Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/1928EEF6CBE911EFB8A4BC41762E951A.roa
File: 1928EEF6CBE911EFB8A4BC41762E951A.roa (raw, json)
Hash identifier: AJGI82VIoiMcFUFaTZJrycMOj3moH7Nt+TN5aGigAX0=
Subject key identifier: 55:63:15:69:3E:C7:1C:04:23:29:2A:AE:33:A4:95:C5:2E:7F:FB:33
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: F81C
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/1928EEF6CBE911EFB8A4BC41762E951A.roa
Signing time: Mon 06 Jan 2025 04:45:48 +0000
ROA not before: Mon 06 Jan 2025 04:45:44 +0000
ROA not after: Wed 22 Jan 2025 04:45:44 +0000
asID: 131471
IP address blocks: 156.238.64.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 63516 (0xf81c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Jan 6 04:45:44 2025 GMT
Not After : Jan 22 04:45:44 2025 GMT
Subject: CN=677b5ffc-8d2b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:0d:12:62:31:dc:96:b4:7a:d4:7b:cb:48:24:
b0:42:4e:22:d3:63:18:02:d3:d1:7f:69:e9:8c:11:
e1:03:24:df:8b:dc:af:ab:de:c0:4d:36:25:41:96:
2a:1d:41:0e:35:ce:29:e8:e3:ec:f9:63:ce:4a:47:
1d:52:29:9f:7c:cc:28:5e:fa:4a:0d:d6:e7:c0:fa:
a3:65:e0:cd:b8:ee:1d:25:64:95:e3:5b:88:1f:94:
3d:49:c4:3e:92:8f:be:81:e6:80:c9:92:da:82:76:
bf:4d:06:54:97:40:be:df:1f:65:ed:9d:8e:ac:58:
8b:a0:cd:2f:d6:7b:7c:fb:ee:5c:7d:4c:74:a3:0c:
37:5d:d6:93:57:18:39:cc:1a:86:2d:98:86:fd:9f:
c6:42:36:6e:e9:d8:6e:01:09:21:34:e7:98:3e:ba:
47:9e:ae:2b:64:46:9d:68:bf:7c:e6:28:51:0b:0b:
13:d7:ae:ab:a1:05:13:2d:39:30:13:29:13:97:d4:
a5:b3:8e:58:39:54:77:3f:d4:2a:ce:2b:02:5d:f6:
f6:5b:21:f4:49:a2:00:f4:08:d1:5a:b7:76:e1:fc:
1a:96:e2:78:78:72:a7:47:69:a6:5f:b1:06:2c:37:
b3:3c:a7:96:64:6f:75:0d:56:70:fe:c3:fd:2b:de:
76:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:63:15:69:3E:C7:1C:04:23:29:2A:AE:33:A4:95:C5:2E:7F:FB:33
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/1928EEF6CBE911EFB8A4BC41762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.238.64.0/21
Signature Algorithm: sha256WithRSAEncryption
88:c9:f2:75:18:f0:b2:66:26:5d:8b:a1:99:6d:f8:b0:dc:32:
f3:f1:7f:ec:3c:f7:c1:ec:57:3c:e8:3f:b7:9f:6a:2d:bf:29:
b6:60:1a:f1:c0:19:44:52:13:e2:1d:11:bf:7a:67:3b:bd:be:
cc:c6:65:3f:dd:e9:2a:88:0a:e3:61:44:6b:4b:81:3a:e5:79:
cd:f9:90:89:f9:8c:be:b8:af:40:42:ed:50:39:d0:3e:6f:f5:
4c:4a:68:fb:97:34:68:cb:58:29:d8:d1:49:2a:48:1a:e3:33:
d9:8a:aa:7d:d7:58:4a:04:5f:70:f6:bc:8a:44:00:1c:86:dc:
68:86:98:a7:b7:41:59:6d:44:b2:97:8a:cf:fc:02:ea:e6:9b:
32:df:3c:a7:7f:2d:62:62:00:9d:4e:c9:93:1c:22:b0:98:e4:
5c:67:82:df:24:76:a6:b6:40:b1:71:6b:75:14:09:45:3a:de:
87:71:ab:c5:b6:6c:a2:67:d3:28:6d:64:13:f0:3e:42:11:64:
91:05:73:f8:82:07:a5:92:9c:3b:eb:9e:6f:87:43:94:22:12:
63:e3:99:41:ea:65:55:94:02:a9:f0:9f:c7:b8:0f:d9:18:96:
5f:83:21:6a:28:8b:c0:8f:d2:c6:47:f8:49:95:49:f4:c9:d9:
b0:3e:c6:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 09:48:13 2025 by rpki-client