Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/ED157710C47C11ECB04FC288F1222468.roa
File: ED157710C47C11ECB04FC288F1222468.roa (raw, json)
Hash identifier: KyhjnHB3GfnQ6H7+BruzTYNU8vOwhyooRLEENSmp088=
Subject key identifier: E6:0E:31:47:BC:C7:5D:FB:90:FE:1D:70:74:58:95:F4:10:F2:28:43
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 1368
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/ED157710C47C11ECB04FC288F1222468.roa
Signing time: Mon 25 Apr 2022 09:48:58 +0000
ROA not before: Mon 25 Apr 2022 09:48:54 +0000
ROA not after: Mon 30 Jan 2023 09:48:54 +0000
asID: 139057
IP address blocks: 156.251.67.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4968 (0x1368)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Apr 25 09:48:54 2022 GMT
Not After : Jan 30 09:48:54 2023 GMT
Subject: CN=62666e89-462e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:55:24:7b:86:20:33:67:64:83:06:ab:34:48:
a4:44:9c:03:6e:86:90:c7:89:eb:65:72:61:a7:3c:
2f:ef:40:97:40:7e:bf:1e:f5:ed:90:b4:c1:a7:74:
34:16:75:46:18:1f:54:c7:ff:8c:58:f2:c3:b8:4e:
24:80:41:a1:31:ef:0d:aa:ce:6e:a0:fa:d3:34:98:
34:97:95:b6:8e:57:d2:32:03:70:cf:fe:59:0b:44:
ba:9d:ad:01:a9:3f:1f:d7:b4:79:4c:bc:f3:68:74:
ff:35:07:fb:9b:0e:e3:d3:ea:bd:a2:37:a8:74:06:
69:2a:15:17:89:ce:eb:ef:21:6a:66:05:e7:6b:29:
d4:c2:ea:a4:48:02:b1:ec:1e:b1:c2:4a:71:ea:c0:
ef:0c:51:e0:95:a3:8f:93:c8:76:38:3d:a9:89:08:
81:24:7f:5f:8d:f0:4e:02:f9:e6:44:0b:d2:ae:43:
3f:34:7d:1c:76:75:ea:67:ad:2c:7d:61:e8:4c:c6:
49:23:ed:af:49:4b:a7:02:36:f3:26:22:40:8e:14:
96:57:ea:e0:9a:12:df:da:2e:f2:bd:fc:c6:95:e8:
1b:2e:cd:e9:a8:ee:6a:33:0e:e8:3f:bf:9a:49:4e:
c5:08:32:41:0a:08:e0:83:c4:09:a1:3a:e1:bc:09:
90:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:0E:31:47:BC:C7:5D:FB:90:FE:1D:70:74:58:95:F4:10:F2:28:43
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/ED157710C47C11ECB04FC288F1222468.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.251.67.0/24
Signature Algorithm: sha256WithRSAEncryption
76:60:9e:2d:b8:4a:9b:7f:5a:e9:96:db:fe:1f:95:f0:ad:c8:
fe:db:6f:fc:1c:d0:46:40:c5:a0:40:0a:47:d3:ef:52:b8:7f:
a3:f7:05:ec:27:ac:1d:46:07:c9:4f:5d:22:b0:c0:44:27:fa:
35:cf:86:0a:f3:a9:eb:a2:b8:fb:a4:e2:f5:1a:cc:7e:1b:00:
9c:06:5c:ac:3d:8e:c7:d2:d9:2b:32:03:4f:10:c6:d6:4d:c7:
a4:c2:59:6c:0d:93:27:5e:9b:79:f0:fa:ae:a9:c9:88:3e:23:
47:eb:f0:9b:9d:69:55:68:6b:70:36:d0:0e:a9:76:8d:2d:b5:
61:11:a7:cb:79:b2:0a:2c:c0:0a:cd:d6:9c:0b:e7:67:ad:46:
2b:c3:79:de:b2:9d:8f:76:f2:8a:a0:39:1e:aa:88:eb:c6:2e:
0b:23:b3:a2:a1:ce:ff:e6:95:55:34:d4:86:62:a1:a3:b0:ce:
86:26:59:fb:7b:a9:2e:f7:d2:4d:ee:54:8f:cc:e4:c5:f3:49:
76:bb:b6:39:88:d5:71:87:14:58:07:32:dc:6e:36:f1:46:10:
59:f1:18:ce:67:67:43:59:9c:10:a8:18:95:45:99:dd:ac:23:
2e:2a:81:49:b3:bd:99:6e:74:85:f0:63:2e:72:88:93:3e:9f:
cf:60:13:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:22:31 2023 by rpki-client on console-fra.rpki-client.org