Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/E68DEB14A7DE11EFA52A85A7762E951A.roa
File: E68DEB14A7DE11EFA52A85A7762E951A.roa (raw, json)
Hash identifier: udPmzqsGMQgx6FlD7y7ueJP7IVuEtx0Iy6xwdoq/d2M=
Subject key identifier: 98:50:71:2A:85:DE:24:B1:23:FD:7E:B9:63:F8:28:49:AF:2A:C1:73
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: D713
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/E68DEB14A7DE11EFA52A85A7762E951A.roa
Signing time: Thu 21 Nov 2024 08:02:07 +0000
ROA not before: Sat 30 Nov 2024 08:02:03 +0000
ROA not after: Sat 30 Nov 2024 08:02:03 +0000
asID: 149014
IP address blocks: 156.236.124.0/22 maxlen: 24
Validation: Failed, certificate is not yet valid
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 55059 (0xd713)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Nov 30 08:02:03 2024 GMT
Not After : Nov 30 08:02:03 2024 GMT
Subject: CN=673ee8fe-086f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:7e:87:51:86:f4:0f:62:cd:bb:2e:ba:1a:aa:
57:b4:14:f0:2a:ee:04:a8:e0:03:dd:9f:4c:ba:56:
92:c9:d7:f4:60:f1:59:39:f7:a7:7d:bb:cf:0f:cc:
5e:b5:4d:cd:e7:a6:06:c3:60:0c:ed:8f:2a:00:cc:
db:a1:55:fd:2f:d0:f3:53:3e:73:bb:06:26:8b:9e:
4c:dc:45:a2:a7:2a:db:1e:e7:38:49:13:74:be:5b:
b8:7a:74:dc:36:71:e4:f6:8d:46:c8:32:ec:5b:d9:
18:e8:66:4e:6d:40:a5:ed:66:cc:c9:0c:13:68:de:
c7:50:3b:01:2b:71:45:ec:4e:f7:22:26:cf:2b:ec:
98:c5:56:42:82:05:93:64:b0:8e:f3:2d:19:5a:b5:
f4:a9:51:59:57:9b:09:b8:72:55:e9:48:c4:81:5d:
83:2b:8f:2c:d6:a8:1c:68:b0:4c:50:f9:76:c5:b5:
23:00:d5:12:e1:4e:36:71:17:30:37:b4:64:76:84:
ac:52:e2:c5:31:55:af:44:ab:2b:e7:38:02:98:af:
9d:3b:ad:f2:81:2d:65:8d:7b:b5:8b:22:91:f3:e3:
50:e5:9c:ac:73:f7:b9:1b:1e:3c:4c:7d:61:55:39:
9d:b2:54:ca:fe:54:0e:b0:e4:a4:13:a6:78:f8:39:
31:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:50:71:2A:85:DE:24:B1:23:FD:7E:B9:63:F8:28:49:AF:2A:C1:73
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/E68DEB14A7DE11EFA52A85A7762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.236.124.0/22
Signature Algorithm: sha256WithRSAEncryption
0e:46:9f:8e:7e:92:1d:fe:5c:07:a6:5b:08:f9:f5:9a:ae:d0:
ac:9d:99:25:a1:9f:7e:e5:27:e7:0e:53:74:9f:8b:8c:33:90:
c4:fe:9d:aa:dc:7d:5e:d2:04:ff:91:e2:46:ef:60:87:c2:51:
b2:28:86:d6:79:90:a1:1f:6b:69:e9:fb:b7:fc:55:9f:00:30:
5f:6c:0a:c7:6e:b8:2f:5a:ac:4e:84:00:29:bb:2d:9a:f9:eb:
02:b4:83:d9:bb:5a:30:86:72:7d:8f:33:a0:f6:28:00:78:82:
12:e2:37:40:77:46:ed:6e:54:41:9b:17:4a:2c:c7:4d:d8:a5:
02:4c:71:32:ed:7f:a9:89:fb:62:43:fd:be:b9:a0:b0:42:c3:
a7:4f:52:b5:b0:20:43:5f:04:74:ef:63:a2:f6:04:0e:6e:f0:
e3:60:4a:50:8e:69:c0:d0:81:16:a4:3b:61:d9:ce:b1:ed:f6:
16:b7:f3:27:d0:6e:1e:b6:22:44:b7:cf:24:72:81:0a:03:5b:
ce:79:26:24:03:08:aa:f7:86:8f:d9:11:0e:0f:68:f0:82:b1:
46:8d:c5:b9:06:a7:48:3f:ad:1e:5d:6e:69:f5:77:c5:0d:08:
31:a8:aa:d5:92:a7:5d:ab:45:88:3b:90:df:1b:90:6a:6b:84:
5e:1e:9d:61
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:05:52 2024 by rpki-client on console-fra.rpki-client.org