Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/B0F810D4EDB611EEAEC661A7775412E6.roa
File: B0F810D4EDB611EEAEC661A7775412E6.roa (raw, json)
Hash identifier: khbUeSuJlLgtotVfeTzjXMYeTUs9I4H6Ty9tKEATn2Y=
Subject key identifier: 55:3C:98:9E:EB:FA:CD:28:63:00:1B:B9:18:FB:1C:99:21:22:32:29
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 80F4
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/B0F810D4EDB611EEAEC661A7775412E6.roa
Signing time: Fri 29 Mar 2024 10:25:40 +0000
ROA not before: Fri 29 Mar 2024 10:25:37 +0000
ROA not after: Sat 04 May 2024 10:25:37 +0000
asID: 142062
IP address blocks: 156.242.32.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 33012 (0x80f4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Mar 29 10:25:37 2024 GMT
Not After : May 4 10:25:37 2024 GMT
Subject: CN=66069724-d146
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:74:ec:85:87:38:93:cc:2a:cd:12:eb:fc:59:
c0:0e:64:ef:ff:d9:b0:3f:3a:f2:63:74:ce:fc:cf:
05:b8:e5:31:8d:03:1f:5e:b0:b8:fc:f3:a1:b6:ff:
25:b4:80:03:34:5c:36:31:2d:6c:76:e2:59:36:2f:
31:4b:5b:06:25:45:bc:fd:01:31:1e:15:67:2d:c8:
a2:48:24:16:d5:c4:69:73:77:f7:0b:ab:91:20:e0:
72:47:c6:85:f8:a2:2e:5d:1b:8b:bd:56:50:a5:ae:
3b:80:80:41:79:eb:a2:08:e7:c6:f8:4f:1e:11:f5:
52:c3:0a:06:8d:b9:cd:9f:3b:22:eb:b1:b7:0c:09:
b3:88:f2:0e:89:76:5b:88:b7:91:a0:56:38:3b:14:
79:dc:f1:83:9d:5a:96:e0:ec:a6:f3:8b:aa:98:7a:
dc:96:1d:c3:3b:9e:3b:ee:ff:ed:e8:cd:09:95:3b:
9c:21:d0:4d:05:ca:0b:87:f8:a9:b5:41:f2:09:7f:
ad:1f:79:6a:74:33:3f:ab:61:ad:98:1e:63:6d:e6:
0f:a8:ed:58:62:04:fa:fa:93:f4:a0:8c:e1:08:f9:
50:d4:ec:e4:39:a1:8a:e7:f4:8f:ba:d7:f6:67:79:
b9:14:bc:53:3d:d7:28:fc:3b:23:3c:0a:d5:b4:ca:
5d:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:3C:98:9E:EB:FA:CD:28:63:00:1B:B9:18:FB:1C:99:21:22:32:29
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/B0F810D4EDB611EEAEC661A7775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.242.32.0/19
Signature Algorithm: sha256WithRSAEncryption
b5:40:0d:56:51:66:d5:7c:ee:90:2f:a1:59:b0:c9:fd:20:c1:
3a:8f:54:9f:01:3a:0d:9c:13:8b:46:2b:38:4b:8b:10:aa:42:
a9:b3:fe:e3:17:d8:00:18:ff:ff:61:06:80:61:90:73:e2:c2:
70:83:68:15:90:27:37:1b:a2:97:9c:97:c5:2f:ca:ca:20:68:
28:c5:6f:f5:e0:3f:40:2f:fb:6f:7b:f7:a0:bd:d0:b7:cc:44:
a9:9d:c8:02:c2:ec:80:1e:42:65:01:29:0c:1e:45:50:3d:1f:
ce:d0:c6:57:42:ee:db:96:52:12:28:3d:2c:33:06:75:a1:82:
6a:6d:35:f1:6d:56:33:ae:8a:09:b6:38:5b:28:bf:72:b1:3d:
4c:18:d8:fa:9f:d3:0b:48:7e:5e:6d:e5:2d:d9:f0:88:ad:f0:
2d:40:40:aa:cc:02:ba:04:42:f4:0e:30:e8:7e:4c:4c:1e:70:
77:bf:60:36:df:5e:e0:af:88:4c:e0:c9:7a:2b:ff:27:a2:da:
d8:fd:07:96:12:4f:e3:37:8a:7e:b2:3e:3b:c6:e6:40:10:03:
a3:c6:27:86:29:e8:75:74:7f:08:d5:17:b1:42:20:74:c4:99:
ae:14:94:51:45:e6:7d:c6:76:db:a2:17:88:9d:de:5e:4e:27:
c7:70:27:6e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 5 03:07:07 2024 by rpki-client on console-fra.rpki-client.org