Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/8BA0A4D2353111EFAD9C4F9D762E951A.roa
File: 8BA0A4D2353111EFAD9C4F9D762E951A.roa (raw, json)
Hash identifier: 6JO1aq9aPkyUQ1bqujPFZ2SagyQ/RiI7HBI51P0GvxQ=
Subject key identifier: 3A:4B:B1:CA:FC:10:21:4A:98:15:9F:9A:57:47:07:A7:69:43:6B:ED
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 95DF
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/8BA0A4D2353111EFAD9C4F9D762E951A.roa
Signing time: Fri 28 Jun 2024 09:33:59 +0000
ROA not before: Fri 28 Jun 2024 09:33:55 +0000
ROA not after: Tue 27 Aug 2024 09:33:55 +0000
asID: 399077
IP address blocks: 156.251.0.0/18 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 38367 (0x95df)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jun 28 09:33:55 2024 GMT
Not After : Aug 27 09:33:55 2024 GMT
Subject: CN=667e8387-83a2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:11:1b:4f:b1:64:3c:23:ef:0c:c0:93:a5:7b:
dc:5c:85:f3:be:5a:3f:16:27:10:a8:12:f7:e1:a2:
24:e6:87:ee:7e:ea:9e:14:02:39:c6:50:46:b6:20:
01:5a:a8:1b:78:1a:fb:eb:73:07:4f:27:e3:d2:04:
7b:81:67:6a:f5:7d:c6:4e:10:08:3b:bc:2d:7b:fe:
af:8a:16:f4:a7:ef:46:02:0d:b2:f1:ab:bd:ce:0e:
1a:7e:83:b3:f8:48:35:69:09:90:4c:c3:79:ab:d1:
a0:d6:64:d3:28:00:b0:5e:39:c6:17:42:22:1b:9c:
1b:91:08:00:19:86:44:03:4f:1a:f3:59:90:b9:b3:
74:90:2e:3f:8a:48:20:40:d2:46:0b:f4:0d:b1:64:
13:4e:20:d1:e1:1a:f0:2f:39:a5:a5:f6:c9:a9:ad:
a9:02:3f:24:72:4d:19:27:dc:82:43:c3:9e:80:42:
96:91:d9:85:85:75:6e:cf:7e:5b:68:da:a5:cf:15:
5c:f0:20:81:6a:91:51:66:48:9e:70:09:0a:3c:17:
01:84:37:5c:99:37:0d:7d:7a:c5:27:21:9c:c9:49:
96:2a:32:25:2f:ad:4e:4b:1f:50:06:06:8f:96:d2:
07:cf:eb:64:be:eb:38:b0:1c:d3:be:e8:ce:c4:81:
fa:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:4B:B1:CA:FC:10:21:4A:98:15:9F:9A:57:47:07:A7:69:43:6B:ED
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/8BA0A4D2353111EFAD9C4F9D762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.251.0.0/18
Signature Algorithm: sha256WithRSAEncryption
57:16:74:20:d1:84:8c:78:e0:0c:94:e4:ec:0e:f4:37:51:86:
dc:96:da:f8:9b:07:43:86:68:e5:3f:27:28:eb:02:0f:3a:93:
4f:10:8e:6f:8f:d6:a9:35:08:c5:9e:20:bc:59:5a:b6:f0:0d:
99:2c:7e:cf:93:20:d9:f1:3b:e6:43:7d:77:4e:ed:40:14:f1:
49:ad:a7:1f:81:69:43:5b:dd:25:49:d8:75:11:ea:c6:23:a3:
ae:12:a2:88:be:bb:8e:87:44:18:4c:bf:18:04:ae:72:9c:10:
f0:99:21:9d:49:69:9b:d5:cf:0d:05:3b:4a:87:d1:f8:d4:b5:
bc:6a:df:19:1e:dd:08:cf:a2:e6:26:a3:68:c1:28:9e:de:41:
12:d2:f9:f9:59:9e:23:3b:d7:c9:3b:79:a2:fa:d4:f2:bf:dd:
42:04:9c:3b:4d:ad:86:aa:dd:6d:b3:88:30:18:a1:51:3c:67:
03:ff:e7:3c:21:83:de:cd:c8:80:4b:02:4c:03:8e:8f:eb:b7:
aa:bc:bc:d9:31:f2:8b:5a:8c:d5:68:8c:01:af:a4:bb:aa:a4:
e7:ee:32:28:bc:29:15:52:b4:26:70:ab:8f:68:06:9e:0f:94:
c8:6b:19:64:6e:10:9f:bb:3b:d1:8f:df:ad:27:b5:26:d4:53:
7d:cb:c1:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Aug 27 11:52:36 2024 by rpki-client on console-fra.rpki-client.org