Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/189711DAB92311EFB0F5736E762E951A.roa
File: 189711DAB92311EFB0F5736E762E951A.roa (raw, json)
Hash identifier: 9dZJv+GlE5fNHvl+VClZBHvSunTd3IS3QTg9WOmeGkM=
Subject key identifier: 9F:5B:5B:4C:03:97:1F:EC:D9:65:E8:FA:EE:B6:D3:04:E4:5A:A2:C8
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: E2E7
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/189711DAB92311EFB0F5736E762E951A.roa
Signing time: Fri 13 Dec 2024 07:23:06 +0000
ROA not before: Fri 13 Dec 2024 07:23:02 +0000
ROA not after: Sat 18 Jan 2025 07:23:02 +0000
asID: 42689
IP address blocks: 156.251.80.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 58087 (0xe2e7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Dec 13 07:23:02 2024 GMT
Not After : Jan 18 07:23:02 2025 GMT
Subject: CN=675be0da-6e98
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:bb:8e:a0:85:96:80:fc:14:3e:78:5a:ff:05:
fc:60:b7:34:d2:09:ea:ef:eb:ec:a9:51:7b:be:ac:
b3:48:80:8b:4f:31:50:84:8a:96:74:04:0b:e7:8d:
c8:cd:14:5b:47:f7:22:d3:26:7d:91:e0:2d:31:75:
5a:a2:3c:df:6e:01:7d:ae:c5:58:3a:48:98:81:2e:
7b:8a:3a:ec:0a:79:a3:91:0b:d9:31:c2:e5:c9:70:
d6:3f:bf:77:f4:56:96:46:a2:b2:5a:ee:eb:59:57:
da:fe:79:52:fb:70:97:6f:d8:e7:f3:49:78:35:5f:
3b:c7:d2:2f:4b:8f:98:40:41:e9:7a:e7:ce:91:66:
d5:6c:95:0d:2f:00:a5:23:4f:04:05:bc:8a:da:09:
c4:2e:30:7c:b8:bc:6f:6e:ba:0b:c4:d5:47:45:46:
2f:72:2d:53:22:36:c0:85:91:d2:96:a8:d5:c3:5c:
82:0c:a6:35:7f:f9:33:16:cb:87:5a:f3:a9:a7:a4:
e6:57:e7:c3:be:f8:00:8b:e6:84:94:b4:3f:33:6c:
30:5e:3d:d1:05:27:d7:6b:b9:24:bf:64:ed:b4:20:
90:e2:9e:fa:d5:a7:01:1f:aa:5f:94:67:11:f1:76:
62:52:b4:7e:16:6a:f0:ae:a0:6e:07:1d:f3:4a:33:
87:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:5B:5B:4C:03:97:1F:EC:D9:65:E8:FA:EE:B6:D3:04:E4:5A:A2:C8
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/189711DAB92311EFB0F5736E762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.251.80.0/20
Signature Algorithm: sha256WithRSAEncryption
68:a5:78:43:3b:27:b7:e6:f5:71:d8:ca:1c:29:2f:19:28:73:
5c:7c:0e:38:48:83:5d:79:0c:03:e3:b7:f9:82:d2:4c:12:16:
c6:de:e7:59:53:77:85:ff:16:7b:e4:91:48:4f:39:0b:f4:c8:
2e:6f:b4:b3:7c:a7:0e:1a:4d:31:2f:58:5a:69:9e:cc:c5:e8:
54:9b:b6:e0:e5:1d:56:55:e5:81:5d:25:3e:6d:08:d7:dd:91:
68:ee:81:df:76:c9:a0:95:88:89:90:f9:68:c0:af:fe:58:f2:
12:d3:b3:17:40:3d:e9:3f:64:9f:5f:c3:2f:f2:8b:84:b5:c9:
15:98:f2:a8:6b:08:49:2d:f0:38:8e:42:ca:a3:71:29:db:a2:
c1:d4:d7:61:89:5e:e1:25:97:4c:87:e4:44:2b:b3:35:6a:8c:
a5:fb:07:63:e7:f8:7e:3a:06:d2:c7:e4:e8:1f:2d:28:cf:52:
bc:2a:e5:a8:42:b3:20:2a:6f:2e:a2:bf:c7:c4:58:89:5d:62:
ce:5e:67:4c:60:18:61:45:dc:cd:0f:53:73:a1:7f:d6:c0:44:
ee:45:2e:b0:3f:b0:b4:36:b0:cf:6e:76:16:e4:9d:2d:e6:e2:
88:6e:a5:5a:99:9a:0a:56:05:f9:73:4f:51:c0:ef:88:f6:00:
0f:e6:14:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 09:58:18 2025 by rpki-client