Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/DAF937C8404011EFB17D5189762E951A.roa
File: DAF937C8404011EFB17D5189762E951A.roa (raw, json)
Hash identifier: f3yxE00o8+r48KZMmCEDCvaaCcW9rKvoRUn4S1u7jlE=
Subject key identifier: CD:D7:FE:A2:A7:C9:6C:8E:A4:FE:91:0B:F3:10:CB:2C:C5:19:43:B0
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 9BCD
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/DAF937C8404011EFB17D5189762E951A.roa
Signing time: Fri 12 Jul 2024 11:21:17 +0000
ROA not before: Fri 12 Jul 2024 11:21:13 +0000
ROA not after: Tue 13 Aug 2024 11:21:13 +0000
asID: 138915
IP address blocks: 156.244.34.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 39885 (0x9bcd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jul 12 11:21:13 2024 GMT
Not After : Aug 13 11:21:13 2024 GMT
Subject: CN=669111ad-a145
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:7e:ab:56:97:5e:3b:e0:ca:e5:d7:92:a9:97:
06:02:c0:2e:20:06:4c:b3:4b:11:75:9d:1b:2a:46:
d8:ae:c0:97:48:95:5d:8c:a3:ee:c3:51:86:a0:e1:
11:ab:8e:ca:e6:d2:48:d6:1b:4d:bb:58:b4:b9:cc:
b3:af:ac:5d:55:53:dd:3a:4e:35:d4:3b:66:70:95:
22:5f:29:51:f4:4d:ae:c8:d4:10:24:c8:db:4a:96:
95:3a:79:b6:e5:69:dc:59:73:68:00:22:d3:45:45:
ec:5e:7f:5b:34:5e:de:ef:cb:71:fd:c0:0c:76:37:
9b:4c:98:c0:f4:2a:9e:e4:b0:61:5e:99:05:cd:4b:
6f:1f:58:2c:be:65:ac:80:c9:c0:5b:83:15:02:ce:
5b:11:ea:b0:46:e8:90:19:7d:3f:10:70:2e:6c:ea:
0b:3b:4d:bc:b6:16:e1:fd:b8:c7:10:7c:da:bc:31:
83:d3:2d:7f:6c:7b:ea:18:ac:72:81:fc:37:ea:97:
27:03:28:dd:89:16:f7:7a:d2:ee:23:45:f6:2a:3a:
36:84:d0:3e:93:d3:20:82:f9:70:36:6e:a7:7e:3f:
95:70:53:f0:99:11:b5:5a:ad:1d:a9:c7:e6:dc:06:
86:eb:82:ad:1b:f1:f7:63:0b:24:c7:7d:ca:61:32:
8f:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:D7:FE:A2:A7:C9:6C:8E:A4:FE:91:0B:F3:10:CB:2C:C5:19:43:B0
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/DAF937C8404011EFB17D5189762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.244.34.0/24
Signature Algorithm: sha256WithRSAEncryption
8f:63:74:1c:d9:be:d1:5c:50:af:af:0b:8a:2a:37:24:da:b7:
28:2a:48:86:0a:e6:72:22:81:fe:80:c3:fc:24:85:55:05:e5:
b9:e7:ee:57:41:41:2f:1a:0b:1c:dd:e8:38:65:72:1d:52:f6:
bf:77:92:93:a0:06:2a:2f:15:f7:21:e4:81:56:d0:88:29:54:
a9:09:ba:f6:42:bf:38:9b:6d:44:f6:00:c9:68:b1:b5:f1:58:
74:f3:a6:af:5b:a8:59:b2:09:68:d9:40:97:6f:b0:aa:9d:d6:
16:5b:1f:d3:84:4b:e3:e3:62:f7:52:a7:d3:2b:19:c0:50:80:
57:cf:dd:92:c1:db:1a:da:13:7f:4d:c8:be:16:ae:52:62:ae:
14:68:36:22:97:18:c0:73:19:b5:84:de:86:b3:ca:ee:56:cd:
ed:ef:42:29:bc:64:d9:51:3b:d8:20:d4:a5:77:a2:02:91:e7:
24:1c:eb:54:c2:de:20:c1:17:99:ac:c8:43:95:b6:dc:70:17:
da:f1:53:03:72:ac:89:53:7b:1e:09:f5:99:31:d2:b9:1c:fb:
2b:5a:e7:f2:8d:ac:c2:75:d2:a1:63:6b:7c:5d:d2:4b:13:9c:
88:97:44:88:9e:d9:2a:2f:3a:12:ef:26:6d:b1:fe:cd:dd:3a:
bf:a4:0d:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 14 04:26:01 2024 by rpki-client on console-fra.rpki-client.org