Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/A3F01EDA499211EFBE586797762E951A.roa
File: A3F01EDA499211EFBE586797762E951A.roa (raw, json)
Hash identifier: luXB2lYUFHjnEllKbM1ObotWCFXRPSP4AcH7E1xyOxE=
Subject key identifier: 0D:DA:7C:CC:C2:DE:C1:29:A5:A4:BC:80:07:8E:15:CB:01:B0:00:E1
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 9ED9
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/A3F01EDA499211EFBE586797762E951A.roa
Signing time: Wed 24 Jul 2024 07:59:24 +0000
ROA not before: Wed 24 Jul 2024 07:59:20 +0000
ROA not after: Fri 23 Aug 2024 07:59:20 +0000
asID: 202656
IP address blocks: 156.246.240.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 40665 (0x9ed9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jul 24 07:59:20 2024 GMT
Not After : Aug 23 07:59:20 2024 GMT
Subject: CN=66a0b45c-285b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:47:23:5a:5d:38:d8:ba:c8:87:53:0a:aa:43:
14:d6:af:98:13:8d:36:35:2f:9f:2a:8e:e4:e2:62:
53:00:81:7e:9d:b3:56:1a:68:77:73:b4:73:35:86:
38:e3:2d:da:6b:6e:f8:98:a8:3c:64:15:87:ea:92:
ed:ee:6c:af:a7:4f:99:c0:53:1c:8e:a6:14:7b:9e:
6f:2e:22:61:23:dd:a6:68:a7:a0:9a:26:fc:01:bf:
bd:fa:5c:d3:0a:54:7f:84:40:1b:97:b2:6a:2e:41:
bb:f9:56:e1:27:11:6b:09:07:86:09:1e:58:24:d3:
9c:54:54:0d:3c:e4:f7:ba:b6:ab:05:2c:ba:b6:c9:
4b:a3:66:2c:20:76:dd:58:b8:08:0d:eb:79:55:50:
15:e8:e0:e0:1a:e2:36:51:17:26:93:da:dc:6a:41:
c8:d7:5d:10:3b:34:01:11:ec:40:fe:b6:12:0d:ca:
c6:05:c9:ca:8c:80:e0:92:2d:6a:5e:72:45:49:69:
7d:f6:40:78:bc:0e:c9:13:80:15:2e:8d:16:d9:08:
30:94:aa:c2:51:16:06:52:95:ca:89:03:76:bd:04:
4f:f2:7e:db:98:45:a2:09:bc:bb:d0:c0:73:44:d1:
9f:be:97:cb:ca:ec:94:66:3f:88:5b:32:da:b7:cb:
72:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:DA:7C:CC:C2:DE:C1:29:A5:A4:BC:80:07:8E:15:CB:01:B0:00:E1
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/A3F01EDA499211EFBE586797762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.246.240.0/20
Signature Algorithm: sha256WithRSAEncryption
18:1b:38:8c:f0:53:df:3c:28:cf:7e:ce:75:23:dc:ac:9f:d8:
4e:2a:4a:24:6a:2b:32:77:64:63:fc:a6:82:2e:85:d6:f2:dc:
d5:c0:28:3e:96:a2:6c:fa:3e:57:af:e3:68:0e:e7:63:37:45:
f4:3b:9e:df:39:d2:cd:a0:9f:37:81:07:5e:80:60:4f:7a:88:
f0:f9:3d:a2:bf:c4:11:42:2c:f8:07:ee:d5:e7:a6:e3:b2:a3:
be:16:f7:02:c2:f2:56:8a:88:b9:57:c1:e5:ae:18:6e:ba:30:
e0:7e:c9:6c:91:ce:b1:d4:ad:55:26:18:6a:e8:6d:4c:93:9f:
b5:de:a1:ec:63:97:97:47:3d:d0:cf:92:9c:ab:ba:52:9b:07:
0f:33:68:d4:e6:80:c7:f5:8b:90:a1:03:64:b9:2a:b7:96:cc:
66:13:f2:a2:b9:28:7a:3b:30:da:ef:ea:c4:88:38:f2:e9:dc:
89:bb:f4:79:7d:34:eb:f7:f8:74:af:86:61:86:94:8c:d6:d4:
8b:89:57:ed:fe:9d:d6:30:e4:d6:09:05:91:05:b0:0d:8f:67:
ee:56:22:d4:26:af:05:7d:c9:32:3a:9d:98:f2:67:04:0b:a3:
1d:a5:98:18:16:52:d3:9e:64:88:d6:49:e9:22:61:8e:6b:9b:
08:eb:b5:f8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Aug 23 12:55:02 2024 by rpki-client on console-ams.rpki-client.org