Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/607EFC7AF0C811EE868C81AC775412E6.roa
File: 607EFC7AF0C811EE868C81AC775412E6.roa (raw, json)
Hash identifier: J2EbGLpJHY6PsSlkD18+F9M61ds/WluS1xdUMNzZIx4=
Subject key identifier: 37:28:AC:E0:F0:41:B9:D5:7B:8F:05:87:A0:F9:4C:12:56:5E:90:83
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 8170
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/607EFC7AF0C811EE868C81AC775412E6.roa
Signing time: Tue 02 Apr 2024 08:09:50 +0000
ROA not before: Tue 02 Apr 2024 08:09:47 +0000
ROA not after: Mon 29 Apr 2024 08:09:47 +0000
asID: 139646
IP address blocks: 156.242.12.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 33136 (0x8170)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Apr 2 08:09:47 2024 GMT
Not After : Apr 29 08:09:47 2024 GMT
Subject: CN=660bbd4e-63da
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:d6:4e:c3:cf:63:1d:3b:23:97:62:f6:4b:da:
8d:a5:2f:18:73:f6:63:e4:4b:9e:75:96:52:71:9e:
f0:e3:83:8c:35:f7:a9:ea:92:07:17:c7:57:ba:ae:
62:f2:ab:01:01:42:5c:3d:cb:00:dd:7f:6a:dc:8c:
97:81:ee:6a:5d:b2:36:11:19:bc:85:e9:31:c5:83:
dd:9d:80:13:ed:d0:db:65:04:79:dd:01:db:a0:82:
1c:b8:2e:c3:73:eb:ba:7c:fe:43:d3:06:a2:d6:3b:
6d:9e:7e:0c:3a:d3:6f:01:14:bd:41:40:7c:59:b8:
b9:23:df:b4:03:75:36:a7:91:08:24:c1:66:69:3f:
6e:1f:42:19:e0:78:44:4e:6a:d7:c1:64:28:56:46:
46:97:dc:29:97:30:51:63:af:6a:54:68:ac:26:9d:
dc:1a:ae:cc:a7:50:5c:9d:ad:6f:fe:f1:cc:7f:da:
d8:d4:4d:d2:0c:8a:b8:0c:ad:6e:dd:0a:d0:26:11:
54:53:c7:6f:da:50:6e:62:0e:14:32:5b:ad:95:17:
8c:9c:04:f3:88:00:b6:00:00:70:16:e5:c9:a1:ad:
b9:da:13:0e:d8:0e:1b:1d:49:15:82:d6:18:b3:52:
d1:91:1b:ee:00:82:54:27:2b:0c:af:59:3a:66:13:
c0:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:28:AC:E0:F0:41:B9:D5:7B:8F:05:87:A0:F9:4C:12:56:5E:90:83
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/607EFC7AF0C811EE868C81AC775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.242.12.0/23
Signature Algorithm: sha256WithRSAEncryption
9f:e4:60:46:7b:5c:8a:13:3a:e0:e9:c9:7f:6a:4b:a4:96:3e:
5a:75:c0:4a:48:3f:58:59:c3:22:ee:01:6c:08:18:1f:7c:fd:
5e:b5:bf:4f:21:0b:96:3a:6c:02:8f:9f:ac:6c:23:b4:3e:c9:
38:78:12:1b:0c:4b:e6:c5:cd:26:e7:1d:b9:02:2b:7b:b7:7d:
33:dd:b4:c7:c4:d9:61:8d:d4:ce:75:eb:75:a2:ea:a7:7f:e5:
db:17:e3:c7:bd:dc:59:53:40:3d:a5:66:1d:a9:0a:c5:a5:a0:
78:ef:74:aa:de:ef:5c:c5:c8:b5:13:84:ce:91:c7:14:e0:f9:
6e:e0:0f:96:8c:27:15:f7:7f:da:cd:ea:c9:ec:f6:97:36:e3:
cf:67:75:22:80:74:ef:a5:4e:c4:7f:1f:a9:65:6b:ce:4d:07:
91:65:fb:8f:65:6e:98:91:f1:d1:fc:f4:21:3d:f5:2b:1d:94:
7c:61:55:95:3a:dc:4e:7e:09:78:00:07:1e:01:e4:e5:d8:95:
c5:24:10:00:1f:53:e2:1f:0f:45:72:2d:0d:d3:54:32:0d:59:
da:29:6d:b1:3e:5d:ca:4d:46:bf:2d:47:80:21:f7:a2:c4:01:
2a:bf:8c:53:6d:04:2d:2a:61:3f:58:8e:c4:4b:84:15:14:78:
22:ca:09:24
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 29 14:03:25 2024 by rpki-client on console-fra.rpki-client.org