Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/139C2428C74611EF8E52E442762E951A.roa
File: 139C2428C74611EF8E52E442762E951A.roa (raw, json)
Hash identifier: IMGDMy+8xFO3nGqZ/hxxGL15qf/7fOUWYRM7lO9YthI=
Subject key identifier: 66:31:F1:84:47:A9:05:5A:C2:19:F2:11:16:3C:30:86:42:5D:09:15
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: F2A9
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/139C2428C74611EF8E52E442762E951A.roa
Signing time: Tue 31 Dec 2024 07:08:46 +0000
ROA not before: Tue 31 Dec 2024 07:08:43 +0000
ROA not after: Mon 20 Jan 2025 07:08:43 +0000
asID: 214834
IP address blocks: 156.253.230.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 62121 (0xf2a9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Dec 31 07:08:43 2024 GMT
Not After : Jan 20 07:08:43 2025 GMT
Subject: CN=6773987e-0d15
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:c8:d9:ed:51:d9:75:c8:48:19:bf:7b:55:39:
a3:b5:e9:28:47:ec:d6:2c:55:77:fb:37:c1:ee:6d:
de:9b:17:c7:91:ce:9a:5d:3d:f6:db:91:48:81:cf:
77:70:2a:bc:fe:2a:68:75:0c:0f:8c:51:f5:c9:a0:
90:57:65:3a:36:16:18:db:98:d1:de:57:d7:29:d4:
44:4b:83:81:28:ec:9f:d0:f5:6f:9f:04:7f:44:19:
f5:79:6c:36:07:eb:59:5d:c2:b8:84:47:23:de:8c:
ca:18:9b:2b:9a:78:d6:a0:eb:10:08:e4:09:1d:63:
f3:03:b9:0a:54:05:25:42:b1:e8:a5:f0:d5:54:83:
ec:d9:23:0f:b4:a0:c9:db:cc:78:8f:5b:aa:aa:d8:
67:dd:91:f6:48:d5:e0:ca:57:99:12:04:30:01:64:
d4:4b:2a:eb:f7:c8:16:84:0f:af:66:22:3f:98:ce:
e0:08:41:65:e2:bc:cf:d7:94:19:5c:06:30:88:46:
54:99:1a:7e:32:72:ea:8c:4e:de:61:04:1a:d5:79:
5d:c2:a4:6b:b7:30:2d:ca:51:11:e8:9f:04:d0:4e:
ce:e0:6d:48:2d:eb:2a:ba:06:af:26:a9:ee:89:50:
6e:53:08:6d:fd:f1:fe:7f:09:bb:d3:11:9b:2d:f2:
e4:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:31:F1:84:47:A9:05:5A:C2:19:F2:11:16:3C:30:86:42:5D:09:15
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/139C2428C74611EF8E52E442762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.253.230.0/24
Signature Algorithm: sha256WithRSAEncryption
07:47:dd:b7:e0:e1:9d:09:23:31:28:36:47:e4:06:4f:37:91:
c3:6a:16:52:46:f9:7d:42:fa:ba:a5:00:e1:5c:c3:c1:5b:45:
74:68:a2:ba:5a:0b:ab:ef:33:f8:1d:9d:51:2a:a2:5b:1d:8c:
71:7a:8a:ba:d8:4c:29:13:5a:d8:86:a1:37:a8:51:ed:d1:22:
32:d4:ef:6c:c6:60:55:6e:15:f7:a9:9a:10:23:3f:32:99:10:
d7:f9:18:73:40:c6:db:d2:dc:e1:dd:df:3f:b2:72:e9:25:7b:
2b:01:fc:d4:43:ed:0f:a3:52:23:b4:c3:9c:2e:cf:29:a6:fb:
b3:3a:2f:9b:78:7f:5b:b0:03:af:28:13:c6:40:30:15:76:86:
c0:80:9c:29:7f:b3:8d:8d:e6:52:a4:e9:ac:96:78:80:2a:e5:
31:59:a2:85:5d:17:4d:54:a9:e8:0b:8e:be:6a:33:ab:c6:e6:
bf:83:2d:f0:7c:c3:a3:9c:ab:40:cd:b0:9b:f7:f3:3d:44:81:
3f:1e:f3:8d:02:24:70:0a:dd:17:7e:d2:cf:b2:d6:23:95:d1:
e2:20:ec:64:51:45:56:94:c1:d7:8c:55:29:2c:67:09:ea:e3:
d7:c9:a9:04:7e:fd:7e:83:38:63:82:a7:c4:4f:e6:84:a8:d2:
d8:46:7d:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 09:44:47 2025 by rpki-client