Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/DAE1A91C441111EF8B6654AE762E951A.roa
File: DAE1A91C441111EF8B6654AE762E951A.roa (raw, json)
Hash identifier: gwwImxhhbXRamrIgcSf4Aikfm/lUYNjYCLM/0p0g8rE=
Subject key identifier: F6:4E:07:95:EF:B3:CF:2E:C5:85:10:EC:FD:D0:AA:D8:F2:FE:83:3A
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 9D08
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/DAE1A91C441111EF8B6654AE762E951A.roa
Signing time: Wed 17 Jul 2024 07:54:55 +0000
ROA not before: Wed 17 Jul 2024 07:54:51 +0000
ROA not after: Sat 27 Jul 2024 07:54:51 +0000
asID: 22773
IP address blocks: 156.236.0.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 40200 (0x9d08)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jul 17 07:54:51 2024 GMT
Not After : Jul 27 07:54:51 2024 GMT
Subject: CN=669778cf-b610
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:a2:48:0c:3d:7b:1d:7e:ef:63:a2:8e:87:df:
0a:07:41:68:68:c8:d1:2a:85:3c:b1:73:90:bd:bd:
8c:ab:1b:77:ba:9a:a9:17:7b:a9:33:93:33:ed:df:
c2:f0:c2:60:15:1b:68:a5:65:0a:ad:59:31:ce:f4:
56:5b:03:5c:f5:5a:f9:00:95:87:a2:f9:d8:f3:b6:
a3:f6:c2:f0:c3:4d:66:2f:e9:54:e4:b7:cf:60:31:
3a:6a:67:c6:88:95:47:f8:d9:b3:7d:ce:b2:cc:53:
ed:13:fb:93:c8:f4:43:cb:70:79:77:e2:e5:cf:19:
13:6e:52:eb:34:7a:3d:3c:30:68:3c:b5:94:5b:d4:
78:00:4b:67:98:1f:95:f0:1d:76:b4:b3:ad:62:4c:
1c:c6:d3:96:5b:1e:a1:70:87:42:db:d2:ec:d5:21:
fd:fc:2e:42:1b:ab:92:f6:e2:e1:2b:8f:ea:35:5b:
5b:b3:02:11:23:27:26:ab:57:86:c2:7f:ad:cb:fe:
70:dd:a2:55:7f:1a:06:e5:7b:3a:84:99:6e:9b:cb:
27:0f:4b:67:6c:68:52:0d:ab:65:b2:93:a4:bd:c0:
05:61:9e:72:b8:74:a2:db:73:85:41:d9:d9:e2:da:
2c:c1:fb:75:65:b4:6e:f5:26:51:33:6a:2e:e8:18:
47:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:4E:07:95:EF:B3:CF:2E:C5:85:10:EC:FD:D0:AA:D8:F2:FE:83:3A
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/DAE1A91C441111EF8B6654AE762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.236.0.0/23
Signature Algorithm: sha256WithRSAEncryption
81:d0:1c:1b:bc:97:fc:3d:d5:ee:d9:59:df:a4:3d:ef:12:a7:
4e:1c:7e:13:0b:05:95:20:36:dc:bb:a8:48:a7:64:a7:62:02:
ea:f6:d6:ac:24:2d:ed:fe:c9:67:ba:a2:37:d6:c2:8e:0f:c9:
6c:6f:d9:ee:48:ee:96:86:f4:65:ee:fc:5e:85:0d:8d:06:7c:
01:80:7e:c2:c2:60:4f:94:02:85:59:08:e0:01:a7:9d:e3:0d:
21:79:9e:2d:fa:e1:c7:20:5f:7e:b7:8f:63:ce:7c:25:d9:9a:
b4:bf:3c:52:6f:37:19:05:2c:b0:9d:e6:7f:5d:b1:d2:31:89:
0f:4d:e2:f3:8e:11:ac:8f:1f:82:39:1e:07:16:b1:74:89:9c:
76:b1:89:6c:20:5f:75:9e:d5:60:2c:8d:c4:dd:e3:11:06:08:
00:d4:bb:f7:8c:80:7e:d0:a1:0e:6a:59:12:58:06:98:17:53:
e5:be:94:fb:cc:2d:58:0a:7b:34:92:b7:19:b7:ff:02:65:42:
61:d7:96:83:57:82:82:3c:71:75:23:21:32:9e:fe:f6:9a:94:
05:b5:66:64:d3:8f:f7:eb:f7:58:36:2e:4e:7a:67:65:30:5e:
23:aa:00:2a:58:57:be:c8:61:23:10:a0:0d:1e:25:3a:37:2e:
7e:79:b8:2e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 28 03:03:27 2024 by rpki-client on console-ams.rpki-client.org