Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/9F7E62323EA011EFA7089B7E762E951A.roa
File: 9F7E62323EA011EFA7089B7E762E951A.roa (raw, json)
Hash identifier: 9bf84Lp/00NR7Nj3mE0ppVNVyVZOPlUC8CNP8nR/stQ=
Subject key identifier: 72:6C:73:80:04:68:A2:F0:19:D6:83:78:7F:A6:6F:DD:DF:42:20:27
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 9AEB
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/9F7E62323EA011EFA7089B7E762E951A.roa
Signing time: Wed 10 Jul 2024 09:41:47 +0000
ROA not before: Wed 10 Jul 2024 09:41:43 +0000
ROA not after: Fri 02 Aug 2024 09:41:43 +0000
asID: 141883
IP address blocks: 156.246.16.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 39659 (0x9aeb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jul 10 09:41:43 2024 GMT
Not After : Aug 2 09:41:43 2024 GMT
Subject: CN=668e575a-49b8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f4:b6:2a:20:7c:d7:2d:ff:69:02:3d:42:c0:a1:
6f:1a:ed:49:35:52:f5:0b:0c:50:1e:e0:9c:a0:22:
69:cc:81:4a:32:c3:a0:c2:a2:4a:de:3b:9e:ca:24:
d6:f5:a1:b7:ff:3d:25:73:3d:48:35:31:f4:62:8f:
b1:05:0c:86:87:23:44:e9:31:e5:59:cc:8b:22:70:
8c:9b:33:71:43:d0:d3:25:0b:02:ec:dc:ca:99:cc:
be:7c:78:f1:58:8c:26:dc:d1:2a:51:b2:21:95:e3:
ee:4e:c7:50:c6:d2:a6:79:99:e8:cd:7e:bc:a8:a3:
d5:c9:9c:df:20:ab:46:6e:13:2f:7b:b6:e5:55:a8:
d7:15:22:cc:e6:34:bb:84:72:ef:2a:1d:5a:0e:5b:
39:5e:e3:df:40:7d:f9:f3:88:ce:ab:f7:5f:84:a9:
15:84:9a:4f:7e:45:0e:17:b4:12:eb:76:27:26:41:
a2:c0:9a:27:6b:77:eb:03:e2:28:4c:15:56:9c:28:
6c:30:00:56:a0:54:df:5d:2d:62:fc:8d:5b:b9:92:
ce:b8:d8:42:f4:37:7a:28:68:c1:6e:fa:26:d3:bd:
55:3a:f6:ac:c1:6b:60:93:19:19:5f:7a:ac:5f:21:
83:a8:7f:8e:54:c3:96:fb:cc:42:cd:aa:8f:d6:35:
1d:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:6C:73:80:04:68:A2:F0:19:D6:83:78:7F:A6:6F:DD:DF:42:20:27
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/9F7E62323EA011EFA7089B7E762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.246.16.0/23
Signature Algorithm: sha256WithRSAEncryption
28:5a:01:ae:b8:70:8a:88:af:62:6b:43:34:8a:f6:18:e9:e0:
50:46:01:38:92:0e:0b:a1:15:4e:50:ff:60:79:78:89:5e:6d:
63:af:fe:59:92:8f:a2:1a:54:32:a6:a9:08:e8:21:12:40:d8:
0b:5e:75:4a:93:42:75:b8:80:63:77:18:d7:f9:82:d0:e7:92:
65:42:cb:7b:16:4e:0c:7f:06:a1:0f:83:ec:28:4f:1b:55:2c:
0c:80:ea:5a:3b:a3:e4:07:2b:5b:c1:55:72:bf:8a:79:fa:24:
6d:b2:7d:38:08:ae:15:c2:7b:22:25:47:24:6d:84:08:f3:42:
0a:cd:e1:43:86:15:b6:81:b2:0f:03:e5:b7:2d:67:94:b8:4b:
03:fa:9d:dd:0f:bf:e6:8d:c5:c9:e9:48:7a:06:bf:21:72:ac:
f6:d4:64:4d:3f:26:49:35:3b:c1:39:90:e0:00:ed:34:3e:cb:
2b:86:2d:8a:f2:b6:82:ce:2b:9a:07:90:3a:0f:7d:2a:ae:00:
b5:e1:6b:fb:1c:de:2b:42:04:98:64:0f:52:58:50:dc:e6:bc:
08:8e:ff:e1:14:26:ef:f5:53:a7:76:dd:e6:54:83:5b:cc:74:
ae:79:d2:40:46:24:1c:f2:cd:7d:98:65:4c:75:4e:2a:23:b4:
45:6a:0b:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Aug 2 12:06:48 2024 by rpki-client on console-fra.rpki-client.org