Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/B9DAD22E48CC11EF801A2155762E951A.roa
File: B9DAD22E48CC11EF801A2155762E951A.roa (raw, json)
Hash identifier: 3m/8qdnv1mgbniRCv+j/FPAUfIAofVVXDgWTnOnh0bc=
Subject key identifier: 05:B8:83:35:B9:DB:B9:4F:1D:D0:09:1D:C0:AB:05:5A:56:2B:3E:95
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 9EA2
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/B9DAD22E48CC11EF801A2155762E951A.roa
Signing time: Tue 23 Jul 2024 08:22:40 +0000
ROA not before: Fri 26 Jul 2024 08:22:37 +0000
ROA not after: Fri 02 Aug 2024 08:22:37 +0000
asID: 44559
IP address blocks: 156.233.32.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 40610 (0x9ea2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jul 26 08:22:37 2024 GMT
Not After : Aug 2 08:22:37 2024 GMT
Subject: CN=669f6850-35df
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:9f:42:7c:6e:f5:6a:c0:f8:6b:65:fb:af:ad:
aa:0e:39:2c:b5:ec:20:9f:cb:2b:dd:93:86:b7:f0:
84:8d:be:28:b1:5d:ba:34:94:26:25:7e:8f:3b:83:
61:93:b8:81:eb:8a:38:81:fa:dd:ba:ea:cb:4e:65:
f8:88:cc:2e:d3:64:fc:5f:d5:74:6e:ea:2e:c2:ce:
63:64:ad:ab:b9:3d:49:99:6d:a8:11:da:13:fb:75:
6a:eb:91:63:e4:34:9e:cd:b2:d9:ba:e7:1c:80:0f:
db:17:91:2c:b6:b3:f9:b9:e0:db:82:8a:b8:0f:47:
05:42:da:48:0e:ba:49:e2:2d:ca:b5:53:93:e1:ff:
9e:ff:75:c2:74:ee:2e:c2:db:97:c0:d1:92:42:18:
dd:ce:cd:ba:97:38:31:c9:fc:9d:be:40:7f:7e:d4:
b2:93:88:49:33:d0:92:2c:bd:f2:de:36:46:fd:6b:
a1:17:dd:2c:2a:de:5b:a2:8f:c0:be:d4:4d:48:4f:
72:44:65:15:8c:85:e6:52:92:89:ea:71:87:1a:82:
de:40:04:65:1e:2e:30:64:61:77:f4:1e:6a:3f:54:
53:c4:09:f0:5c:25:75:8d:cc:b4:9d:c0:24:0f:bf:
04:0a:6a:c4:75:cc:20:20:87:e0:08:08:e8:db:d9:
34:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:B8:83:35:B9:DB:B9:4F:1D:D0:09:1D:C0:AB:05:5A:56:2B:3E:95
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/B9DAD22E48CC11EF801A2155762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.233.32.0/19
Signature Algorithm: sha256WithRSAEncryption
b9:cf:ff:b5:c6:65:94:ef:2f:be:cb:23:c5:45:50:98:06:c2:
f8:52:57:34:cd:d1:4e:52:cb:22:15:78:f8:2c:98:4a:eb:85:
78:be:14:e9:b9:37:f6:35:6f:51:2e:08:ef:1f:a7:19:ef:19:
d9:68:8b:c9:46:72:6b:56:b5:39:f5:07:7f:8b:8e:d4:e0:12:
54:c4:6a:fd:2d:1b:83:ab:23:fa:28:d2:f8:9d:30:4f:c9:cd:
dd:25:66:60:6d:12:c6:a6:95:1f:63:4a:77:19:d8:ba:27:a0:
63:8e:1f:c3:44:63:b5:20:5a:b3:06:1e:3a:4c:f6:19:1f:d0:
29:ac:d0:5c:49:a0:16:20:e7:c7:e4:12:04:aa:68:c0:f8:d9:
8a:c5:c4:89:aa:d4:e9:36:b0:cc:37:f0:b4:2f:f9:2e:f8:64:
fb:a0:40:cc:34:62:57:e1:f1:c6:84:94:e9:e5:24:49:d2:5f:
60:42:08:d8:b4:dd:e2:3d:4f:e1:f1:f4:6a:0b:ba:aa:84:4f:
02:81:b3:33:67:ae:60:1d:aa:7d:a7:e5:14:eb:75:69:42:3d:
85:67:b4:2c:32:1b:6c:c0:aa:f2:5f:7d:25:f3:a2:22:92:c4:
ad:e3:a9:ff:01:ad:8e:25:95:d7:a3:be:f3:96:01:ff:1d:b6:
42:13:9b:11
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Aug 2 12:40:39 2024 by rpki-client on console-ams.rpki-client.org