Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/E86C834247D411EF8E4D4D44762E951A.roa
File: E86C834247D411EF8E4D4D44762E951A.roa (raw, json)
Hash identifier: 8goi4+fEZvu818jkjtebqByUs4cUMNlnjAq9slV8no0=
Subject key identifier: 28:5E:10:89:BD:09:C9:2C:27:11:87:BE:BE:C8:97:44:40:CE:81:8E
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 9DCF
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/E86C834247D411EF8E4D4D44762E951A.roa
Signing time: Mon 22 Jul 2024 02:48:43 +0000
ROA not before: Mon 22 Jul 2024 02:48:39 +0000
ROA not after: Fri 23 Aug 2024 02:48:39 +0000
asID: 44559
IP address blocks: 156.246.247.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 40399 (0x9dcf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jul 22 02:48:39 2024 GMT
Not After : Aug 23 02:48:39 2024 GMT
Subject: CN=669dc88b-ddd9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:1d:e8:8b:4b:d2:78:dc:d0:4d:25:b8:02:f6:
0c:ef:36:a5:8c:e0:10:be:c4:fe:54:9c:b9:17:91:
6e:92:f6:36:dc:46:18:b5:df:23:13:4b:3e:89:66:
7d:ef:6b:52:c9:be:dd:d5:82:c5:9f:5d:d3:d4:fa:
80:0a:7a:c2:15:f3:33:93:a6:29:12:87:ac:63:00:
3b:1c:96:a2:c4:de:73:7a:35:7e:d5:fd:17:1a:63:
31:7f:02:77:90:87:78:5e:21:3c:2c:dd:fa:ef:51:
5e:f9:5d:1d:f6:3b:b6:2e:53:94:7c:33:c6:22:5d:
d1:48:e6:d3:98:be:df:ad:e3:f7:ca:ce:e6:d5:ce:
31:fe:73:01:0d:c0:59:38:ec:13:49:97:a8:a0:37:
e8:a7:e2:48:d5:94:8e:03:0e:45:dd:2a:cb:ee:ec:
2c:20:0b:a4:50:43:f2:62:dd:7e:a8:09:69:24:96:
24:a0:b4:db:bb:d7:7d:47:af:11:65:4c:00:27:3d:
89:d5:1e:04:07:d5:bb:ef:bf:b6:65:66:6e:d5:3c:
ed:0a:d4:d6:0c:98:59:e5:b2:79:29:33:f0:35:dc:
80:70:3d:2d:ff:6d:91:8d:b1:3a:cf:c2:2e:38:6d:
95:2e:b3:ee:4e:78:d4:44:92:1a:6e:b3:5d:2b:7c:
11:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:5E:10:89:BD:09:C9:2C:27:11:87:BE:BE:C8:97:44:40:CE:81:8E
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/E86C834247D411EF8E4D4D44762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.246.247.0/24
Signature Algorithm: sha256WithRSAEncryption
a6:00:f3:20:d7:84:0c:6e:89:bc:63:b3:83:37:38:3f:5e:74:
20:77:15:92:1c:a3:2c:f3:ed:a8:b5:27:9d:85:ea:e1:6f:50:
63:74:1b:97:8f:dc:6b:9b:f7:18:7b:4f:b8:f8:fe:e2:57:d9:
a2:af:f6:ce:ea:95:2a:91:bf:5c:36:a5:be:e6:b1:15:f4:77:
33:6f:40:51:98:8b:f6:2e:81:dc:c6:c5:b4:b9:79:6a:68:ab:
c5:13:6f:03:a7:42:33:93:7c:bf:e3:7b:1b:99:82:29:e5:f4:
89:4c:8e:75:9e:5a:49:8c:97:5f:af:28:49:7f:76:70:6d:bd:
5b:0f:b9:52:17:c3:76:c4:cf:e0:df:f2:93:2b:8d:0b:88:14:
7f:f2:b8:3b:b4:e1:c1:7d:20:06:e2:2d:d1:0d:81:38:e3:64:
85:26:e0:fe:9e:4b:bd:29:b2:0f:c7:28:66:3c:93:ea:c9:47:
65:a3:09:a2:59:9c:15:bf:cd:fb:26:04:55:3f:52:84:0a:4a:
8f:b8:84:64:f3:0e:51:83:18:e5:e1:18:c9:73:15:ca:ad:f0:
ff:1b:7b:d9:8b:cb:75:f9:4b:5f:fc:57:de:18:9d:47:4c:60:
e2:4f:be:fb:97:1e:49:7d:3b:42:b9:22:63:8c:69:d7:d9:43:
2f:00:97:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Aug 23 12:55:03 2024 by rpki-client on console-ams.rpki-client.org