Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/AE9008323E9D11EFB637F96B762E951A.roa
File: AE9008323E9D11EFB637F96B762E951A.roa (raw, json)
Hash identifier: uUZlUprsKIhFs5b2SXaf043RAr0ECXDQSue6En6UP0E=
Subject key identifier: 14:5F:B4:B0:4A:8D:A2:09:D0:3B:8F:92:A8:B4:25:99:AD:6F:75:FE
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 9ACB
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/AE9008323E9D11EFB637F96B762E951A.roa
Signing time: Wed 10 Jul 2024 09:20:43 +0000
ROA not before: Wed 10 Jul 2024 09:20:40 +0000
ROA not after: Fri 02 Aug 2024 09:20:40 +0000
asID: 141883
IP address blocks: 156.240.48.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 39627 (0x9acb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jul 10 09:20:40 2024 GMT
Not After : Aug 2 09:20:40 2024 GMT
Subject: CN=668e526b-e33b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:3d:5f:31:da:2b:4d:b5:68:c4:c6:ab:24:5d:
e0:8b:b2:9a:8a:66:48:05:66:5c:30:94:e6:8a:71:
11:a2:55:cb:99:41:f1:37:0a:7e:e1:c1:bc:9e:ab:
30:4e:c0:63:2f:69:2c:a0:f0:b2:a8:53:58:71:4a:
6d:b6:38:9b:29:73:ec:6d:7d:8f:03:6b:76:d2:6d:
54:cb:18:a8:e1:fb:ad:27:37:af:49:20:a2:b2:90:
77:be:94:ea:ed:12:e8:b1:35:66:1e:95:cd:3b:bd:
e3:ac:1b:ab:04:87:16:5d:2c:18:7d:30:53:61:c5:
95:10:1c:d6:a0:4a:d3:f4:73:6c:66:e1:05:e4:dd:
52:92:44:c6:00:45:3c:31:9e:b0:1b:7f:f1:81:60:
99:10:49:97:9f:57:d4:5a:08:d7:8f:d4:3d:a4:22:
f2:90:46:d0:06:45:33:0c:57:5e:eb:61:c7:6f:73:
8c:23:50:27:39:70:47:55:20:0b:8d:40:04:0a:f5:
fb:1b:d7:61:52:d2:94:7d:1d:27:a8:38:de:2f:b4:
70:ec:53:10:35:d1:99:07:12:6c:e1:f8:8a:a5:12:
c0:b2:97:9e:da:3e:4a:aa:32:41:11:4d:12:30:c7:
3d:c4:0a:6a:2d:72:3e:1b:39:e5:c0:9b:21:30:b8:
eb:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:5F:B4:B0:4A:8D:A2:09:D0:3B:8F:92:A8:B4:25:99:AD:6F:75:FE
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/AE9008323E9D11EFB637F96B762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.240.48.0/21
Signature Algorithm: sha256WithRSAEncryption
8f:5f:c5:46:a9:5e:14:a0:86:a7:6f:a7:ad:f9:a5:db:46:05:
cc:38:f6:78:18:14:2c:0c:d3:dc:07:5b:9c:53:93:c4:e9:f0:
dd:64:f8:70:d4:99:c2:39:2b:1b:93:c2:df:2b:ff:b0:66:ff:
d8:07:45:00:43:90:40:c5:6f:2b:5a:74:10:ce:62:45:2d:bc:
1c:8e:8c:07:8a:4a:0f:fd:d4:f2:85:6e:b0:a2:65:7f:f6:42:
2f:78:fb:b3:30:dd:e9:54:6f:8f:99:45:d3:10:ea:7d:9f:2b:
7b:ec:4c:d9:9a:53:a0:e6:b0:f8:30:2d:3a:02:73:e4:9a:77:
48:83:f8:b2:b5:e0:b4:b2:55:be:a2:a7:f8:89:2f:94:e4:c1:
36:2e:4a:69:ce:b0:35:a9:52:63:26:79:31:be:e0:c8:c7:c4:
dd:8d:1a:5d:f3:8f:e7:db:b6:94:1d:2d:f4:d6:cf:75:8b:7a:
e0:b5:07:5f:1f:d7:a5:44:12:b5:f2:6e:2e:38:38:ac:df:08:
38:35:b2:70:a4:46:7e:a5:59:ba:0e:46:30:fa:b2:a1:89:a6:
f1:41:40:d4:14:15:aa:fe:ab:cc:72:d6:55:11:1d:fe:fa:9c:
08:9e:34:55:19:0a:4a:77:bb:8a:32:58:b5:ea:32:d9:3a:da:
27:aa:7a:2c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Aug 2 12:06:48 2024 by rpki-client on console-fra.rpki-client.org