Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/0C8D5998CE7D11EF882FE4B1762E951A.roa
File: 0C8D5998CE7D11EF882FE4B1762E951A.roa (raw, json)
Hash identifier: I+Mh0QBPpJgd+WlfcsJe/Tmt9yFmnNDCNbPBjumQVZk=
Subject key identifier: 94:70:27:AE:50:D3:4E:DD:51:6C:29:D8:5B:95:2F:69:15:3F:44:FB
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 010366
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/0C8D5998CE7D11EF882FE4B1762E951A.roa
Signing time: Thu 09 Jan 2025 11:29:55 +0000
ROA not before: Thu 09 Jan 2025 11:29:51 +0000
ROA not after: Wed 22 Jan 2025 11:29:51 +0000
asID: 5065
IP address blocks: 156.239.20.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 66406 (0x10366)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Jan 9 11:29:51 2025 GMT
Not After : Jan 22 11:29:51 2025 GMT
Subject: CN=677fb333-9893
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:dc:9a:61:c7:ae:6b:aa:92:87:ac:c1:79:4a:
83:ae:3e:ce:c1:12:04:0f:7a:e7:04:16:19:69:ec:
e2:a8:5a:37:7b:1d:3e:f8:8b:83:02:51:15:d1:3a:
30:82:7a:80:8a:45:24:62:05:74:20:80:e2:6a:84:
55:30:85:ad:f4:06:5e:f7:97:bf:b0:c5:92:11:f3:
b9:38:3d:e0:c9:3f:bd:d3:28:c0:e4:db:42:6f:37:
e2:24:78:c9:13:39:97:b6:98:da:16:f4:c0:0e:04:
ed:e0:c3:8e:9f:36:59:12:d5:96:ff:72:cf:e0:82:
b3:d3:d7:bb:47:b5:5e:16:8f:11:24:df:97:55:46:
e6:e7:dd:e9:b2:cb:78:c7:ee:52:a4:fb:4b:43:b1:
b7:2b:6f:e7:90:dc:55:f1:50:93:1f:a2:57:03:11:
95:7b:39:f3:8a:a8:39:d4:b7:22:a7:00:66:3a:0d:
54:a1:d3:d6:03:5b:e7:86:57:b9:8f:5d:9c:a2:7a:
27:fd:70:73:32:25:e5:5b:ac:73:33:86:fd:f5:31:
da:5b:1b:b9:47:d1:7e:0a:2d:62:4b:d0:d6:28:44:
f7:9c:f9:13:0c:3a:f7:cd:1e:eb:ff:e4:2f:db:f4:
94:9f:0b:e5:c6:df:f7:fd:30:ba:01:c9:6c:06:eb:
f3:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:70:27:AE:50:D3:4E:DD:51:6C:29:D8:5B:95:2F:69:15:3F:44:FB
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/0C8D5998CE7D11EF882FE4B1762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.239.20.0/24
Signature Algorithm: sha256WithRSAEncryption
05:4b:d9:1f:c9:ea:d6:71:99:a6:39:44:b6:86:10:6b:63:80:
c7:41:9e:61:89:a2:95:45:71:83:eb:d0:d9:e4:b5:df:60:3b:
85:61:38:26:42:32:30:31:47:a3:74:f2:eb:7a:d3:7f:05:38:
a4:2a:38:dd:a1:ef:66:9a:88:1d:78:ad:f8:4d:be:59:f5:e6:
3e:0f:75:6a:05:7f:71:7a:52:28:c8:89:cf:21:71:0c:27:72:
85:f7:52:7d:4e:f8:46:b4:1c:4e:88:8b:e3:71:64:93:68:93:
dc:13:6b:5d:41:6d:a8:d2:dc:b5:50:e0:71:6c:a7:de:9e:e9:
04:25:82:01:c2:65:b1:65:93:62:c1:27:bf:1c:10:d3:8a:87:
4a:28:89:c4:8a:e6:86:8b:dc:31:58:44:c1:f6:49:05:08:e2:
08:df:f0:1c:0d:0f:d5:90:35:47:7f:fa:d4:35:33:9e:bd:96:
25:17:b8:78:d7:11:26:7d:22:c3:d9:29:5d:ed:6c:8b:78:dd:
15:4e:22:65:19:14:88:83:1c:e7:53:e1:9c:a5:d4:99:0e:b0:
83:d5:72:78:10:f4:41:4e:4a:2f:f9:23:0d:67:6c:43:19:d8:
63:9e:4e:42:98:81:d4:7a:73:f2:9c:cf:5b:ce:17:1d:b3:cf:
46:c9:cf:42
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 10:00:45 2025 by rpki-client