Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/280BD12AC47511EFBCAB7560762E951A.roa
File: 280BD12AC47511EFBCAB7560762E951A.roa (raw, json)
Hash identifier: mhUIZyX3QMGZqEw8uzuM7Lf1E6Bw9my3/k7silLX7i8=
Subject key identifier: BA:73:3C:18:58:88:CA:10:A0:43:7F:A1:85:CC:AC:BA:7C:CF:5E:E4
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: F0DA
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/280BD12AC47511EFBCAB7560762E951A.roa
Signing time: Fri 27 Dec 2024 17:08:13 +0000
ROA not before: Fri 27 Dec 2024 17:08:10 +0000
ROA not after: Sat 01 Feb 2025 17:08:10 +0000
asID: 203020
IP address blocks: 156.253.136.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 61658 (0xf0da)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Dec 27 17:08:10 2024 GMT
Not After : Feb 1 17:08:10 2025 GMT
Subject: CN=676edefd-fb66
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:55:c9:67:f2:37:28:9e:14:c3:43:5d:55:16:
3b:12:5a:35:5a:1f:e7:c7:e2:87:9d:48:af:00:c2:
70:0f:47:b9:06:ec:3d:5b:2f:bf:dd:04:29:ac:85:
46:37:8a:50:85:46:eb:4e:d6:b6:b5:ce:da:ce:44:
d3:a7:73:47:41:b3:c1:ee:7b:61:22:99:a8:5d:de:
b3:56:39:cc:83:64:ef:03:4e:92:43:bd:8e:f7:88:
f1:fa:fc:d8:d9:a5:5b:a2:c5:c1:fd:81:4c:2b:ab:
15:d8:db:86:70:cc:a1:16:42:53:38:a7:5a:b9:d6:
37:47:59:a6:2b:2c:a2:25:89:97:93:8a:90:57:83:
be:e4:96:1c:ff:21:ff:3f:af:53:d2:1a:a9:8c:5f:
48:c3:c9:f4:ba:af:f2:6b:3a:ba:13:bd:99:3c:56:
49:4e:2b:fa:98:74:41:80:b1:69:cb:0b:4b:58:36:
11:d6:e8:5a:a7:f5:b5:b3:0f:e9:26:5e:50:e5:3a:
34:d0:aa:48:41:06:11:33:43:6d:06:7e:a0:62:08:
fb:2a:ec:f4:78:bf:49:be:7a:99:66:f5:cb:65:09:
2f:03:e6:81:dc:17:f4:2e:f0:b8:32:10:6e:42:c2:
f6:07:45:19:2c:05:fc:e7:6e:76:2e:40:36:06:2a:
50:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:73:3C:18:58:88:CA:10:A0:43:7F:A1:85:CC:AC:BA:7C:CF:5E:E4
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/280BD12AC47511EFBCAB7560762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.253.136.0/24
Signature Algorithm: sha256WithRSAEncryption
66:88:f0:bf:f8:3e:70:e5:bf:4f:19:84:8a:ad:78:94:0f:35:
c7:c0:5f:36:f9:5e:5f:92:51:ab:3f:2c:fc:3a:c6:5e:d7:a1:
f2:9b:ac:30:3b:94:9f:5c:50:69:00:64:7f:15:9d:f9:7c:14:
9f:79:43:f5:3e:1d:9f:ff:c1:80:b8:df:4d:71:cd:b0:08:be:
b9:5b:87:36:b0:d0:e2:bd:5f:7e:01:d2:0e:c0:41:6e:b0:63:
82:3b:a3:2e:c6:3f:90:9d:93:f8:1f:62:41:0e:d5:12:40:dd:
67:e0:9c:6b:51:c8:ea:7f:e9:a4:0f:c5:86:d2:2d:b3:60:1f:
5f:b4:fd:67:20:f6:ff:c5:81:b3:75:13:70:18:c9:99:f1:f5:
7d:36:e5:a4:e9:55:3f:b1:cc:aa:03:bb:9c:ce:3c:2e:96:48:
81:2a:0a:ec:e6:e3:21:3a:6d:7f:3e:fc:b6:03:96:2f:80:2a:
a3:fd:11:d3:e7:ba:cd:1e:34:6c:a6:e8:19:bf:fb:71:2b:30:
21:38:6f:91:3c:2b:4b:a9:b0:88:3b:8b:14:f9:97:7e:14:bb:
d9:26:57:44:55:20:eb:40:f9:49:15:69:b8:2c:b1:21:d4:86:
fa:31:6c:30:a8:5e:55:56:a0:86:24:3a:e8:e2:27:f5:db:55:
08:45:e7:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 09:38:01 2025 by rpki-client