Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/268C92F6CE7C11EF9AF7A6AB762E951A.roa
File: 268C92F6CE7C11EF9AF7A6AB762E951A.roa (raw, json)
Hash identifier: p3ww3BPL35yyQYXQN8q3sg1GSgnpP6mQpkzMIhDyXvc=
Subject key identifier: F7:50:3C:8E:FD:48:A0:AC:79:42:D8:A6:79:40:0A:3D:57:2C:2B:CF
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01035B
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/268C92F6CE7C11EF9AF7A6AB762E951A.roa
Signing time: Thu 09 Jan 2025 11:23:29 +0000
ROA not before: Thu 09 Jan 2025 11:23:25 +0000
ROA not after: Wed 22 Jan 2025 11:23:25 +0000
asID: 212238
IP address blocks: 156.239.18.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 66395 (0x1035b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Jan 9 11:23:25 2025 GMT
Not After : Jan 22 11:23:25 2025 GMT
Subject: CN=677fb1b1-dfa7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:60:a1:ad:75:3a:ae:2e:f1:60:27:81:6e:bf:
85:ef:fb:b4:e7:ec:4d:b4:e4:6f:58:67:b3:1f:52:
04:dd:2f:c4:ec:2a:d7:b8:ec:e0:91:f6:9f:43:f1:
6c:ca:98:8e:50:f8:fa:e1:7d:90:be:25:b9:41:b5:
0d:92:21:7b:6d:db:dc:b7:22:cd:60:b3:b1:f8:a7:
11:be:f1:ec:4d:3e:2d:6c:a0:f9:c8:10:17:84:ad:
04:69:e8:a2:24:07:bb:71:05:92:b5:4e:5d:89:02:
1a:36:61:4c:73:5d:5c:46:45:05:2a:13:a0:ee:e8:
24:0c:db:46:fc:6a:c4:79:fc:a6:c7:0e:4f:8e:81:
f8:50:af:6a:92:ee:b9:08:60:5e:40:13:34:5c:43:
b4:14:2c:55:90:ef:9f:ee:37:67:00:28:f4:bf:fe:
eb:6e:1e:0f:14:ef:47:4f:f2:a0:5b:e1:d4:1e:f1:
c8:e2:4f:b5:bf:e4:7c:3a:ee:09:dd:db:6f:22:2d:
c1:6e:c2:9b:08:29:36:03:ae:7d:8e:8a:e5:fe:52:
92:1a:ee:6a:fa:c0:f7:0a:6f:74:92:fa:fa:25:a5:
b3:d0:2e:bc:ac:16:d2:e4:f0:9c:ec:ed:4f:b4:73:
7a:9c:c7:3d:af:bb:c9:37:bd:fc:6f:1d:50:79:55:
e1:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:50:3C:8E:FD:48:A0:AC:79:42:D8:A6:79:40:0A:3D:57:2C:2B:CF
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/268C92F6CE7C11EF9AF7A6AB762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.239.18.0/24
Signature Algorithm: sha256WithRSAEncryption
b8:b3:7e:38:69:59:2b:4f:ca:03:1d:e0:78:41:c2:05:c1:ee:
fa:9c:05:f3:5b:a4:d3:81:28:2c:6d:7c:e1:08:c2:69:f3:f9:
3b:15:8e:ef:01:81:fc:1e:70:3b:9c:d0:61:dd:60:a1:ee:cd:
f1:ec:3c:7c:2b:d1:6d:ed:c3:09:53:73:38:53:1e:b0:29:7d:
b1:0b:c7:8c:be:1a:5d:97:fd:7a:ad:40:48:f4:c9:a8:73:12:
99:04:3c:cc:c8:6a:7c:fd:cb:3b:1d:f1:70:30:69:82:a2:46:
e3:72:d6:08:78:d6:06:8a:66:48:d0:8d:a0:48:ea:13:a8:36:
b1:b0:4b:71:42:31:d6:7e:98:b5:d4:7b:14:1e:3a:08:03:90:
34:aa:bc:c6:e2:d2:26:7c:52:71:2a:ad:12:e6:24:eb:a9:84:
f3:ef:fc:51:50:89:c3:4e:e9:93:20:97:50:6b:28:f1:73:6a:
88:6a:ec:70:e9:da:d0:b7:1e:69:c2:05:93:8e:6f:ba:e6:80:
49:6b:3d:f5:fd:5d:7f:70:af:64:1c:d0:88:ae:45:4d:8a:27:
0d:e2:55:92:85:39:e7:25:d9:3f:21:f4:cc:f4:d6:02:b7:40:
cc:d6:08:32:b6:b0:66:48:aa:e4:45:8c:00:d5:d6:ae:f1:8c:
1e:a6:54:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 09:43:56 2025 by rpki-client