Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/100BF6F4B49E11EFB64C3375762E951A.roa
File: 100BF6F4B49E11EFB64C3375762E951A.roa (raw, json)
Hash identifier: nG98j0pUHVSAKjEG0zwpmuX7LZoCJfm3p5Sw/hLWvoE=
Subject key identifier: 15:05:B0:13:3B:62:B5:2E:8A:8A:1B:71:54:1D:4E:37:1F:D3:D6:34
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: E092
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/100BF6F4B49E11EFB64C3375762E951A.roa
Signing time: Sat 07 Dec 2024 13:20:44 +0000
ROA not before: Sat 07 Dec 2024 13:20:40 +0000
ROA not after: Wed 15 Jan 2025 13:20:40 +0000
asID: 138915
IP address blocks: 156.244.53.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 57490 (0xe092)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Dec 7 13:20:40 2024 GMT
Not After : Jan 15 13:20:40 2025 GMT
Subject: CN=67544bac-e36e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:91:6b:62:d2:5a:99:83:e7:1e:b6:f0:f7:04:
23:0d:95:4b:be:55:33:c4:62:ed:75:76:79:78:a8:
8d:14:7b:87:f0:3b:60:26:67:15:1b:a5:5e:b1:6b:
82:e2:97:42:68:5c:7f:2c:05:08:de:09:7e:ad:77:
89:56:2b:47:c6:65:ae:81:10:97:be:97:02:0e:24:
7b:e1:e4:67:d7:f9:a0:63:2f:3b:04:c6:f3:11:51:
8e:5b:f8:28:89:d6:cd:5c:91:2f:c8:67:d7:23:f5:
a4:3b:33:3a:8e:6a:2f:7f:04:e4:4a:fd:dc:09:a9:
76:48:a2:3e:d0:2e:d2:66:57:fb:7f:c6:b1:bd:52:
3c:04:dc:e1:c6:41:e3:ad:84:9c:61:0a:61:87:95:
a6:f8:6e:a2:54:04:d5:52:d0:1e:39:38:0e:a2:ab:
11:99:91:01:41:ae:54:58:e1:26:f2:b2:c5:8d:b6:
32:c8:0e:f9:6f:43:10:5c:1e:ab:d0:1f:a0:10:f5:
7a:90:92:31:6f:0f:aa:87:85:5c:d1:aa:49:c4:82:
72:33:13:72:09:e6:e0:09:4e:f3:01:72:2f:80:af:
87:c5:57:07:a3:8b:7c:01:17:be:41:41:0d:15:48:
1e:ed:44:45:43:0f:b2:07:74:e8:04:6c:ec:fe:76:
a8:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:05:B0:13:3B:62:B5:2E:8A:8A:1B:71:54:1D:4E:37:1F:D3:D6:34
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/100BF6F4B49E11EFB64C3375762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.244.53.0/24
Signature Algorithm: sha256WithRSAEncryption
11:a5:86:91:33:57:32:38:d5:ad:2a:9c:60:d6:b4:e3:5a:c5:
84:3d:8d:a5:0e:84:cf:a6:03:cc:e3:23:ea:17:67:c6:56:0e:
05:6a:af:a9:17:85:af:38:6a:cd:54:31:82:d7:e7:e1:8c:da:
5b:70:34:ca:f2:af:57:3e:a3:a5:9a:6c:4f:0c:8f:e0:f1:3c:
cf:18:84:8b:91:8c:4c:2f:e9:fa:c5:b0:7d:cf:f2:0e:2e:5c:
1f:e1:c0:57:ab:b1:44:eb:7a:44:92:1d:ea:0c:cd:05:db:8f:
7d:74:c8:33:c5:02:38:c7:0a:a1:fa:72:ed:e7:61:89:49:59:
c6:60:2a:5b:4b:5a:6a:74:e9:cb:b4:cd:ea:f6:f4:26:3a:9c:
76:e4:07:b3:b7:f6:5c:8d:45:4d:57:3a:f6:a1:f7:30:1c:c7:
dd:f9:84:68:e5:fe:e5:90:b5:12:d1:89:93:cb:67:c2:3a:e7:
2d:30:da:f0:d2:29:4f:0f:89:bb:30:a0:e5:4a:18:ff:b5:41:
48:35:45:bc:f5:80:e3:98:50:1f:bd:9f:d6:69:d6:da:e7:ba:
a4:6a:b5:e3:2a:af:3a:7f:7c:18:a5:97:3d:e5:0c:40:8d:c9:
ea:45:2c:ed:92:2d:2d:55:2a:9f:c1:45:49:58:19:3b:d7:42:
0f:38:54:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 09:51:00 2025 by rpki-client