Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/8A70AC9CFD2311EE81D55605017001B1.roa
File: 8A70AC9CFD2311EE81D55605017001B1.roa (raw, json)
Hash identifier: uzOwaMYNK5i7ry3akLtQBGtEYDCRIX3wHb1OLrZiSk4=
Subject key identifier: D4:95:59:72:9D:44:60:EC:F2:3F:C9:B1:E6:EF:6E:79:E8:83:99:33
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 82E1
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/8A70AC9CFD2311EE81D55605017001B1.roa
Signing time: Thu 18 Apr 2024 01:32:39 +0000
ROA not before: Thu 18 Apr 2024 01:32:35 +0000
ROA not after: Sun 28 Apr 2024 01:32:35 +0000
asID: 211392
IP address blocks: 156.239.154.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 33505 (0x82e1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Apr 18 01:32:35 2024 GMT
Not After : Apr 28 01:32:35 2024 GMT
Subject: CN=66207837-a84f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ee:90:65:f5:2c:ae:6c:50:56:a9:cc:8b:a2:4a:
9f:9a:b1:fa:22:b6:33:ed:27:55:ac:42:5c:d4:e5:
81:99:57:f1:82:32:e8:e0:ff:2a:8b:de:44:3a:20:
be:09:6c:ac:d1:d4:1f:f0:6a:ee:67:5b:7f:a4:5c:
53:b1:66:47:cf:e6:ed:75:43:eb:10:fd:3d:c2:c4:
1d:88:13:a4:ac:be:f9:5f:d9:25:7c:79:05:ee:3b:
c1:55:7c:5c:95:ce:89:42:46:14:6f:3d:9b:1f:63:
7f:e2:9b:cb:bf:a4:4b:c4:41:43:60:0d:6f:ca:32:
67:4b:5d:16:f5:65:bf:56:25:32:4c:87:59:e0:02:
34:06:10:ec:b1:be:4b:eb:41:d1:c3:cf:7c:fa:c0:
77:97:dd:79:f2:86:d7:b1:5d:5e:5b:9f:4e:ae:63:
11:21:f5:0f:91:e8:7c:e2:c5:25:0e:76:2a:ac:68:
6e:1d:4a:2a:08:ab:96:8d:78:de:ab:97:96:87:87:
8a:a4:c6:38:31:dc:27:37:c3:e7:a7:e4:47:c6:2d:
8e:66:dc:c0:ae:68:4d:21:5e:2d:4e:8a:cc:d0:ee:
4d:2e:4c:24:2c:23:e5:33:b1:fa:cd:14:ed:17:c4:
83:5e:6e:a0:90:dc:17:e0:53:e9:ce:d9:3f:eb:8c:
ee:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:95:59:72:9D:44:60:EC:F2:3F:C9:B1:E6:EF:6E:79:E8:83:99:33
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/8A70AC9CFD2311EE81D55605017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.239.154.0/24
Signature Algorithm: sha256WithRSAEncryption
a7:b0:1c:b4:67:d7:44:e5:34:2a:30:9b:f3:d2:4a:4a:20:b6:
0d:ee:c8:37:cf:8c:7f:ff:8e:9a:66:f9:38:de:cc:d1:33:92:
f0:3b:47:2f:92:d3:e3:1f:44:1d:f2:90:64:a2:66:1f:04:63:
47:b8:36:76:c0:b9:a7:5e:17:8c:07:3b:b9:0a:4b:69:dd:bf:
49:c2:97:87:9d:3a:51:2f:5e:c7:1f:b9:93:8d:e9:6b:88:f4:
7b:48:1d:24:a1:67:76:da:16:b3:1b:09:25:de:bc:97:6b:ff:
0d:59:1b:19:a4:92:4c:f2:d0:02:eb:c7:d2:f4:49:78:71:9c:
89:4b:61:ab:9a:b9:72:0e:a6:b4:2b:f3:01:94:96:4b:87:f9:
be:e1:62:fb:62:7e:96:9a:59:d7:5f:b6:5e:72:29:9a:b4:7d:
b5:17:f9:9e:90:05:2e:8d:ae:0a:70:45:3c:2f:89:0b:0a:58:
15:d3:5a:e7:32:67:e1:05:11:7e:52:e5:18:3f:fb:31:5b:ce:
62:b6:d1:e2:71:e2:36:9f:90:f1:80:a8:09:a0:ee:97:e6:a3:
6e:21:5e:65:cc:26:bb:17:27:5e:92:35:f7:01:22:4b:f0:03:
a7:83:7e:3c:8a:5c:30:14:e4:8f:21:12:f3:c2:0a:ea:92:9c:
a6:40:13:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 28 15:55:41 2024 by rpki-client on console-ams.rpki-client.org