Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/E0BB22B4038911EFB5C1BB3C017001B1.roa
File: E0BB22B4038911EFB5C1BB3C017001B1.roa (raw, json)
Hash identifier: mx4IERTK11RtWGso1QRM/SO869EtkkYcIzF4hmczSRk=
Subject key identifier: B5:8A:4D:78:82:5A:E8:43:9C:EF:61:2C:65:06:3C:A0:43:B0:5E:08
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 85C0
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/E0BB22B4038911EFB5C1BB3C017001B1.roa
Signing time: Fri 26 Apr 2024 05:00:19 +0000
ROA not before: Fri 26 Apr 2024 05:00:15 +0000
ROA not after: Sun 05 May 2024 05:00:15 +0000
asID: 141883
IP address blocks: 156.240.48.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 34240 (0x85c0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Apr 26 05:00:15 2024 GMT
Not After : May 5 05:00:15 2024 GMT
Subject: CN=662b34e3-6b72
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:80:3d:f5:d0:b8:b1:bd:21:95:6d:e7:31:29:
24:c8:18:8c:4a:bf:80:13:24:17:3e:4b:d7:84:8b:
3a:be:37:2e:86:83:37:ae:db:ae:45:e3:38:20:22:
63:f7:27:56:8b:b5:f0:d7:7a:96:e1:75:04:5f:94:
ef:a3:f9:23:3c:ad:5f:f9:a7:96:bd:fa:c1:77:25:
43:6d:54:cc:cd:f8:fa:63:a6:c1:eb:fe:08:e7:ae:
f3:06:b0:df:08:e3:26:9a:62:27:29:5a:b3:49:c5:
a4:bf:64:54:c9:59:25:86:97:5d:c4:e4:5b:ba:e4:
98:e3:f8:0d:0f:d7:4d:d9:ea:a1:f2:ca:55:30:31:
ca:a0:48:c2:be:ad:2a:97:a4:0f:38:af:75:ef:52:
51:47:b0:7f:dd:38:00:14:82:bc:74:ec:13:fc:a9:
01:40:7f:5b:67:04:4d:60:17:f7:b9:d7:5e:79:67:
5d:a8:d9:96:84:2b:60:b6:4d:da:f4:3a:c6:18:f0:
ee:b9:0f:db:ed:91:4f:96:6c:a6:26:ac:bb:df:9e:
61:63:ba:50:8d:3b:46:27:ef:fe:3e:a8:be:b3:03:
db:e8:e1:ba:44:ce:64:b0:24:9f:23:ad:d1:a0:de:
35:40:66:c5:b6:e0:50:6c:75:bd:3a:4b:39:18:bd:
ea:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:8A:4D:78:82:5A:E8:43:9C:EF:61:2C:65:06:3C:A0:43:B0:5E:08
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/E0BB22B4038911EFB5C1BB3C017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.240.48.0/21
Signature Algorithm: sha256WithRSAEncryption
7e:82:c8:8f:10:99:81:6f:69:35:a4:33:43:1a:a6:c8:b0:d9:
cf:07:67:c7:90:0e:ae:35:e8:a8:21:6f:8f:a6:0e:92:d0:66:
09:27:94:fd:cf:15:42:10:17:2a:43:bf:8d:74:8b:44:00:cc:
38:dc:e8:5c:52:d8:d1:ca:c4:19:41:fa:18:2d:d3:1e:93:0d:
68:84:29:6c:65:e5:a9:3c:3c:ba:12:53:c2:f9:8d:e4:40:5d:
62:76:0d:69:ed:f7:a8:57:c8:bf:0f:b3:18:d4:23:7f:cc:34:
78:6f:b4:27:a3:57:7c:a3:9b:51:93:c1:48:c2:8c:81:f7:6e:
5c:02:dd:37:09:fd:90:36:30:04:09:50:43:f8:6c:1a:07:84:
a1:72:4f:79:3a:f6:fb:4a:1f:41:75:70:2e:bf:ac:c9:14:6b:
be:de:b9:71:7c:a0:8d:d5:af:37:9c:43:f0:84:6c:79:cc:97:
d8:fe:53:ac:74:b6:18:f9:ea:45:0a:1e:c9:33:d0:9a:83:55:
a6:4c:f3:1d:b7:05:d5:15:09:35:a4:6b:d0:20:7e:fc:07:d1:
ff:b0:fe:0f:21:8c:2d:19:e3:20:cd:06:73:1f:72:3d:70:91:
ae:37:cd:bc:fc:59:b7:d0:d4:e1:fe:c1:12:2a:41:42:57:cc:
14:4c:63:c6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 6 02:18:25 2024 by rpki-client on console-ams.rpki-client.org