Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/E72C30F244DE11EFB30A2DA0762E951A.roa
File: E72C30F244DE11EFB30A2DA0762E951A.roa (raw, json)
Hash identifier: /FDbWSSVNo5TNbOI9kS+00pLSUBsiSgkwaARShkQApA=
Subject key identifier: E7:68:67:55:08:05:5E:A4:19:EB:9E:DE:A4:A6:FC:4D:25:23:F9:58
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 9D53
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/E72C30F244DE11EFB30A2DA0762E951A.roa
Signing time: Thu 18 Jul 2024 08:22:43 +0000
ROA not before: Thu 18 Jul 2024 08:22:39 +0000
ROA not after: Sat 27 Jul 2024 08:22:39 +0000
asID: 22773
IP address blocks: 156.237.16.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 40275 (0x9d53)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jul 18 08:22:39 2024 GMT
Not After : Jul 27 08:22:39 2024 GMT
Subject: CN=6698d0d2-91eb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:7b:de:e3:c4:f8:bd:7c:77:e5:57:a7:8d:6f:
a0:34:66:87:ea:40:45:d5:ee:79:9f:72:99:4e:24:
55:c7:eb:37:13:b7:44:09:72:0b:24:3c:9b:5c:04:
ea:cc:07:3a:d6:50:6b:cd:57:81:02:91:da:19:f9:
56:66:c9:7c:e4:ca:b5:75:34:48:10:20:14:39:30:
87:a5:db:41:be:cb:fc:e1:43:b6:48:33:e0:d3:29:
68:6b:ad:49:b8:f2:e8:37:8b:89:18:62:bd:de:cb:
04:86:23:a7:bf:db:42:e1:d3:6b:d2:b2:87:ca:a9:
dc:de:90:29:eb:ea:84:6d:5b:11:d0:b2:c7:1c:b1:
4d:71:e1:0e:f0:48:37:6c:44:6c:f8:15:d5:34:87:
f4:dc:18:63:0d:97:6d:a5:8f:9d:cc:cd:2f:f3:1c:
08:f9:04:be:f3:b3:46:24:6b:18:e9:58:ad:c6:08:
10:0a:a8:40:a8:e2:32:5a:42:3d:8c:52:e9:9b:d9:
36:e1:93:09:5c:4d:76:16:a1:e3:f2:6e:b8:65:65:
47:38:ba:0d:b7:5b:06:33:b0:b0:2b:e9:39:83:7e:
cf:25:d8:06:d3:36:34:8a:cc:f7:95:54:e7:0e:6f:
42:10:cb:da:1a:97:2a:02:38:e5:de:38:19:08:c1:
3d:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:68:67:55:08:05:5E:A4:19:EB:9E:DE:A4:A6:FC:4D:25:23:F9:58
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/E72C30F244DE11EFB30A2DA0762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.237.16.0/21
Signature Algorithm: sha256WithRSAEncryption
2c:47:75:6e:1d:ce:d5:b7:12:e2:1f:c6:d7:93:75:35:f1:53:
24:50:18:dd:05:fe:47:eb:1f:f7:6f:34:05:1e:9e:54:d5:16:
99:b0:54:71:09:0d:6d:0a:0c:47:b8:23:f0:23:08:1b:72:62:
70:7b:8c:80:93:e8:2f:23:9d:5f:37:f6:c4:1c:69:22:4f:81:
3e:d2:dc:65:8d:42:98:e1:ae:72:78:21:81:4e:ca:3d:b1:8d:
53:3b:ed:c6:4e:fc:ed:38:d6:37:ac:cb:01:d4:5c:9f:63:17:
82:27:53:42:e6:dc:bd:62:76:c7:3c:9a:7b:c8:88:5c:b7:47:
c2:d0:34:e0:b8:a3:48:fe:a3:41:85:4a:c9:04:40:a8:c2:b4:
c4:ed:ac:5a:82:a6:dc:b1:7d:c2:3f:60:57:c2:49:d9:00:23:
25:ab:4c:78:0f:30:47:17:ba:6e:c5:f2:95:9a:89:3d:fb:cb:
97:72:19:7b:9e:eb:6d:44:cf:f5:19:d7:09:35:10:53:ba:0c:
45:a5:c2:29:47:d4:d3:13:2a:11:af:1a:90:0d:d6:4d:d6:bd:
d6:de:94:87:df:5a:dc:2d:de:2e:14:40:eb:a5:57:ee:20:c8:
32:e6:8b:b6:ac:d9:54:a4:39:65:83:38:d3:15:eb:04:96:3e:
53:07:90:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 28 03:06:41 2024 by rpki-client on console-fra.rpki-client.org