Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/A63855CA0DCB11EF8FA87350017001B1.roa
File: A63855CA0DCB11EF8FA87350017001B1.roa (raw, json)
Hash identifier: eGLxMvbTGlAbu+yt0UBfWN/EWJtsfpkclCsmdp5T4FM=
Subject key identifier: 53:C2:A4:F9:1B:86:3F:05:33:59:89:52:D1:B7:D6:1C:F1:45:F5:18
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 8901
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/A63855CA0DCB11EF8FA87350017001B1.roa
Signing time: Thu 09 May 2024 06:16:19 +0000
ROA not before: Thu 09 May 2024 06:16:15 +0000
ROA not after: Wed 29 May 2024 06:16:15 +0000
asID: 141883
IP address blocks: 156.242.12.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 35073 (0x8901)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: May 9 06:16:15 2024 GMT
Not After : May 29 06:16:15 2024 GMT
Subject: CN=663c6a33-813b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:7a:f3:37:e5:b4:1f:89:b2:13:8c:0a:2b:4a:
c7:48:60:6d:82:41:aa:06:5b:61:f9:93:3d:04:cb:
f7:a5:c3:3c:20:be:2f:87:e3:71:d2:9b:65:e4:ab:
37:e3:5a:ea:a1:8d:57:ef:b3:36:a8:1b:4e:e0:41:
6f:cd:db:2c:55:93:cc:41:a8:06:ac:01:3f:1c:3f:
63:a8:b3:a1:97:d2:53:c7:94:c6:fc:85:9a:91:f8:
c4:b1:b7:6b:a6:b8:dc:aa:5e:84:42:68:c1:91:ad:
b4:0c:08:f4:6f:d4:34:b3:a0:39:b1:e6:e4:1b:36:
dd:d2:e6:72:90:a5:c7:6d:2d:d0:48:5a:db:60:ae:
a7:0b:40:2c:85:7d:75:21:8f:ee:ea:59:6c:1d:6d:
d3:31:b7:61:8f:52:b3:82:a0:55:bd:0e:fd:ad:b4:
15:fa:12:1b:ab:81:c5:b6:6e:5e:07:58:21:b6:a3:
00:8d:53:f5:f7:95:60:9e:f8:f6:63:36:d3:e8:28:
ba:38:ee:3a:4b:83:c5:f7:2f:6f:b3:d0:c6:28:c0:
cc:3d:ba:bb:da:2b:d3:8c:12:22:28:07:b8:ad:e2:
39:93:3b:b9:4e:11:26:e2:ff:22:95:9b:ce:79:ed:
c6:a6:9d:a6:d4:3f:95:1b:ef:b6:7b:67:20:8e:79:
f6:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:C2:A4:F9:1B:86:3F:05:33:59:89:52:D1:B7:D6:1C:F1:45:F5:18
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/A63855CA0DCB11EF8FA87350017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.242.12.0/22
Signature Algorithm: sha256WithRSAEncryption
15:cb:eb:e1:76:5c:4e:55:ef:f6:8a:47:e2:51:02:db:15:7f:
0b:67:c4:3f:38:df:26:9d:a6:9b:a3:37:f9:2c:67:a0:f7:93:
67:7a:82:66:d8:a1:fb:15:0d:fd:8d:45:71:be:00:6c:a2:62:
6a:cf:b9:f7:fd:8e:93:77:62:de:a7:9f:97:1d:4c:0c:15:1c:
9f:89:91:6a:0f:b2:e1:4b:63:7a:e2:ad:28:ce:39:b7:b7:69:
d3:92:19:f4:4a:8b:66:42:78:ec:59:af:95:bf:50:f5:ad:69:
0e:0b:61:e2:1c:07:3d:a4:8c:6e:62:c9:b3:64:43:f4:2a:2d:
76:d4:26:d9:76:83:77:6f:f7:a4:67:83:64:57:54:08:69:10:
89:b0:fe:55:28:aa:9c:db:b1:68:d3:17:a1:83:52:18:fa:0c:
58:75:2f:db:50:bd:d0:5b:91:10:3a:71:76:61:5e:8d:65:50:
ae:fd:dc:7d:69:b9:8c:72:7e:01:25:1f:d3:cf:0b:78:44:f4:
e4:b7:bc:3a:be:99:d5:49:72:b9:5a:23:e8:90:0e:f8:f6:3f:
b2:aa:9e:17:3e:08:91:38:1c:d2:bb:0e:b8:97:e1:cc:51:45:
be:1b:d6:13:d7:af:0b:99:17:1c:94:e7:02:3f:6e:28:eb:20:
a4:77:93:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:50:29 2024 by rpki-client on console-fra.rpki-client.org