Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/D4C8C41A018711EF8545F457017001B1.roa
File: D4C8C41A018711EF8545F457017001B1.roa (raw, json)
Hash identifier: f9vWDNOW6wBgDXsQZkYXsHhKD29zKbDvsXx1qrsfqFQ=
Subject key identifier: 6C:69:CB:FF:FC:AE:E7:5E:19:50:C0:3F:EE:30:5E:12:48:D0:11:F6
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 848D
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/D4C8C41A018711EF8545F457017001B1.roa
Signing time: Tue 23 Apr 2024 15:40:37 +0000
ROA not before: Tue 23 Apr 2024 15:40:34 +0000
ROA not after: Thu 02 May 2024 15:40:34 +0000
asID: 54467
IP address blocks: 156.239.0.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 33933 (0x848d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Apr 23 15:40:34 2024 GMT
Not After : May 2 15:40:34 2024 GMT
Subject: CN=6627d675-628b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:0b:83:e5:e0:b2:44:01:3b:c3:19:96:09:70:
fb:c1:82:41:d3:d8:6c:04:d8:43:4b:73:cc:78:b1:
6e:b4:92:7c:dc:d2:22:be:e4:e2:52:69:db:40:9f:
4d:a9:b7:dc:47:e9:6a:56:dd:71:80:49:9a:fe:b7:
d5:6f:20:e0:94:cc:9e:ba:b5:14:5d:a1:bd:65:e0:
25:2d:0a:5b:aa:79:4c:9e:06:c0:ce:4a:6f:22:cd:
3a:93:8f:e6:3f:08:5a:64:83:35:aa:7e:30:33:7a:
9d:f8:d5:cd:23:0e:57:58:e2:e9:f0:ac:1c:5a:a0:
75:75:e6:22:80:d7:81:2b:3f:04:c1:52:e9:5e:b8:
8e:34:86:6d:4a:54:ef:ee:ee:30:ca:ab:5e:5a:8f:
1d:6c:96:b8:0f:15:ae:17:f2:09:2b:ef:83:c6:af:
9d:1e:3b:1e:89:40:14:ec:e8:0c:58:8d:20:89:68:
52:6e:08:c2:e7:00:81:05:ef:8c:04:6e:66:cd:10:
dd:2f:39:a7:b5:98:37:a9:94:d4:55:32:e2:b2:0d:
ed:4e:62:d7:51:f6:f8:e6:2b:ff:49:cb:1a:c1:9c:
32:68:68:26:21:74:4a:ed:cb:9c:5f:6b:d1:50:da:
ed:81:3d:57:fb:08:ce:09:2a:d0:90:08:ed:2f:6b:
e0:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:69:CB:FF:FC:AE:E7:5E:19:50:C0:3F:EE:30:5E:12:48:D0:11:F6
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/D4C8C41A018711EF8545F457017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.239.0.0/20
Signature Algorithm: sha256WithRSAEncryption
6b:f2:72:1e:51:9b:d6:b0:03:6c:1c:ea:a2:26:7b:a3:35:8f:
e6:44:cf:ed:de:ca:9e:05:77:69:20:f7:df:42:96:7b:fe:2b:
ac:dc:72:5a:31:10:a0:a7:da:21:6b:18:06:27:7f:92:4e:31:
e5:fe:b1:74:38:2d:b5:c5:f2:67:94:18:71:93:37:3c:21:ea:
f9:0e:53:9c:1d:81:8a:6d:38:ac:62:c7:29:0d:01:bb:af:80:
4b:6a:7d:82:99:ec:54:40:68:3d:af:d4:b2:2a:6b:9f:52:63:
41:c2:fb:fa:24:ce:23:f7:f9:ec:9d:ba:88:55:b0:85:70:59:
c7:77:bf:7c:e0:a9:b4:70:ac:55:ba:c3:4a:ac:77:7f:20:9c:
30:7d:84:e2:e5:37:a4:99:f6:80:74:99:9e:71:0c:35:17:39:
dc:5d:91:35:eb:6a:de:da:1e:ba:4a:0a:e1:83:5c:aa:bc:6b:
20:f1:ea:13:0f:5d:cf:84:24:9c:a0:6b:ce:96:33:4e:11:f4:
73:40:bc:04:43:46:0c:57:57:a1:06:cb:94:de:89:84:1c:79:
cf:14:72:fa:c5:72:a7:2c:b7:61:c0:9e:2b:9c:6d:f5:d2:6c:
b5:ad:5a:55:d7:20:db:75:69:aa:b0:09:4f:71:a8:60:7e:2c:
9d:38:b4:8f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 03:52:32 2024 by rpki-client on console-fra.rpki-client.org