Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/A8A215300F3311EFB5673344017001B1.roa
File: A8A215300F3311EFB5673344017001B1.roa (raw, json)
Hash identifier: t+bqszeCW02eJK6BArGEqiDPaZvF0X6brR3XXLQht8c=
Subject key identifier: 10:15:4B:9C:15:CA:BC:D2:7A:37:83:28:CC:EC:B5:FC:BB:79:D9:6F
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 89AB
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/A8A215300F3311EFB5673344017001B1.roa
Signing time: Sat 11 May 2024 01:13:22 +0000
ROA not before: Sat 11 May 2024 01:13:19 +0000
ROA not after: Thu 23 May 2024 01:13:19 +0000
asID: 44559
IP address blocks: 156.225.74.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 35243 (0x89ab)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: May 11 01:13:19 2024 GMT
Not After : May 23 01:13:19 2024 GMT
Subject: CN=663ec632-d39e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:19:a3:90:39:2c:98:74:5a:79:f1:7b:2f:c8:
4c:dd:83:11:b8:a5:9d:c4:4b:1a:d7:c5:07:26:0b:
44:45:ab:96:68:69:68:08:db:90:44:3f:82:e6:de:
5d:32:18:7c:ac:c0:00:13:08:69:4a:d3:12:1e:8e:
10:da:a3:6d:2b:23:40:10:6a:8d:bb:c9:b4:8a:28:
6f:cb:30:8e:a3:ac:ce:1f:cf:c4:7a:0d:ec:d4:9e:
7f:77:71:f6:c7:1c:9b:eb:c7:c8:19:db:00:3d:df:
a2:7f:9d:24:1f:59:dd:3d:9e:8e:5f:22:5f:a3:1f:
be:43:71:c0:b6:c4:c8:19:19:de:52:14:d3:dc:49:
6b:e6:aa:09:10:16:f1:67:2f:6b:86:bf:04:9a:46:
98:4d:13:03:73:2a:3f:12:ff:4f:12:b1:40:c8:2d:
1d:3f:8e:78:28:63:ed:72:64:3a:b1:50:17:70:2c:
c0:da:1b:35:5a:f0:23:92:8a:bf:82:1a:96:18:59:
c5:39:2c:d6:2a:0e:1c:2b:79:b4:13:dc:00:c6:82:
e9:81:bc:85:9c:6f:30:8c:e6:ad:64:1c:06:8a:2d:
a1:8a:61:ba:8b:e5:c3:75:af:3f:89:0d:7e:68:d6:
e3:ed:71:21:22:3f:1a:72:ff:f9:5e:d7:0d:4d:56:
e3:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:15:4B:9C:15:CA:BC:D2:7A:37:83:28:CC:EC:B5:FC:BB:79:D9:6F
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/A8A215300F3311EFB5673344017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.225.74.0/23
Signature Algorithm: sha256WithRSAEncryption
84:f1:e8:99:ad:40:31:b5:a8:b0:93:c8:3c:05:14:68:80:09:
ff:ac:fd:0c:0a:d9:d6:ad:5a:c4:0f:df:d3:12:41:f5:cf:45:
e8:b6:af:07:29:7d:51:69:9a:08:d0:bc:da:86:7a:50:56:e7:
1d:30:12:32:17:fa:78:fd:22:0c:14:e4:73:90:b0:85:72:bd:
06:08:0c:69:03:c7:f7:d4:a7:57:f2:b0:df:c7:18:2e:c5:f7:
49:9d:41:d7:8e:88:27:97:cb:0d:40:b7:9d:3e:7f:77:90:f9:
bf:fe:67:a9:9e:8e:22:49:e0:81:b7:ad:0f:34:4a:ab:65:ce:
18:1b:78:01:62:ea:e5:e2:bb:1b:63:3a:e6:de:33:9e:79:af:
50:84:7e:02:3c:db:4c:f4:7e:7f:e5:f6:5f:0b:8b:16:5e:14:
0c:fe:d5:b9:a5:62:ed:ee:d9:94:7d:3c:d3:c2:8f:e7:8b:ab:
0e:16:ff:8d:08:6e:55:9d:eb:bb:16:5d:f2:c5:62:7e:f7:3f:
bd:cc:7b:39:ae:84:0e:f7:d3:65:cd:3f:ae:13:6e:f3:56:83:
4a:64:e0:e5:ce:a6:ca:a7:99:67:a4:c0:48:3b:41:58:96:09:
b0:ac:04:21:32:e7:20:e1:27:db:b5:95:e0:8e:cf:59:cc:15:
7e:7d:2c:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:50:29 2024 by rpki-client on console-fra.rpki-client.org