Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/88F154E402FE11EF96AF284F017001B1.roa
File: 88F154E402FE11EF96AF284F017001B1.roa (raw, json)
Hash identifier: 99NzUVu3YPsDusETN/va7URBkCX0EqrCTIsDSIKs7bo=
Subject key identifier: EB:56:46:98:A6:D1:D6:FD:40:99:64:20:FA:3F:DF:FE:F0:0D:AD:A7
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 8531
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/88F154E402FE11EF96AF284F017001B1.roa
Signing time: Thu 25 Apr 2024 12:22:52 +0000
ROA not before: Thu 25 Apr 2024 12:22:48 +0000
ROA not after: Sat 04 May 2024 12:22:48 +0000
asID: 9009
IP address blocks: 156.225.76.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 34097 (0x8531)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Apr 25 12:22:48 2024 GMT
Not After : May 4 12:22:48 2024 GMT
Subject: CN=662a4b1b-f6a7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:fb:23:65:4c:d9:51:07:7d:1f:18:28:48:5a:
68:e8:da:32:c9:89:c5:1d:58:cb:1c:9f:8f:51:8e:
93:21:f9:d3:89:39:8c:8f:99:f8:97:c7:8a:ab:79:
09:31:f7:bb:ce:92:4c:bd:18:39:41:b2:bd:7f:80:
15:13:62:76:92:a0:2d:50:d8:df:d4:cb:76:f5:df:
af:65:12:40:11:de:c0:8b:2a:c3:44:de:24:70:be:
3c:c6:5b:d4:27:d1:8c:05:ca:de:e9:f1:1d:ec:70:
b0:79:6d:5a:3c:15:ba:f3:94:e0:97:57:7e:55:e6:
bf:29:67:f4:98:78:90:88:89:40:27:3c:d8:d0:2e:
08:74:cf:a8:f1:08:80:46:a6:50:4b:88:03:2a:c0:
82:e3:e2:6c:11:1f:0b:b4:24:b8:94:c9:a7:d1:15:
3e:55:00:81:2a:4d:0b:da:70:70:d1:8c:b1:58:42:
11:38:18:04:e7:90:40:21:ca:79:f6:c9:85:be:56:
0f:82:e4:f6:e2:20:61:cd:75:a4:02:2f:ca:54:d5:
b9:fb:a4:0b:ff:5d:36:dc:74:21:16:fc:32:0a:2b:
55:93:b4:fc:57:e6:c1:87:f4:08:2c:57:50:74:f6:
50:4a:af:68:b0:a3:1b:73:00:ba:ac:a0:39:c6:3d:
66:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:56:46:98:A6:D1:D6:FD:40:99:64:20:FA:3F:DF:FE:F0:0D:AD:A7
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/88F154E402FE11EF96AF284F017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.225.76.0/22
Signature Algorithm: sha256WithRSAEncryption
1e:0d:dc:3c:8f:2f:af:07:dc:b0:18:38:0f:8b:4d:49:33:9d:
13:58:12:16:44:f1:63:ac:d7:72:b7:7c:5e:df:af:f6:c4:30:
5b:a7:bd:a8:cb:3e:1e:30:22:40:c4:c0:58:40:c5:fe:ec:2b:
4d:85:e5:f8:2f:aa:b1:97:db:80:ad:ae:ff:16:95:4c:08:9f:
87:b9:a9:88:6c:00:f0:e7:1c:fe:13:cf:18:58:cb:fa:95:92:
ec:76:d7:41:f2:8c:0e:11:a6:6e:f0:37:b6:8c:9b:d5:ee:17:
43:89:33:3f:0f:26:4e:e8:29:8f:b2:de:cc:42:83:96:3a:6b:
58:35:71:76:b8:58:a8:82:44:ac:2b:a7:b8:06:99:8e:98:c8:
ef:35:c9:33:67:1a:1d:89:86:e2:13:e4:e1:89:7d:95:3c:8d:
52:7a:a0:51:53:66:9c:d1:b7:0e:3d:8a:15:53:fc:f5:c5:f8:
0c:18:0b:19:02:15:e8:1d:cc:58:bc:19:87:15:37:25:e3:fa:
f5:35:bd:a4:96:ce:77:ff:b9:7c:83:55:36:ae:6f:a7:e9:89:
4a:22:e3:a0:05:78:62:14:d3:77:1f:0a:d7:cc:2c:31:ec:b9:
09:11:06:b7:52:48:aa:85:c2:b0:f9:62:51:f8:ce:95:47:ec:
64:85:7a:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 5 03:07:07 2024 by rpki-client on console-fra.rpki-client.org