Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/3BA97162BA2811EF8B20DF4F762E951A.roa
File: 3BA97162BA2811EF8B20DF4F762E951A.roa (raw, json)
Hash identifier: xpA5w63oWNk2M1SOjdJAItdhBYlcnooUxGEopygncY0=
Subject key identifier: 5F:7B:65:35:AF:57:0C:AF:D5:25:BA:4F:AA:2A:58:63:AE:5C:04:83
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: E3B0
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/3BA97162BA2811EF8B20DF4F762E951A.roa
Signing time: Sat 14 Dec 2024 14:32:24 +0000
ROA not before: Sat 14 Dec 2024 14:32:20 +0000
ROA not after: Mon 20 Jan 2025 14:32:20 +0000
asID: 60223
IP address blocks: 156.253.219.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 58288 (0xe3b0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Dec 14 14:32:20 2024 GMT
Not After : Jan 20 14:32:20 2025 GMT
Subject: CN=675d96f7-a594
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:bf:32:d1:87:33:05:4e:18:c3:54:7a:b2:e7:
44:77:be:9c:76:d4:a0:6b:31:a5:8b:9f:64:84:38:
2e:41:3f:b0:13:af:82:c4:f2:a9:90:0f:49:dd:d1:
1f:22:8d:13:f3:1e:b6:18:42:5e:d7:51:c4:d6:55:
e7:e4:2a:2e:7a:86:42:f1:ee:b6:b3:96:6c:8b:20:
65:dc:b4:fb:6b:43:e1:34:66:bc:56:5c:e7:57:66:
05:ae:c9:d2:1e:4e:45:97:32:88:7b:d4:42:7a:d3:
3e:db:f3:43:cf:ac:47:41:c1:64:72:02:07:29:be:
33:c9:9c:67:8b:28:84:0c:a0:1d:0b:12:74:8e:9b:
17:21:e1:3f:b0:51:e5:88:ae:7e:7f:40:50:8b:71:
9c:58:ce:ee:47:b5:f9:52:f2:b9:30:df:80:f0:f8:
3d:e8:df:d7:c1:31:2e:43:76:cf:ab:52:d5:13:45:
25:f4:2d:9f:da:bb:87:ba:86:5e:08:5e:e4:d6:e7:
70:7a:e0:09:30:0c:fc:06:ce:47:e5:b4:28:84:c9:
6e:77:be:e2:33:9c:35:40:84:10:65:e7:f4:67:b7:
fa:9e:8c:90:02:28:37:3b:6c:cf:15:9e:b9:58:bc:
8b:72:74:68:bc:0a:74:9d:b8:38:39:c7:fb:c0:b9:
c1:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:7B:65:35:AF:57:0C:AF:D5:25:BA:4F:AA:2A:58:63:AE:5C:04:83
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/3BA97162BA2811EF8B20DF4F762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.253.219.0/24
Signature Algorithm: sha256WithRSAEncryption
0c:4b:3e:01:55:15:f7:40:ed:cb:4f:28:21:24:ea:3d:2d:b9:
f6:52:23:90:a6:5b:d8:98:f4:eb:5b:6d:95:d1:5d:47:f4:db:
1a:be:d5:90:14:01:ec:bf:84:b4:4f:3c:f4:36:ba:47:f5:52:
3d:7b:8f:0d:ba:57:ff:53:21:7c:fe:4b:71:d5:d7:0d:7b:d2:
1e:52:cf:41:b0:8e:1c:2f:34:28:3f:64:a8:e3:fc:00:47:86:
72:ad:4c:d7:83:77:7b:f3:a3:fb:fe:e3:af:1f:8e:de:09:0f:
eb:d0:47:11:c4:cf:bb:e3:32:c3:7b:f0:cf:25:d0:e1:d7:5e:
29:cf:2e:a6:0f:c7:ef:37:2a:26:f4:9a:8c:31:68:c3:36:ac:
fd:46:6e:28:8b:a9:cd:1e:fd:55:fa:af:cb:05:fd:8b:15:f5:
c4:0c:63:e0:be:8e:3f:4a:9c:65:3d:a0:9c:ba:86:d0:3a:51:
0d:e9:62:e1:60:a2:42:4d:b1:21:b8:54:c9:22:9a:c5:eb:0d:
ab:16:32:34:88:e1:db:40:79:ac:6d:74:c1:2e:03:5a:c6:b4:
00:dd:3a:a8:07:7b:31:c3:e6:1b:c5:db:cb:ab:bf:5e:cb:dc:
d8:bf:bd:32:3f:18:ac:4b:fa:a3:26:81:8f:9e:4d:ca:9d:6b:
3d:32:74:9b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 09:44:07 2025 by rpki-client