Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/2440FC66CACC11EF86F65AA6762E951A.roa
File: 2440FC66CACC11EF86F65AA6762E951A.roa (raw, json)
Hash identifier: qtZy8AIEFZ7uAYKUZwVEsfRb0dUFDYbdxPLAsgdbuaw=
Subject key identifier: 3E:38:49:12:3A:90:43:B7:2A:01:23:7B:D4:D1:86:15:59:F0:3E:9F
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: F758
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/2440FC66CACC11EF86F65AA6762E951A.roa
Signing time: Sat 04 Jan 2025 18:46:00 +0000
ROA not before: Sun 05 Jan 2025 18:45:57 +0000
ROA not after: Fri 17 Jan 2025 18:45:57 +0000
asID: 39600
IP address blocks: 156.255.82.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 63320 (0xf758)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Jan 5 18:45:57 2025 GMT
Not After : Jan 17 18:45:57 2025 GMT
Subject: CN=677981e8-e68b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:be:14:f1:5c:3d:c1:82:16:3d:43:3c:9a:f6:
ec:a7:6c:ad:2d:95:9b:9f:44:fb:86:90:ab:da:72:
d9:05:17:9f:71:00:43:01:a1:c3:f8:82:83:f0:33:
cf:61:67:6f:bc:5f:a7:18:62:05:82:cb:66:03:4b:
34:51:a6:8e:82:ee:ec:f3:9a:8f:20:8f:2b:87:e2:
d0:ac:e6:66:bf:93:ac:07:2f:60:ca:00:60:66:04:
a3:eb:62:f9:00:45:1a:c6:8e:85:4d:c5:45:87:5c:
e2:01:51:b5:d5:30:a6:05:ce:38:32:cb:c8:e8:fe:
e4:d0:de:95:93:15:fc:af:6d:3a:1e:45:c3:b0:b5:
32:25:2c:ca:67:ff:3d:73:1a:7c:e5:c6:c8:47:ee:
fb:dd:f7:e2:10:ac:3a:85:a3:b2:70:f0:9f:ef:2a:
c6:fc:99:47:26:c3:e3:09:e3:67:08:6c:09:47:16:
d6:f4:cf:cf:87:bf:58:9d:ba:e2:4f:6c:00:53:9c:
e5:30:e7:ef:6b:85:ed:ca:e9:54:77:a9:db:fd:dc:
e2:6f:5f:1b:ce:21:8b:6e:ba:e3:df:9d:80:11:39:
e1:07:d1:51:84:60:3c:18:3a:08:89:55:40:2b:37:
91:69:df:0c:e6:7a:e3:2f:66:31:b4:bd:5e:da:67:
b6:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:38:49:12:3A:90:43:B7:2A:01:23:7B:D4:D1:86:15:59:F0:3E:9F
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/2440FC66CACC11EF86F65AA6762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.255.82.0/24
Signature Algorithm: sha256WithRSAEncryption
5b:d0:c9:28:85:6e:fb:13:6b:ae:95:84:1a:b5:cb:b0:46:d5:
09:9e:3b:e6:42:79:e7:45:de:a2:5e:78:68:b2:f8:ad:76:08:
e4:f2:cd:f8:56:6c:72:2e:8a:b2:d5:08:1a:79:5c:60:90:7f:
1d:a7:e3:b9:55:f1:e1:dd:ba:44:c8:5d:b2:76:9f:2d:18:61:
01:bd:2f:b7:62:13:e8:1e:6e:ee:bb:6f:fa:2a:fe:63:c2:71:
e1:41:a8:ff:88:b2:a6:a8:28:ac:ab:42:af:a2:65:39:a2:6d:
31:18:72:62:fe:e7:7b:97:83:df:36:f6:4c:76:c3:5e:3f:1d:
e5:8f:72:fa:e0:3b:63:32:ca:54:99:3f:0f:02:22:01:b7:62:
f0:af:b7:f5:b6:62:44:c1:7a:3b:e2:3e:81:88:65:d7:a2:70:
5c:ff:4e:0f:39:1f:b0:c6:0b:b4:67:02:8f:0c:e1:10:8c:47:
06:53:10:3d:81:cf:e1:1d:f6:60:45:5a:61:9b:42:11:34:96:
48:57:00:fe:89:6b:93:ea:34:1c:41:de:92:77:83:fa:7a:65:
d7:88:f3:84:45:8e:5c:56:0d:7e:05:83:9c:26:aa:85:ba:a2:
c7:a1:a2:20:6f:0c:1f:7e:18:e3:6a:de:25:8f:d3:72:95:37:
15:af:b3:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 09:52:22 2025 by rpki-client