Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/6A90924E02F911EFB25D0623017001B1.roa
File: 6A90924E02F911EFB25D0623017001B1.roa (raw, json)
Hash identifier: scQfWYBTjhCi6sDlrR/1M19gAwKbQo1lJ2qpK/nEjlM=
Subject key identifier: 94:22:F9:6D:AB:50:0E:FB:43:E9:EA:9B:F1:92:70:BD:8B:48:FF:A0
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 851F
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/6A90924E02F911EFB25D0623017001B1.roa
Signing time: Thu 25 Apr 2024 11:46:13 +0000
ROA not before: Thu 25 Apr 2024 11:46:09 +0000
ROA not after: Sun 05 May 2024 11:46:09 +0000
asID: 39600
IP address blocks: 156.252.8.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 34079 (0x851f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Apr 25 11:46:09 2024 GMT
Not After : May 5 11:46:09 2024 GMT
Subject: CN=662a4285-babf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:96:10:d4:2f:d9:45:32:12:78:e2:97:0e:72:
fc:cb:6d:7c:8d:7a:ed:dc:a1:ec:87:6e:1b:29:49:
9c:c3:b3:7b:ff:7f:12:e9:6a:78:b6:1f:18:92:7d:
cd:7c:69:46:84:ee:9b:69:44:9a:a5:ef:91:87:27:
e5:02:19:5e:d5:39:4a:0a:ac:0b:12:6b:90:2a:b9:
8d:23:26:89:57:2c:af:a2:5f:1e:d7:f7:ab:b1:ed:
e2:7d:a4:5b:f4:08:5f:d5:9d:6c:48:0f:66:ef:bd:
e6:30:06:78:70:45:1b:15:3b:a7:69:91:37:cc:3e:
66:d8:aa:ca:22:68:a8:f1:da:6b:0c:f1:1a:ec:2d:
9e:b6:59:17:59:56:ca:f6:05:78:c6:50:a5:ee:5a:
16:78:9c:6f:58:8c:cb:a7:fb:87:f9:19:ea:79:8f:
88:7e:3e:5c:ec:0d:c1:5b:98:a2:2b:64:02:59:27:
bc:ae:32:37:b5:9e:24:af:e6:9f:3c:95:86:b8:29:
3b:e8:0f:c6:21:4e:fd:8a:b3:c3:d0:58:17:af:ad:
35:4b:e7:6e:53:f2:27:4e:ea:95:17:90:16:33:87:
25:5a:cc:90:5c:d0:3f:35:cf:6b:4b:ab:de:58:90:
56:f6:96:62:7f:0d:92:cb:54:ed:78:24:97:46:22:
44:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:22:F9:6D:AB:50:0E:FB:43:E9:EA:9B:F1:92:70:BD:8B:48:FF:A0
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/6A90924E02F911EFB25D0623017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.252.8.0/22
Signature Algorithm: sha256WithRSAEncryption
a2:c8:9b:dd:95:7d:02:3d:5f:99:bb:10:36:5d:e1:f4:00:14:
6d:b0:04:5d:2b:6c:94:b4:aa:10:ec:a4:cf:54:d9:69:2c:06:
b1:fb:53:ac:12:4c:dc:87:58:76:21:a2:1e:c1:d6:22:6e:56:
84:9e:64:94:5c:c7:40:70:61:7a:57:7f:93:65:4d:1e:58:0c:
b5:54:dc:e8:c5:c2:10:1a:f1:ff:29:45:bb:19:5a:7f:4a:7f:
63:63:cb:a3:58:f2:b8:9e:52:de:84:a1:f8:87:f0:f2:77:7b:
1b:23:fe:c0:8f:2e:a1:c0:87:35:64:51:7d:44:cb:00:89:c7:
e6:71:10:c0:3c:9e:40:fd:74:78:ec:56:8e:36:68:2b:48:32:
52:b7:c7:e6:5f:a0:b6:94:2f:b0:65:d9:e9:ab:ff:f9:a0:45:
74:0c:c6:6a:66:fa:e0:78:bf:78:54:4a:5b:4e:fc:34:b3:c6:
87:2c:18:50:40:ed:15:83:9c:39:74:6d:52:e4:60:f7:f3:52:
b7:d0:80:af:7d:eb:03:63:e0:f1:ab:65:70:41:a1:14:ab:6c:
54:00:4d:a4:46:82:71:7a:c7:7b:ca:0b:3b:b1:53:b2:2a:5b:
db:0d:fb:7d:41:9f:77:14:25:d9:18:66:48:3e:bd:76:c2:7f:
e6:d2:74:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 6 02:18:24 2024 by rpki-client on console-ams.rpki-client.org