Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/8C5FDB66441011EFB4CD44A5762E951A.roa
File: 8C5FDB66441011EFB4CD44A5762E951A.roa (raw, json)
Hash identifier: Dmo5maAyO57n1921WDC4TKPPaVVO2vOHcnzyUEKYYYU=
Subject key identifier: C5:4A:56:49:C3:48:44:51:12:43:55:C1:24:55:FE:6F:38:D0:08:C5
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 9CFE
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/8C5FDB66441011EFB4CD44A5762E951A.roa
Signing time: Wed 17 Jul 2024 07:45:34 +0000
ROA not before: Wed 17 Jul 2024 07:45:30 +0000
ROA not after: Sat 27 Jul 2024 07:45:30 +0000
asID: 22773
IP address blocks: 156.238.28.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 40190 (0x9cfe)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jul 17 07:45:30 2024 GMT
Not After : Jul 27 07:45:30 2024 GMT
Subject: CN=6697769e-5345
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:f4:b4:c1:c1:44:ba:4c:07:16:17:dd:59:86:
97:d4:f1:9a:1d:34:0d:a4:77:c8:10:01:92:a0:4c:
c3:45:7c:13:7b:b0:6b:3a:7e:1e:0f:09:a7:44:d9:
0d:8e:9d:13:75:6f:a6:1d:8c:22:dc:2a:16:15:2b:
8c:e9:d2:10:f8:0b:dd:b0:6b:0b:e8:01:69:c5:fd:
68:73:3b:13:d0:71:01:fd:2b:74:b4:c0:fa:ea:10:
b2:e7:7b:3d:cb:40:48:4e:79:cc:6d:cd:b1:6b:cd:
e4:34:43:64:47:bf:2c:58:09:27:93:d0:c6:2a:59:
98:c3:07:53:a6:39:d3:91:9c:5d:c2:ee:44:ad:42:
2d:50:78:27:6b:1d:1c:5c:36:40:6a:6f:d6:e4:57:
36:02:48:5c:ed:70:97:ca:99:ee:0a:88:6b:09:29:
02:e1:e0:52:de:53:26:fb:b1:c9:90:bf:61:37:b0:
8f:06:38:3e:8e:3a:eb:64:d8:54:a6:c7:6e:93:ef:
70:20:7b:72:41:4a:ba:61:a8:51:7b:3d:aa:d0:c8:
d2:0b:49:f5:2d:4d:1e:5a:00:7d:10:9e:bb:3c:7c:
2a:cd:56:f1:80:6b:6a:97:14:df:f2:27:e2:0f:c9:
9d:16:aa:38:98:ba:0c:6b:f2:f3:64:e5:75:ce:29:
59:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:4A:56:49:C3:48:44:51:12:43:55:C1:24:55:FE:6F:38:D0:08:C5
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/8C5FDB66441011EFB4CD44A5762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.238.28.0/22
Signature Algorithm: sha256WithRSAEncryption
36:82:2d:c1:0b:37:c5:87:a3:e3:dc:2d:47:65:0f:3a:08:0c:
68:0d:b4:37:44:a0:54:77:a2:78:97:b1:78:41:ab:6d:d5:7a:
9c:54:f5:a2:fc:15:aa:c3:f3:92:48:6d:d1:1b:2d:0d:ae:af:
f9:40:b8:f4:3c:c9:a9:cd:96:6e:1d:cc:f7:de:64:d1:e9:61:
82:d4:0a:a8:a8:6b:51:20:ae:c7:c7:cd:95:b6:27:01:12:f0:
0e:18:ed:6e:dc:77:e0:17:e5:7c:8e:8e:cd:d2:d5:ee:63:94:
b7:25:65:43:5c:cf:d7:b2:09:06:fa:81:fb:9c:58:d5:32:36:
e4:b9:2d:3e:92:b3:ad:21:2c:c2:9a:80:7a:77:d8:98:3c:1d:
b4:ac:a2:a6:ed:e6:5a:b5:af:94:16:27:fa:ee:49:16:d5:50:
9f:7e:c0:6f:40:56:11:38:b8:99:62:19:08:64:f0:a9:71:a2:
5a:ab:4a:35:c2:e3:df:83:71:e6:0f:46:a3:95:e9:35:1c:72:
16:29:0c:82:3a:8a:7f:12:49:bc:74:05:be:65:b6:a9:74:ea:
1c:4b:7a:33:8e:fa:9a:59:69:5e:e8:11:9a:8e:43:b6:ad:14:
8f:c5:ae:60:30:ac:21:89:6f:c1:d0:28:9f:74:1b:ee:67:e7:
44:91:3e:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 28 03:03:27 2024 by rpki-client on console-ams.rpki-client.org