:1d:3a:1d:41:
a4:06:cb:00:80:ac:22:a0:55:4a:20:e8:6b:f0:f7:
cd:74:af:c7:3e:54:65:f4:0b:e5:e6:2c:1c:0d:7b:
74:ff:69:85:c0:0c:80:4d:ce:d7:80:9e:54:4b:cb:
92:42:b1:9e:d7:cd:06:bc:81:ed:90:c7:cc:40:c6:
fb:ac:7a:ee:19:41:cd:20:2d:08:9d:d3:7f:09:ad:
e0:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:5A:2A:5D:99:8B:39:18:C1:C4:8F:20:60:92:AC:1C:BD:DB:91:E8
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/5F759F8EF91911EDB7BD151F4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.244.192.0/19
Signature Algorithm: sha256WithRSAEncryption
6f:27:52:11:4e:69:ea:22:45:90:f6:42:7b:46:d0:c5:30:5d:
db:a1:68:65:69:64:96:ea:f5:95:9f:d7:17:5b:3c:85:dd:b0:
74:73:c8:c4:ce:36:06:f3:2a:f8:c0:67:e4:07:47:8d:78:39:
e6:56:d5:57:9a:37:92:df:df:29:b2:b6:14:0a:f8:52:83:b2:
7d:90:dc:c2:75:ac:87:d6:00:7b:0b:27:ec:33:38:66:4d:18:
47:59:0d:a3:96:27:11:de:a9:5d:1a:d3:d2:22:cd:cb:89:62:
e3:c2:2b:fb:d9:0c:39:01:d8:68:4c:fa:84:31:d1:e6:64:91:
ad:a4:55:ad:ad:c5:dc:2f:73:f8:ef:b5:5a:83:50:17:bb:41:
ff:e6:a2:03:ed:fd:1a:d1:56:41:a3:ce:28:fa:c6:bb:c6:89:
a5:e9:fe:38:b9:8d:c2:e5:94:de:82:28:f9:e4:80:a3:38:42:
4c:07:31:61:da:7d:52:6d:ab:97:52:44:73:57:f4:0b:b4:da:
12:51:90:e6:b1:c0:92:d9:91:00:65:64:86:cc:5d:76:72:3f:
64:8e:5d:d7:9c:9e:2e:89:cb:23:24:4d:ba:f2:69:87:09:5c:
26:84:24:a9:c5:5a:b9:65:36:5d:40:46:e3:18:80:a4:b0:b9:
f8:9b:0b:99
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 5 13:26:32 2024 by rpki-client on console-fra.rpki-client.org