Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/DF811CA43A9411EF8C11F8AB762E951A.roa
File: DF811CA43A9411EF8C11F8AB762E951A.roa (raw, json)
Hash identifier: F9J7lneBbGoUXxD09zSowTr6U30eQexKQnUvQ5rnrFQ=
Subject key identifier: 79:51:26:90:12:9D:FB:D4:DE:C0:48:79:9C:A3:B9:DE:F8:3C:99:E7
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 98A3
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/DF811CA43A9411EF8C11F8AB762E951A.roa
Signing time: Fri 05 Jul 2024 06:07:35 +0000
ROA not before: Fri 05 Jul 2024 06:07:32 +0000
ROA not after: Thu 01 Aug 2024 06:07:32 +0000
asID: 39600
IP address blocks: 156.232.80.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 39075 (0x98a3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jul 5 06:07:32 2024 GMT
Not After : Aug 1 06:07:32 2024 GMT
Subject: CN=66878da7-6688
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:39:21:a6:c5:8b:93:77:5c:0a:a4:d7:8a:53:
48:17:39:25:5a:15:55:6b:db:1a:18:74:d3:08:26:
08:43:34:1f:c8:bd:fd:be:b1:36:32:8d:c8:df:90:
7e:49:ac:35:56:10:4e:d4:90:67:4a:e3:aa:79:c8:
da:ee:87:d4:b3:f7:8b:97:7e:8d:aa:5f:a1:a3:85:
18:97:1c:e7:35:8c:eb:62:13:1a:42:11:75:c7:31:
ba:67:54:ee:bb:75:07:8c:55:2a:b9:32:b0:06:f1:
b9:1d:86:f3:24:ee:ce:36:0d:ee:db:17:17:b4:fc:
97:fb:5f:c5:97:13:2e:a3:dd:55:38:21:20:ef:21:
0b:42:50:7f:1c:ec:cd:b9:5a:90:e5:55:46:17:a6:
7c:61:7c:a1:b4:1e:05:66:ee:3c:bc:b1:1a:5b:55:
f0:26:96:5c:4d:21:07:07:c6:43:5a:36:66:35:99:
72:a7:00:b2:59:7c:51:48:75:26:5f:f8:58:c0:ec:
a0:20:ea:03:eb:c3:c6:32:7c:24:80:90:cb:80:53:
f5:88:e3:26:a0:a5:21:70:6f:d6:53:30:d9:6f:46:
88:45:1e:82:69:b3:9e:32:0e:e7:96:91:4d:79:cb:
95:40:22:a9:cc:55:83:64:dd:62:9f:f3:1a:3d:31:
c7:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:51:26:90:12:9D:FB:D4:DE:C0:48:79:9C:A3:B9:DE:F8:3C:99:E7
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/DF811CA43A9411EF8C11F8AB762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.232.80.0/21
Signature Algorithm: sha256WithRSAEncryption
ad:85:73:21:9d:f1:29:ff:23:e7:94:d4:0b:4f:10:36:ec:23:
f3:fe:cd:4f:e3:0b:a7:97:6b:74:25:8a:24:33:4d:b7:38:c4:
00:2f:7e:ed:5c:a1:13:ef:1b:7c:8c:70:4b:e1:05:f3:70:db:
77:68:88:0c:e8:af:fc:2a:72:b4:59:bd:06:de:0b:6b:60:86:
33:86:4e:80:52:66:5d:e9:80:4d:1a:4d:61:bf:20:19:ba:3c:
8b:dd:2f:cd:34:88:16:46:54:7f:1c:66:6e:6e:2c:98:ee:cd:
bb:70:7c:26:96:23:cf:09:09:7d:17:f8:65:24:de:9d:1a:2f:
98:0f:02:53:4e:e0:de:88:32:b5:e3:76:2b:0a:aa:6c:d3:78:
b1:f4:fc:7a:ce:7f:75:ee:77:94:91:7b:75:e0:ac:e9:0d:30:
1f:8f:a6:1c:e2:75:ef:c2:19:5d:51:69:81:ce:03:7a:dc:d9:
d2:3b:f3:52:cb:26:c7:d1:c7:a2:4f:69:e7:cc:3f:6d:cc:25:
39:4f:b9:d0:be:ae:70:b7:a6:86:34:aa:cc:f5:b3:6b:4c:02:
4a:13:33:ce:17:f2:7a:39:0c:4b:d2:af:67:8d:a1:8d:c8:31:
d7:2c:ce:a3:01:9f:65:92:f2:d6:d5:e2:34:84:48:38:8c:3b:
8a:c5:f5:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Aug 1 10:33:29 2024 by rpki-client on console-ams.rpki-client.org