Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/E3ECD5F64A6811EF97EDF749762E951A.roa
File: E3ECD5F64A6811EF97EDF749762E951A.roa (raw, json)
Hash identifier: ELO7edI66LYmBoJEb76Khhlykl19psvjyEuGslh30Vk=
Subject key identifier: 1A:AE:D7:FE:5C:93:37:6D:D1:D6:1C:95:E3:88:3C:95:68:D4:16:7C
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: A011
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/E3ECD5F64A6811EF97EDF749762E951A.roa
Signing time: Thu 25 Jul 2024 09:33:03 +0000
ROA not before: Thu 25 Jul 2024 09:33:00 +0000
ROA not after: Sat 03 Aug 2024 09:33:00 +0000
asID: 5065
IP address blocks: 156.233.21.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 40977 (0xa011)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jul 25 09:33:00 2024 GMT
Not After : Aug 3 09:33:00 2024 GMT
Subject: CN=66a21bcf-9fbe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:9c:33:4e:b7:09:97:f2:02:00:d2:60:4e:58:
f2:b0:71:a5:1f:bb:fc:2d:f5:95:4d:f8:a9:09:3b:
7d:65:1c:47:e7:ab:32:55:5c:ea:7f:9c:03:2e:67:
7c:74:8e:82:eb:23:fa:47:ff:47:f0:5d:66:c6:05:
5d:76:6a:55:6f:61:34:ef:d2:6d:74:e2:dc:56:eb:
6a:a1:c4:29:e9:ce:02:67:2f:a9:31:34:27:48:b7:
48:2b:69:0e:99:d0:21:56:88:31:e2:de:c6:40:b1:
e8:ca:3d:cf:03:e1:25:de:33:e9:9b:a4:49:87:23:
bd:7d:fc:c1:04:39:69:c4:93:aa:cb:98:b1:e9:22:
38:97:04:b3:35:a8:6b:e0:56:e9:ab:c0:d6:26:9d:
56:92:07:35:51:55:97:31:74:2c:29:d0:34:48:71:
2c:b3:43:64:90:5b:cc:f3:bf:5a:9f:7b:d0:c5:4a:
2f:f2:6f:6e:e7:a6:8e:4a:d7:68:4f:7e:ad:8f:75:
84:07:64:67:84:22:37:fd:6c:2a:be:fb:e9:92:a4:
e6:61:6a:01:e2:01:91:d4:2d:50:ed:aa:6a:73:23:
48:7b:5f:24:e2:3a:ff:9a:c0:9a:cb:47:9d:ab:0f:
be:ca:16:e2:ec:b3:a0:e0:f5:a3:9b:eb:28:8f:a9:
10:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:AE:D7:FE:5C:93:37:6D:D1:D6:1C:95:E3:88:3C:95:68:D4:16:7C
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/E3ECD5F64A6811EF97EDF749762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.233.21.0/24
Signature Algorithm: sha256WithRSAEncryption
39:3b:7d:9b:2e:d5:1a:e0:8d:f4:61:1c:44:cb:a3:f3:dd:13:
79:13:42:5d:17:d6:25:2a:c2:72:6c:0b:5d:97:27:47:e8:c6:
3c:33:df:cf:f0:2b:e7:06:cd:7d:80:5a:85:33:2d:c9:65:8c:
56:b2:5d:a4:59:cb:83:eb:c8:96:d9:d0:06:0c:8f:f0:0c:59:
6b:53:b3:18:fe:57:ca:dd:af:2b:13:50:34:03:56:1f:85:1c:
82:7a:3b:c7:9e:c9:9b:34:29:43:ea:be:8b:83:ca:3b:f7:af:
e0:3a:01:71:90:20:83:32:c7:be:be:e8:f5:e6:da:25:86:2f:
1e:7b:7e:54:13:2b:b7:72:b1:ba:9c:54:04:ba:98:b6:86:df:
7a:05:a3:28:8c:23:60:ec:73:42:90:af:12:2b:93:1a:5e:95:
c1:70:75:b8:5e:22:2f:cf:54:ee:9e:3c:55:0b:97:48:38:a5:
6e:67:34:66:d8:62:7a:21:b8:8a:58:8f:be:4e:4d:de:99:61:
d0:da:2c:f8:9e:62:39:31:89:27:7f:de:3c:e6:b1:ab:02:dd:
a8:0f:a4:02:0c:db:a2:89:9a:dc:1a:a7:c3:15:fa:5b:ef:da:
49:3e:40:63:3e:a3:b4:a0:df:16:fa:9e:a1:e9:82:76:09:03:
c1:77:73:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Aug 4 03:57:24 2024 by rpki-client on console-fra.rpki-client.org