Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/DC646D8E47D511EF9DB5CF49762E951A.roa
File: DC646D8E47D511EF9DB5CF49762E951A.roa (raw, json)
Hash identifier: 3L5e3mTUjuDmORVQLfHeBdi96CTdiwreFVNizwKdXZc=
Subject key identifier: 38:BA:07:D8:4E:03:24:34:64:AA:E5:C2:4E:8C:B4:84:3D:F4:69:03
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 9DDF
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/DC646D8E47D511EF9DB5CF49762E951A.roa
Signing time: Mon 22 Jul 2024 02:55:32 +0000
ROA not before: Mon 22 Jul 2024 02:55:29 +0000
ROA not after: Fri 23 Aug 2024 02:55:29 +0000
asID: 44559
IP address blocks: 156.246.239.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 40415 (0x9ddf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jul 22 02:55:29 2024 GMT
Not After : Aug 23 02:55:29 2024 GMT
Subject: CN=669dca24-a947
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:01:e2:a3:48:aa:53:28:f3:15:78:86:aa:b8:
f7:86:3e:cc:87:8d:08:d6:59:e9:68:cc:76:a4:ce:
38:23:b9:42:cb:f4:b0:4a:2e:fb:ec:31:37:66:70:
8b:ad:34:b2:c1:7b:e1:a5:cd:13:66:e0:6e:27:6d:
ab:8f:5a:7f:81:0e:ce:4e:67:74:2f:eb:1c:56:7e:
20:9b:fd:ac:c0:54:e9:64:ec:53:c6:3b:0e:51:e3:
c7:cb:ca:9b:a4:9c:02:84:3f:4d:c1:03:f3:13:14:
d7:3b:35:f7:ca:59:ef:0b:85:65:15:6b:42:19:2b:
e5:f9:a1:89:c9:31:3e:19:67:b9:49:a9:f6:8b:c7:
dd:fa:1b:ef:2b:96:70:1b:5c:b7:96:e9:a3:f7:29:
71:6b:bb:8c:15:04:13:31:bb:1f:dd:40:18:0d:ae:
62:04:a2:2a:39:f4:fc:61:45:89:01:15:99:c2:a2:
2e:3b:98:33:87:da:eb:f5:d0:f9:8e:37:8d:19:23:
2b:2c:b7:2b:5f:9d:a4:9f:33:46:bb:78:3b:d2:8a:
03:0f:e7:94:d7:6e:59:ce:bd:6a:ed:9e:ec:91:5c:
3f:5f:e3:1b:6e:05:8e:2d:5d:ec:27:f8:03:47:3f:
bd:fa:fe:9f:c7:98:b5:f7:6d:8f:f6:e4:9e:88:fe:
9a:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:BA:07:D8:4E:03:24:34:64:AA:E5:C2:4E:8C:B4:84:3D:F4:69:03
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/DC646D8E47D511EF9DB5CF49762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.246.239.0/24
Signature Algorithm: sha256WithRSAEncryption
75:60:32:98:c7:4f:7c:96:46:6c:86:f7:dd:33:40:03:93:ae:
ea:b2:21:be:8b:ce:bd:9d:8b:78:15:8b:51:70:bb:75:c2:f2:
f9:9a:69:80:b5:45:92:9e:d5:a0:0c:72:51:1d:0b:89:73:bf:
8a:d2:b9:83:52:c4:ea:9f:67:2a:8f:6f:ea:b4:b1:d7:2c:0c:
fb:d8:f2:c4:c5:c7:02:d4:55:dc:ba:21:eb:59:d1:91:8a:dc:
12:d1:e4:39:b1:d4:08:f4:a1:ed:be:19:ac:b6:98:54:2d:4d:
af:2d:4a:0e:64:51:eb:7c:b4:be:85:b4:af:a0:e9:b5:c1:47:
1e:96:ad:a9:2a:3c:de:f3:45:d4:ec:d7:3f:f4:e3:1b:95:f4:
30:2b:ec:7f:1c:26:84:de:f3:b1:46:d3:1e:59:15:a2:ad:d4:
e1:90:ab:3f:52:6c:e1:d7:ed:e0:c5:07:64:22:1e:d3:0f:53:
7c:e2:23:86:18:f8:ed:9e:b1:a8:08:fb:31:8a:b5:46:05:64:
c1:5b:b7:13:fd:35:92:f2:1b:b4:1b:4d:4f:e1:17:3d:56:94:
3f:90:41:ce:cd:97:cb:3a:c1:c3:68:16:ba:f1:c2:e9:d9:9f:
d7:5e:42:f3:e6:16:77:81:dc:31:fe:97:4c:13:50:bc:12:af:
0e:03:57:2e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Aug 23 12:55:03 2024 by rpki-client on console-ams.rpki-client.org