Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/B95E75AE02DA11EF99A6262A017001B1.roa
File: B95E75AE02DA11EF99A6262A017001B1.roa (raw, json)
Hash identifier: t8DpC4vyg2lirDXE+pNnKQtsiJTKrUi46sbVafKM3sk=
Subject key identifier: 68:A6:6D:5B:E8:FE:68:24:C8:40:AB:28:AF:09:C1:87:D9:9A:20:0E
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 84EF
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/B95E75AE02DA11EF99A6262A017001B1.roa
Signing time: Thu 25 Apr 2024 08:06:31 +0000
ROA not before: Thu 25 Apr 2024 08:06:27 +0000
ROA not after: Sat 04 May 2024 08:06:27 +0000
asID: 63888
IP address blocks: 156.255.96.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 34031 (0x84ef)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Apr 25 08:06:27 2024 GMT
Not After : May 4 08:06:27 2024 GMT
Subject: CN=662a0f07-59e9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:b0:b6:fa:63:f1:19:78:aa:b4:5c:b8:1d:1f:
63:2b:14:18:6d:6f:6d:b5:97:79:8d:7e:9f:8a:df:
47:df:d6:86:6e:41:9f:17:6f:67:c3:2f:e1:61:0b:
21:5e:0b:c2:ce:4d:f2:a0:0a:2c:bf:2c:13:6b:ed:
a5:95:63:b3:a0:8a:ee:59:2c:45:3e:50:ec:8e:9f:
7b:06:25:85:70:f5:89:8d:4f:9d:4b:c4:56:0f:2f:
0d:d4:aa:6c:06:29:99:f7:ce:34:e8:44:7e:c5:88:
f3:af:45:96:ad:85:8a:5c:68:ba:bd:3c:ff:cc:9a:
95:6c:2f:90:8d:16:9d:be:4f:8f:6a:0f:15:4c:38:
a7:50:33:ab:b0:5e:48:7c:97:1c:5d:d7:8e:57:d0:
eb:7a:67:a2:7b:2f:26:86:ea:4e:94:b6:d0:99:9d:
d3:93:77:fd:d5:b1:ac:71:83:4a:5c:3c:2e:67:79:
92:b6:9d:f6:73:d4:9f:dd:aa:33:4e:dc:e6:9b:ac:
d3:b8:03:b9:57:f0:da:17:3f:da:6a:5d:b4:5c:ad:
d0:ac:89:df:31:41:4c:ea:9c:ee:6c:f9:a6:8e:6c:
46:11:e9:61:5f:da:a1:17:76:e3:c5:95:e4:01:ce:
6e:95:0a:f5:24:0d:17:01:4b:ed:89:66:36:fc:b0:
40:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:A6:6D:5B:E8:FE:68:24:C8:40:AB:28:AF:09:C1:87:D9:9A:20:0E
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/B95E75AE02DA11EF99A6262A017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.255.96.0/24
Signature Algorithm: sha256WithRSAEncryption
09:eb:a2:c5:20:7e:6b:05:d6:56:9f:32:92:60:85:9b:9d:dc:
0c:12:fb:93:6e:d8:e2:47:ab:7c:09:6a:a4:88:8c:52:96:2f:
64:80:cd:5f:22:93:24:b7:18:14:b9:18:80:8a:76:b0:51:e9:
4f:8e:9b:e1:d1:ef:c0:8a:43:fe:bb:eb:15:29:bd:5f:b0:02:
c7:6e:4a:85:b6:07:8b:1a:68:fa:ab:8c:e4:0d:86:62:b8:5a:
00:66:76:f8:7b:09:69:6f:9f:90:aa:22:7e:45:b5:1e:c5:31:
9b:03:c7:c0:18:e3:7c:72:34:18:c7:c7:09:8b:91:fa:9b:c8:
76:9e:c5:46:8f:11:f7:c3:71:70:9f:05:e6:0a:65:ad:4b:aa:
cf:d5:9a:e4:00:a9:dc:73:40:7d:f5:19:54:77:19:53:b2:94:
56:4a:de:06:5e:ad:47:d4:36:d1:e9:d9:35:14:03:05:1c:85:
67:72:8b:3f:a5:c2:ba:56:9f:be:3a:6d:21:7d:02:ab:c6:25:
41:81:7b:97:4b:48:1b:91:e1:16:bc:69:27:a3:a1:4f:ef:5e:
3b:22:b6:65:3c:57:fe:6e:b8:29:3a:f5:12:d0:c0:4e:50:aa:
6c:e2:a3:64:97:d1:19:a6:78:98:ee:29:6a:b2:4e:67:bf:40:
a9:ad:81:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 5 02:31:43 2024 by rpki-client on console-ams.rpki-client.org