Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/A0032E14441711EF93D92557762E951A.roa
File: A0032E14441711EF93D92557762E951A.roa (raw, json)
Hash identifier: ++F0PWvhgeMf7MuPngnmeZ/1rkrACrqaBKCIDavk+yw=
Subject key identifier: 73:45:C1:B4:53:D8:62:5B:A8:B6:46:1C:CF:0E:64:F4:13:88:18:8F
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 9D2A
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/A0032E14441711EF93D92557762E951A.roa
Signing time: Wed 17 Jul 2024 08:36:13 +0000
ROA not before: Wed 17 Jul 2024 08:36:10 +0000
ROA not after: Sat 27 Jul 2024 08:36:10 +0000
asID: 5065
IP address blocks: 156.233.20.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 40234 (0x9d2a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jul 17 08:36:10 2024 GMT
Not After : Jul 27 08:36:10 2024 GMT
Subject: CN=6697827d-ef00
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:7a:a2:59:96:2c:24:79:77:40:bb:f8:f4:cc:
b3:f8:4e:95:be:6a:4c:9b:7e:2a:7a:d1:34:33:e3:
54:0c:5f:2d:02:1a:ce:89:53:0a:c9:cb:a8:91:4c:
10:58:b4:30:5d:08:dd:53:fc:80:a4:dc:78:56:ab:
9d:cc:62:55:f9:af:ea:d4:52:cd:53:a8:ea:ac:69:
65:38:1a:a4:0b:b0:d3:80:fa:64:0e:63:b7:a0:3f:
ec:80:4e:d3:7d:b9:29:bb:0b:07:33:cd:76:67:da:
00:a4:57:4e:1a:9e:6a:22:02:fe:be:6f:de:e3:52:
96:1e:4b:b2:17:db:0c:fe:14:5c:d2:3a:56:1c:90:
36:f9:70:f8:9c:6c:34:37:ea:0d:be:83:66:5a:a9:
11:46:b2:bf:8b:f7:79:df:1a:98:bb:f8:16:84:57:
e0:68:43:1a:29:4b:00:bb:39:ee:e6:44:e1:8d:1f:
a8:be:2e:a0:51:33:e7:97:9f:e9:53:a1:01:ab:1c:
be:31:24:2c:0a:34:6f:b8:80:dd:9f:5a:be:fb:f0:
c3:41:b7:3e:32:3c:c2:48:7a:5a:d6:01:de:21:ea:
f2:32:76:21:d1:85:f0:54:59:6b:9e:1e:c7:d1:9e:
2b:ff:ea:bd:eb:3c:8f:b6:c0:79:49:fb:57:67:f2:
cd:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:45:C1:B4:53:D8:62:5B:A8:B6:46:1C:CF:0E:64:F4:13:88:18:8F
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/A0032E14441711EF93D92557762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.233.20.0/24
Signature Algorithm: sha256WithRSAEncryption
25:19:ca:66:b3:2c:bb:4b:3b:75:70:bc:ac:ee:ec:2f:e6:26:
d4:9f:02:1e:75:6f:b8:1b:b2:2a:71:31:df:ee:8f:31:3e:34:
0f:f7:38:f3:8a:8f:ec:03:93:7c:84:5b:b6:a0:c1:95:96:88:
50:7f:d9:e6:b6:89:7d:78:d1:ae:24:1e:8d:f7:a0:7e:54:ab:
01:82:f6:a4:3b:8c:3a:9d:5f:c7:ab:db:2d:95:21:d3:f5:e0:
6a:80:57:0a:4d:36:eb:61:16:01:5d:c6:fd:1c:d5:52:f9:be:
a5:99:21:09:3c:ac:a3:e4:01:5f:de:20:c6:f8:c3:4a:97:82:
5a:da:c0:79:96:54:f6:8f:39:81:48:72:66:79:ae:85:81:d4:
22:79:23:b5:ab:f3:5a:3f:42:a6:5d:b1:c8:f5:c3:f4:91:cc:
72:03:a2:af:f1:2b:95:70:b8:14:4a:14:7b:4f:fa:91:d9:44:
e9:6c:d6:f1:51:98:b1:9c:a5:3f:a6:da:c2:7f:b7:a3:a7:00:
bc:57:13:33:c9:7f:fd:fe:ed:93:02:ac:ae:6d:0d:9d:6f:8b:
21:04:3f:81:85:22:d5:2d:78:ed:03:54:66:69:c2:fd:92:db:
2c:21:e9:c3:53:3d:30:c7:8b:93:0c:7e:3c:53:12:1a:10:29:
0a:80:5e:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 28 03:06:41 2024 by rpki-client on console-fra.rpki-client.org