Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/89624E6CFD3411EEBCD3861C017001B1.roa
File: 89624E6CFD3411EEBCD3861C017001B1.roa (raw, json)
Hash identifier: h0b18Sy4dss0Lbvy9veO8piu/dInTPqJ7R826ymsLKc=
Subject key identifier: 52:03:09:AE:B7:B6:05:D8:88:A0:F3:60:A0:BB:9D:83:50:1E:B2:36
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 8303
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/89624E6CFD3411EEBCD3861C017001B1.roa
Signing time: Thu 18 Apr 2024 03:34:18 +0000
ROA not before: Thu 18 Apr 2024 03:34:14 +0000
ROA not after: Mon 29 Apr 2024 03:34:14 +0000
asID: 139646
IP address blocks: 156.249.28.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 33539 (0x8303)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Apr 18 03:34:14 2024 GMT
Not After : Apr 29 03:34:14 2024 GMT
Subject: CN=662094ba-e93d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:66:67:84:89:e3:d5:12:1b:ab:e6:05:ae:25:
b8:24:f5:ca:e1:47:8c:f8:e9:77:ff:0f:a3:e4:4e:
f2:ce:a6:d7:27:97:eb:39:75:64:92:3d:00:2c:cc:
b9:bd:eb:e6:b3:b4:77:22:d3:23:78:d8:92:e2:ac:
ba:65:1a:d8:f3:91:cf:2a:bb:89:9e:3e:0b:59:cc:
3f:50:8c:a3:f2:6f:ec:59:1a:62:79:3c:52:53:da:
fe:8e:cb:4e:68:11:6e:49:79:f7:b6:f1:6d:a8:de:
50:b2:62:cd:b5:09:89:71:e9:b5:60:55:62:bb:a7:
84:4e:dd:43:92:45:e0:f5:b7:df:50:1a:84:4c:42:
2e:ab:5f:05:be:90:ea:e9:45:fc:8a:cc:a0:0b:af:
15:40:43:2c:12:97:07:24:8c:0d:07:01:8c:66:24:
3f:99:0f:13:31:8c:ce:2a:00:27:72:4b:5e:d7:19:
e2:30:3c:83:09:f9:dd:d8:2b:2b:6d:ee:7c:68:cb:
0c:01:65:be:27:17:4d:49:f3:ec:19:9b:05:6d:ce:
bb:e0:f2:1f:52:35:50:02:b7:b1:aa:0b:c6:e9:67:
7c:80:39:98:14:3b:37:5b:72:00:12:9a:7f:04:e2:
b7:ff:6d:e0:48:92:56:31:4a:95:bc:9c:7e:8d:ec:
f9:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:03:09:AE:B7:B6:05:D8:88:A0:F3:60:A0:BB:9D:83:50:1E:B2:36
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/89624E6CFD3411EEBCD3861C017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.249.28.0/22
Signature Algorithm: sha256WithRSAEncryption
58:56:65:0a:cd:f8:85:70:21:0e:83:f6:a5:45:b6:77:e5:37:
05:41:3e:7b:00:82:a9:29:72:38:68:13:78:4a:de:9d:12:69:
ea:c1:92:68:51:84:0d:58:d7:a8:67:30:b1:51:cf:4b:ae:e5:
dc:90:26:a3:f0:58:14:d9:2c:6d:90:6e:7e:e8:fd:8b:b9:c5:
15:b8:5f:8b:8c:87:1e:d8:5e:a9:e6:46:97:6d:60:0c:cd:92:
c5:41:43:5e:fb:a8:01:fc:d4:da:1f:e9:05:fb:fa:53:30:26:
37:d2:61:ee:f1:de:2d:cd:7b:d4:a0:16:60:8d:51:02:2d:51:
2f:9f:63:aa:93:32:8b:bd:17:90:ff:75:02:e7:9c:17:c4:09:
a3:ee:96:d2:e1:55:a8:5d:33:71:52:e3:18:b2:9e:da:9b:65:
38:84:fb:62:fe:6f:cf:17:13:68:d7:44:fd:32:72:af:58:1e:
fb:f1:a0:aa:84:75:4d:b6:5e:0d:63:b2:d9:17:b8:10:01:ec:
77:0f:b3:22:6f:0e:da:1d:c5:bd:8b:f6:cb:8c:87:83:a5:aa:
73:da:21:e3:8d:72:42:e1:1f:75:5b:d5:ff:be:90:54:04:a9:
d7:cb:23:87:36:b5:13:78:21:40:fd:a1:64:11:0d:4a:4b:f3:
aa:67:a4:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 29 05:25:37 2024 by rpki-client on console-ams.rpki-client.org