Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/D9709CFC48C911EF841C1D42762E951A.roa
File: D9709CFC48C911EF841C1D42762E951A.roa (raw, json)
Hash identifier: V9D66ufqHJU3N9Or2Aa2auiPGF3/kVSqz/+QhEm0koQ=
Subject key identifier: DF:D2:EE:C4:3D:39:B5:81:47:77:DE:0A:00:BA:AD:EA:5A:56:43:6A
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 9E90
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/D9709CFC48C911EF841C1D42762E951A.roa
Signing time: Tue 23 Jul 2024 08:02:05 +0000
ROA not before: Fri 26 Jul 2024 08:02:01 +0000
ROA not after: Fri 23 Aug 2024 08:02:01 +0000
asID: 202656
IP address blocks: 156.246.161.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 40592 (0x9e90)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jul 26 08:02:01 2024 GMT
Not After : Aug 23 08:02:01 2024 GMT
Subject: CN=669f637c-5090
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:f6:ad:7a:23:d8:a3:b2:ea:17:64:12:e5:3b:
cb:30:7f:0a:6a:af:83:b7:8a:10:b9:0b:54:d4:b5:
6a:b5:16:36:b1:68:08:cb:26:d4:cb:de:db:28:80:
c0:64:49:8d:dc:f2:0f:bd:32:2b:68:4f:1e:3c:02:
30:d0:e5:77:28:28:80:42:dd:33:30:3b:e7:b6:98:
95:aa:19:4f:05:fe:5b:a8:43:a2:58:4d:82:c3:e9:
88:67:cf:ec:09:24:f4:d3:2f:9c:90:be:3e:e0:c1:
a2:8e:81:8d:26:57:bf:ee:09:1f:9b:85:c3:e7:78:
6c:c7:6f:b0:35:ce:a1:b0:ee:a4:1e:e4:dc:94:c6:
e3:98:59:3a:cc:28:90:bd:36:89:42:f5:d6:ce:08:
40:58:aa:40:fd:6d:2f:18:e6:12:ef:05:78:61:bd:
9e:24:ee:fd:46:ce:d4:1c:25:ac:37:47:5a:e1:5e:
2d:16:58:e6:bf:9f:e9:fb:26:d8:e9:a0:3d:64:90:
85:f3:4e:b3:1c:6d:d8:f0:5a:2a:46:8d:16:dc:38:
c5:78:bc:a8:81:1b:af:97:ba:83:3a:86:47:f9:b5:
a8:0a:fa:06:7d:59:77:83:34:1b:7d:37:00:4f:1c:
bc:3b:60:ba:f0:12:0c:db:7b:e2:13:39:a3:ea:dc:
e8:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:D2:EE:C4:3D:39:B5:81:47:77:DE:0A:00:BA:AD:EA:5A:56:43:6A
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/D9709CFC48C911EF841C1D42762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.246.161.0/24
Signature Algorithm: sha256WithRSAEncryption
b1:0b:ae:aa:00:28:df:58:5b:ab:87:3e:4a:6e:93:06:1a:f9:
e2:bd:8d:d0:0d:b5:86:bb:c7:eb:d7:fb:3e:83:b2:96:fd:9e:
3f:0d:75:d5:c0:43:d2:f7:79:1a:76:c6:57:92:48:92:ca:94:
9e:d7:c9:be:b7:bd:fc:5b:bb:52:a2:f1:43:57:f1:7f:5f:cf:
ea:2c:27:14:0c:57:27:ff:e7:81:32:44:b9:9f:3c:63:3a:4e:
64:34:16:34:0f:6a:89:1f:5f:d6:91:7c:c8:cc:d5:a7:46:93:
f2:5f:8c:34:3a:5f:03:6f:0f:0d:41:19:54:91:b8:26:50:87:
9d:92:d8:9b:4f:3a:23:5f:b8:c1:61:c5:8d:c6:5f:8b:0c:3a:
6e:33:59:4a:be:01:34:39:e1:00:f7:32:11:4d:47:f7:31:81:
38:2d:54:77:cc:d5:0d:1d:c5:95:fa:6b:08:22:a5:25:e5:11:
15:fd:0a:73:f2:44:08:11:1f:90:a2:61:3c:20:aa:e6:59:47:
9a:9b:22:16:7b:43:cb:d8:a0:50:b9:78:95:a2:a2:bd:b5:83:
51:6d:dd:77:28:e9:58:1f:e2:8e:f2:a1:e6:c4:52:5a:70:cc:
73:65:0d:a4:62:2b:14:5f:2f:ee:38:92:e4:f7:1c:42:47:03:
dd:02:69:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Aug 23 12:55:03 2024 by rpki-client on console-ams.rpki-client.org