Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/470D6A5EB92911EFA80D3E93762E951A.roa
File: 470D6A5EB92911EFA80D3E93762E951A.roa (raw, json)
Hash identifier: atdEMIW1mfhpNPKLEoKC+1tdM8obVF5bmxWGuHJTAI4=
Subject key identifier: 01:52:8E:36:05:E3:A6:FF:AB:37:07:C3:F1:65:9A:3C:13:46:44:B1
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: E32F
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/470D6A5EB92911EFA80D3E93762E951A.roa
Signing time: Fri 13 Dec 2024 08:07:21 +0000
ROA not before: Fri 13 Dec 2024 08:07:17 +0000
ROA not after: Sat 25 Jan 2025 08:07:17 +0000
asID: 202656
IP address blocks: 156.246.161.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 58159 (0xe32f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Dec 13 08:07:17 2024 GMT
Not After : Jan 25 08:07:17 2025 GMT
Subject: CN=675beb39-37bf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:44:f4:45:9f:db:b5:9c:12:2f:82:f6:be:1d:
9e:0f:88:a3:d0:25:57:ba:c1:0c:fe:49:d8:b5:ca:
79:23:99:87:ce:fd:56:2f:28:f0:9d:88:b8:24:dc:
39:a8:35:94:95:51:22:fd:8a:a7:c5:0c:85:5a:ae:
d1:98:1a:31:3d:42:f4:29:1f:ba:2f:0b:43:a6:cc:
c2:f8:78:47:9e:d6:f8:9e:5a:10:b3:cb:18:bc:d3:
e9:e4:47:a9:7a:8f:db:9a:24:0a:bb:14:fa:0a:99:
81:dc:af:fc:d5:40:32:81:cb:a7:23:fb:6a:d6:b6:
ec:e6:c3:01:cf:15:83:87:b3:ad:86:04:2d:21:81:
d3:e4:76:95:26:6b:e9:ba:d9:eb:f2:db:02:f7:01:
53:41:d2:ad:5f:48:58:a6:dd:72:f4:49:d3:08:74:
3c:67:cc:86:13:68:5a:c7:9a:28:97:29:5e:0a:aa:
ab:af:b2:fc:bb:fb:77:c1:29:23:07:21:e6:f0:0f:
34:54:5f:1b:24:a8:60:6f:0a:bb:10:c8:36:c1:74:
d2:d9:98:0e:f0:74:c7:c6:16:38:20:d6:b9:65:e7:
52:ab:a8:9a:cc:d5:cb:71:84:5b:45:1c:c0:04:0b:
23:62:ff:08:25:f5:0c:31:cf:16:b1:04:1e:39:40:
38:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:52:8E:36:05:E3:A6:FF:AB:37:07:C3:F1:65:9A:3C:13:46:44:B1
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/470D6A5EB92911EFA80D3E93762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.246.161.0/24
Signature Algorithm: sha256WithRSAEncryption
b4:9d:bd:6a:76:8a:04:11:c3:9c:50:40:09:13:6d:33:f1:c1:
8d:f9:13:b2:16:4c:d9:3c:64:68:ca:ba:92:c2:6f:92:1c:df:
f2:e5:34:e4:29:b9:cd:84:2f:fa:be:3d:b7:5f:7d:78:54:6c:
85:f3:18:77:76:5c:b1:42:93:c3:55:35:72:a3:f6:67:62:54:
bf:9a:73:74:8f:73:de:f7:f2:c9:af:19:a8:1f:df:3b:c2:d6:
2a:f4:55:9d:f1:5f:e9:2b:2e:4a:d3:2d:56:24:0b:75:f9:2b:
fa:55:69:51:e4:05:96:37:27:10:18:6d:b1:5a:92:6f:be:c9:
a2:13:6f:81:f4:9d:ad:06:2d:68:c0:59:99:c7:b1:22:02:fa:
3d:ae:5d:d9:51:01:28:6e:a9:5d:18:0a:50:fa:8c:df:78:db:
2c:98:bc:19:e0:72:fb:16:3f:0a:0c:54:cc:32:e9:ee:6f:18:
1a:b9:08:bb:6d:65:d9:6d:d3:f4:9d:a4:95:09:de:f2:4a:33:
38:af:00:09:a3:2f:d9:6f:e9:59:f6:9b:14:95:ee:79:d9:b4:
31:4f:26:1c:42:cf:fc:46:bb:fc:43:2f:9a:55:76:c5:68:6d:
62:f1:7f:10:06:53:56:1b:bd:b8:71:73:a9:50:25:ba:07:8c:
16:86:ee:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 09:49:55 2025 by rpki-client