Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36FA15D/98166C5E623711EB931CB859F8AEA228/54D32C1CC30F11EDB3BE68FAF1222468.roa
File: 54D32C1CC30F11EDB3BE68FAF1222468.roa (raw, json)
Hash identifier: T32O3H2Bbxc0I/RqiGgbPca+3M1RHnfhZixN2hfdacg=
Subject key identifier: 17:59:79:BA:BC:13:FF:6F:C3:D6:AE:68:4E:9B:96:BB:2E:E6:B5:6E
Certificate issuer: /CN=F36FA15DAR/serialNumber=44A9F69F4141DA76B7353EB0D581523AFE2B81E1
Certificate serial: 09FB
Authority key identifier: 44:A9:F6:9F:41:41:DA:76:B7:35:3E:B0:D5:81:52:3A:FE:2B:81:E1
Authority info access: rsync://rpki.afrinic.net/repository/arin/RKn2n0FB2na3NT6w1YFSOv4rgeE.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36FA15D/98166C5E623711EB931CB859F8AEA228/54D32C1CC30F11EDB3BE68FAF1222468.roa
Signing time: Wed 15 Mar 2023 08:56:54 +0000
ROA not before: Wed 15 Mar 2023 08:56:49 +0000
ROA not after: Fri 15 Mar 2024 08:56:49 +0000
asID: 61290
IP address blocks: 161.123.236.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2555 (0x9fb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36FA15DAR/serialNumber=44A9F69F4141DA76B7353EB0D581523AFE2B81E1
Validity
Not Before: Mar 15 08:56:49 2023 GMT
Not After : Mar 15 08:56:49 2024 GMT
Subject: CN=64118856-c34b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:81:1d:a5:c8:63:a8:6e:af:a4:da:04:69:96:
14:2d:42:57:70:1c:c5:43:00:48:55:e0:18:e8:ce:
71:d5:11:33:4d:a9:aa:63:f9:aa:ac:ea:97:53:07:
fb:e3:c8:19:4d:98:b9:98:f9:b1:af:6b:8e:9a:7d:
5b:4b:01:9e:e8:65:e2:82:ea:9c:24:1e:5f:91:ec:
48:8b:c5:8f:bb:18:b0:08:f3:62:b3:e3:39:82:ef:
6f:73:20:57:01:e8:f4:e8:47:ed:14:d8:49:bf:de:
c3:5a:d3:ff:ac:92:0f:b7:56:12:85:02:3a:7d:54:
9a:e0:23:38:1a:36:25:57:0f:cf:eb:92:2e:50:ab:
6a:fd:32:7d:40:09:0a:aa:de:b3:3e:b1:97:84:af:
eb:3b:f9:6d:ee:61:0d:5c:a7:19:39:bc:89:54:04:
1b:c4:5c:54:b3:b1:57:8b:87:3c:a2:51:07:81:bd:
c9:b5:4c:7a:22:3a:33:fe:bb:b7:84:b9:9a:ed:49:
9a:b3:db:8c:e4:65:9f:ce:69:76:e0:dd:ac:36:f9:
f8:34:86:52:08:40:60:77:10:b9:a7:38:30:79:1d:
35:bc:0e:d7:0c:18:2a:b0:7e:d1:8e:a3:85:2c:6a:
92:02:77:cd:6a:93:80:79:8f:2a:a2:89:af:8c:e9:
59:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:59:79:BA:BC:13:FF:6F:C3:D6:AE:68:4E:9B:96:BB:2E:E6:B5:6E
X509v3 Authority Key Identifier:
keyid:44:A9:F6:9F:41:41:DA:76:B7:35:3E:B0:D5:81:52:3A:FE:2B:81:E1
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36FA15D/98166C5E623711EB931CB859F8AEA228/RKn2n0FB2na3NT6w1YFSOv4rgeE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/RKn2n0FB2na3NT6w1YFSOv4rgeE.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36FA15D/98166C5E623711EB931CB859F8AEA228/54D32C1CC30F11EDB3BE68FAF1222468.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
161.123.236.0/24
Signature Algorithm: sha256WithRSAEncryption
55:21:80:6e:bc:f4:f2:6a:29:7f:43:d2:f8:91:4a:7a:67:83:
42:f6:cf:c0:d4:96:34:6a:a0:cc:9a:8c:64:d7:93:42:ab:ef:
cc:86:ce:9f:56:41:82:60:12:3f:95:5e:80:6f:c2:aa:43:0e:
5f:75:2c:7a:42:f3:ed:f9:ec:82:b1:5e:10:d3:b6:3d:b9:fd:
26:a3:fc:45:4d:47:b2:b0:1c:42:03:df:8f:8f:c3:4f:11:74:
fd:93:f0:5f:18:2f:da:76:af:90:2d:eb:b1:4e:52:d3:34:b4:
28:67:f1:fc:39:fe:c0:96:d1:55:5d:fc:c1:56:85:13:1b:93:
40:98:b9:ed:ba:dd:97:c7:c9:3f:24:bd:7e:66:4e:8d:b1:57:
71:89:49:d6:99:66:19:9e:4e:66:c5:29:60:80:01:d3:fd:36:
66:d1:f6:c2:c6:a5:3f:e4:f3:1d:13:13:18:88:85:1a:36:9b:
db:2b:c9:67:ee:4a:21:02:73:7e:29:01:57:bf:71:17:9a:1e:
36:da:73:41:6c:01:15:ca:71:f3:09:cc:1f:00:be:c5:b4:d0:
67:79:4c:61:fa:44:a9:b8:e8:94:2a:46:3c:ef:49:37:19:68:
a4:a5:69:c1:a1:77:5e:eb:c0:0f:a5:12:eb:29:29:0a:12:28:
9f:85:47:97
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:50:53 2024 by rpki-client on console-fra.rpki-client.org