Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/1DFCFE4ECE7E11EFA17451B8762E951A.roa
File: 1DFCFE4ECE7E11EFA17451B8762E951A.roa (raw, json)
Hash identifier: EwVwizkZoydM6rLAyB/vcfYfoTmPTxk3Z6Bw10gNob8=
Subject key identifier: 2A:33:1D:9C:4B:55:EE:94:58:A5:85:D1:7C:4C:3E:86:97:0A:46:B3
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 010376
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/1DFCFE4ECE7E11EFA17451B8762E951A.roa
Signing time: Thu 09 Jan 2025 11:37:34 +0000
ROA not before: Thu 09 Jan 2025 11:37:30 +0000
ROA not after: Wed 22 Jan 2025 11:37:30 +0000
asID: 5065
IP address blocks: 156.239.142.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 66422 (0x10376)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Jan 9 11:37:30 2025 GMT
Not After : Jan 22 11:37:30 2025 GMT
Subject: CN=677fb4fe-ee89
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:bf:ef:7d:67:f5:6d:d6:1f:aa:15:bb:b3:9b:
42:ad:9c:2a:04:89:87:41:3c:9a:a8:3c:f7:13:42:
4a:83:cf:e2:ae:24:25:39:9e:57:86:a7:1a:00:77:
c2:6d:a6:da:ad:10:46:18:fd:d0:06:60:a4:fc:e8:
73:f4:d1:f9:3d:40:59:f6:bd:24:7d:9e:20:69:0e:
56:ec:7e:e1:54:dc:21:80:f2:fc:4b:11:f0:43:e3:
ba:e6:a1:c9:f6:64:1d:48:2b:47:60:0c:f3:93:c1:
45:6b:79:26:2a:f6:5c:64:b3:ab:ef:58:72:85:2c:
ac:33:a9:ae:77:65:cb:e6:2c:83:af:60:6c:9c:9b:
fe:c4:29:35:c8:c7:22:14:21:98:d0:79:fd:fc:70:
f9:1d:7f:c0:c3:ff:10:2b:25:0c:51:48:ab:b1:01:
69:c2:79:d0:7d:5f:06:4e:9b:af:84:38:c9:43:37:
5b:c4:8f:c7:63:d0:f8:35:f6:4f:d9:2a:58:ba:d4:
2f:ca:1c:b6:9d:86:6c:1e:b5:3b:8e:9d:5a:60:67:
db:f7:e4:ff:68:e1:4d:03:22:9d:03:4c:67:58:f7:
9b:22:f5:88:02:76:d4:9b:e5:28:23:22:77:73:2c:
1c:76:27:13:79:d6:f7:ad:ec:b4:c8:30:37:83:0e:
4c:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:33:1D:9C:4B:55:EE:94:58:A5:85:D1:7C:4C:3E:86:97:0A:46:B3
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/1DFCFE4ECE7E11EFA17451B8762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.239.142.0/24
Signature Algorithm: sha256WithRSAEncryption
a0:8b:2a:7a:95:64:c1:2d:4b:a9:cd:61:b9:dd:ec:dd:6a:4e:
09:97:2e:93:a5:05:64:1a:06:be:3a:1c:60:17:f0:34:11:91:
b5:60:40:79:4f:a0:44:a9:b3:31:b1:8f:d0:4f:f6:c5:3c:0f:
01:77:0d:b0:af:51:05:0d:33:f4:eb:07:ac:69:30:bb:46:92:
3b:44:9e:72:4f:b2:eb:a5:1d:87:97:d3:3c:3a:d3:b6:96:26:
c6:76:cf:d6:5c:d3:30:73:be:ce:40:87:78:83:8b:09:05:9d:
92:40:63:8e:ec:11:98:7b:6e:f5:d3:08:bb:ff:fc:29:a2:96:
70:6c:26:31:7b:81:ae:25:3b:af:c8:28:f8:2a:dc:90:86:a8:
6d:48:1e:f6:5a:eb:bf:1d:03:4f:81:ab:32:32:0c:cb:55:9a:
8c:93:fb:14:8a:9f:8a:3a:e3:ec:6f:df:19:00:60:0e:6a:08:
62:64:2c:bd:34:00:0a:83:34:10:da:d6:49:2a:7a:8e:d6:da:
7a:60:cb:63:cd:61:08:1b:c0:14:16:d6:33:40:7e:6b:de:29:
1c:14:3a:c4:33:ca:ef:08:3c:6b:c8:15:1f:30:dd:85:b2:d0:
d0:9e:cc:14:72:b8:dc:0e:a5:98:35:bc:7f:e2:63:cf:26:5e:
11:30:c9:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 10:01:30 2025 by rpki-client