Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/7D1CD37A2EE911EFA640E840762E951A.roa
File: 7D1CD37A2EE911EFA640E840762E951A.roa (raw, json)
Hash identifier: DVUfIMxbqT+V599bN3mByZXNeTNjV4oTUktEs7mAjiw=
Subject key identifier: BC:87:ED:38:41:0F:42:3C:98:A0:E9:20:53:78:17:14:A3:5F:7F:72
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 93D3
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/7D1CD37A2EE911EFA640E840762E951A.roa
Signing time: Thu 20 Jun 2024 09:43:03 +0000
ROA not before: Thu 20 Jun 2024 09:43:00 +0000
ROA not after: Mon 12 Aug 2024 09:43:00 +0000
asID: 135097
IP address blocks: 156.224.128.0/18 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 37843 (0x93d3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jun 20 09:43:00 2024 GMT
Not After : Aug 12 09:43:00 2024 GMT
Subject: CN=6673f9a7-c4af
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:c9:b7:d1:63:1c:12:0e:5f:52:0d:86:6b:b6:
82:33:a7:02:66:66:5d:1d:a7:8c:93:02:49:11:53:
41:20:b1:41:34:75:e9:b4:58:95:ce:38:6d:81:74:
64:35:c1:46:8d:21:44:96:fa:6a:99:84:e6:9d:79:
7c:3a:c0:6c:32:58:01:4e:e6:e6:0d:dc:ca:34:44:
e5:53:26:96:f3:65:f2:92:5a:fe:8e:88:b4:e1:3c:
02:88:e1:0c:61:0b:be:8d:2b:d8:56:19:d4:9f:88:
70:40:a0:39:24:d6:e2:ac:3c:c3:c8:f9:df:bb:d2:
61:e7:8a:48:37:da:1f:ac:af:e1:d2:34:e8:01:a5:
e6:68:c9:e2:40:e1:9c:60:56:7c:fe:19:b6:4c:2f:
b1:02:16:96:7e:a4:f1:7f:a0:f7:75:88:56:73:73:
67:4d:74:37:b5:12:32:ef:be:67:fc:e9:83:ce:fd:
7a:d4:89:0b:55:ce:6f:3b:f3:37:3e:00:0e:83:6b:
b8:9e:3d:dc:51:5d:7d:ae:e3:c0:18:5f:17:72:7f:
05:f4:f0:40:f9:bf:86:c3:05:6c:8e:fb:46:67:04:
78:38:53:85:e7:25:e8:65:1e:bc:43:fe:d8:fa:af:
d4:dd:17:c5:a3:89:3c:e2:65:d2:54:13:c8:e5:3d:
aa:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:87:ED:38:41:0F:42:3C:98:A0:E9:20:53:78:17:14:A3:5F:7F:72
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/7D1CD37A2EE911EFA640E840762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.224.128.0/18
Signature Algorithm: sha256WithRSAEncryption
18:40:4c:6b:1d:d3:93:15:13:cc:85:43:e1:5b:2d:d5:bb:bc:
53:7a:66:07:e0:f9:3b:65:0e:ce:80:f7:2e:c5:96:11:6d:ee:
b4:bb:52:24:8d:0e:ff:69:2a:35:f5:b2:09:5f:fb:c0:6a:f3:
20:fc:a2:05:b9:35:90:bd:28:cd:aa:bf:54:f6:ea:6f:6b:4c:
c6:b2:2f:98:03:29:05:10:d1:6e:a7:b9:84:cc:b6:7a:b7:08:
e4:6b:cd:f6:a8:77:08:68:8d:8b:2b:bc:6f:87:a3:c8:7a:8a:
72:a9:a1:7d:7b:21:52:ab:15:fa:00:af:79:02:e4:d9:28:5d:
a0:cf:67:74:52:83:87:e0:4e:2d:80:b7:e8:e1:ef:96:74:31:
90:a1:79:84:0f:e4:5a:94:e1:7e:dd:7b:eb:88:f2:c7:bf:cc:
f2:9e:4a:5e:24:59:99:43:a8:4e:2c:93:21:f7:cb:8b:da:1a:
3c:e6:5b:46:7a:4a:06:9d:e1:6c:e6:1c:0e:2c:aa:74:60:a1:
20:c5:df:73:4d:71:19:4f:f3:6a:bd:4e:ee:61:f0:2d:50:c4:
e0:8b:a3:f5:a9:0d:9e:d1:f3:39:d0:ba:3a:b0:00:28:eb:c2:
6d:4f:4e:ec:52:d3:b5:16:a8:73:57:2f:3c:bb:0e:c2:4f:91:
9d:8f:ba:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Aug 13 04:44:31 2024 by rpki-client on console-ams.rpki-client.org