Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/D654A6B04A6F11EFBF8B3F76762E951A.roa
File: D654A6B04A6F11EFBF8B3F76762E951A.roa (raw, json)
Hash identifier: UVM3aT4UjB9By0Ly81Zx8WoHaOJuQSSo3Ztk/eKbsgM=
Subject key identifier: 62:58:6B:F4:14:24:5C:83:0A:B7:3E:CC:5F:BF:E3:CF:58:5A:3D:D3
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: A033
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/D654A6B04A6F11EFBF8B3F76762E951A.roa
Signing time: Thu 25 Jul 2024 10:22:47 +0000
ROA not before: Thu 25 Jul 2024 10:22:44 +0000
ROA not after: Sat 03 Aug 2024 10:22:44 +0000
asID: 5065
IP address blocks: 156.246.98.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 41011 (0xa033)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jul 25 10:22:44 2024 GMT
Not After : Aug 3 10:22:44 2024 GMT
Subject: CN=66a22777-92e8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:e8:fa:0b:83:a3:a7:f9:14:bb:48:66:f3:3c:
f2:2c:36:29:da:5e:c9:1f:aa:64:8f:74:32:25:a3:
ca:5f:6c:1c:12:5a:16:b2:9b:4c:7e:00:fd:e4:cb:
e6:67:93:2f:66:61:4a:aa:10:b9:74:82:74:d7:18:
24:f3:67:f7:f9:50:79:d0:84:93:87:9e:30:5c:8e:
77:1d:f4:15:4a:13:22:42:06:3e:a5:0e:11:b1:c9:
16:7c:86:a4:ed:a6:a7:dc:b8:d5:11:43:bf:62:03:
b9:cf:26:bf:8e:d8:86:62:5f:68:63:6f:b2:15:36:
e8:cf:e7:1f:5b:9a:67:f9:d0:94:9c:0d:fc:1c:4f:
d5:65:74:d2:60:b1:9d:22:7c:cb:a0:ed:f7:94:84:
eb:52:92:a3:1a:9a:98:40:24:8a:07:ec:0f:6c:d9:
87:af:62:05:73:86:e6:be:f0:e7:10:30:7f:08:a2:
c9:58:c7:ac:d9:8d:65:93:cf:5d:36:3a:5e:c9:88:
4a:88:f5:f1:5a:06:e1:66:c6:58:e7:7a:00:0c:c2:
9c:1e:a1:8c:c3:d5:d1:3b:fb:7e:bc:d9:85:f4:7a:
eb:c0:65:43:be:14:df:fe:9c:36:22:2a:4b:69:64:
a5:51:5d:12:d5:09:25:6c:1e:9e:a6:22:46:69:63:
68:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:58:6B:F4:14:24:5C:83:0A:B7:3E:CC:5F:BF:E3:CF:58:5A:3D:D3
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/D654A6B04A6F11EFBF8B3F76762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.246.98.0/24
Signature Algorithm: sha256WithRSAEncryption
50:c8:89:34:84:07:82:ac:8a:27:e2:03:2a:27:45:a8:62:b8:
bc:5a:52:28:50:c0:b8:20:c8:d1:f3:a2:02:f4:54:fb:a5:f4:
38:d4:35:6a:fa:27:07:2d:79:0e:bf:27:ff:10:48:3c:3a:71:
c6:22:34:16:f7:73:37:f7:a9:a4:fd:ad:13:08:2b:2c:4e:26:
dc:22:9c:fb:2d:10:f8:b3:c9:97:45:95:21:86:61:6e:9a:9d:
bf:6d:4a:c5:9e:b1:06:65:d5:02:67:f8:2d:47:89:95:89:eb:
99:15:5d:d0:fa:0d:cc:db:6d:f3:30:70:77:0e:60:b4:90:b6:
0b:92:30:7e:d3:d3:a5:78:c1:67:b4:9b:45:60:74:d7:9e:0e:
03:ef:8d:87:3f:ef:7b:b3:ba:98:b6:4e:a0:3a:ec:75:e7:c8:
9f:c4:c8:11:5e:7d:13:77:69:19:61:0f:51:ab:17:c6:b6:f9:
c5:2e:28:68:2d:21:44:71:4a:83:63:a3:c0:80:ee:43:47:f6:
44:12:fa:03:c3:4e:91:ef:8c:40:fb:7d:a6:0d:e0:5a:28:51:
f4:b4:dd:3e:4b:ca:06:15:26:56:4e:08:cc:5e:11:75:96:40:
32:c1:9b:dc:1c:bd:f4:fd:52:41:fe:2d:14:b6:8e:80:b9:10:
53:42:a6:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Aug 4 03:07:52 2024 by rpki-client on console-ams.rpki-client.org