Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/4A02883CB92611EF9540DC81762E951A.roa
File: 4A02883CB92611EF9540DC81762E951A.roa (raw, json)
Hash identifier: D7yyBeFH0Dtvvj5DnQg4Z1Ej7SQXg2caOr6PgqyNm7o=
Subject key identifier: 41:6E:0A:89:EB:51:61:8B:E7:E0:3A:8A:AF:BE:CB:0C:8B:3C:BF:5E
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: E30B
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/4A02883CB92611EF9540DC81762E951A.roa
Signing time: Fri 13 Dec 2024 07:45:57 +0000
ROA not before: Fri 13 Dec 2024 07:45:54 +0000
ROA not after: Sat 25 Jan 2025 07:45:54 +0000
asID: 48031
IP address blocks: 156.246.128.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 58123 (0xe30b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Dec 13 07:45:54 2024 GMT
Not After : Jan 25 07:45:54 2025 GMT
Subject: CN=675be635-e428
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:43:28:55:ab:96:10:bb:dc:21:dd:ef:10:a9:
ec:4f:38:a8:bc:74:dd:de:4c:ff:8f:b1:0c:f0:95:
1d:f7:72:85:fd:19:b3:69:d4:1b:2f:31:22:9b:cc:
ee:07:7b:b8:34:8a:3f:ce:73:f2:a9:cf:66:38:c8:
7e:78:ca:9e:81:94:b8:8d:74:78:21:5c:fb:1d:d8:
39:a3:9f:0b:77:b9:33:9f:2d:08:3b:62:0b:59:c5:
46:b4:7d:e4:ad:cf:18:8e:e9:d2:ad:74:48:8b:ae:
88:6e:2a:e9:eb:45:da:00:f4:9b:e4:4e:9c:77:f6:
23:44:32:fc:12:0e:e4:d6:82:a5:fa:8d:6f:21:20:
1d:ae:55:ce:31:0f:1f:51:ce:27:a8:60:d5:1d:22:
02:8f:e3:13:01:42:ba:e4:55:a8:54:29:e0:54:e7:
b0:22:d8:25:4b:c7:f9:b3:73:2e:77:d0:12:aa:97:
11:41:4b:f9:9c:2f:ef:88:2c:49:54:12:b6:fa:db:
d7:33:4b:85:e7:e8:b9:38:e0:ff:0d:30:61:02:14:
b7:9d:43:65:5c:5f:e2:20:de:38:09:22:43:bf:e0:
5f:a4:dd:5f:88:74:69:a7:81:1d:9d:8d:a8:02:17:
81:2d:03:00:52:7f:76:a3:0e:56:0c:49:68:da:f7:
c4:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:6E:0A:89:EB:51:61:8B:E7:E0:3A:8A:AF:BE:CB:0C:8B:3C:BF:5E
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/4A02883CB92611EF9540DC81762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.246.128.0/20
Signature Algorithm: sha256WithRSAEncryption
39:8a:89:34:ee:06:14:8c:b1:ff:35:10:3b:e2:ac:e9:27:8c:
ec:08:a1:48:0e:39:d4:66:d3:47:6c:dc:cd:d2:27:67:2f:16:
55:d5:24:55:a3:96:a1:04:5e:a4:ac:52:15:c4:24:be:b8:a2:
cd:75:74:dc:77:b7:2d:93:99:b3:89:d2:84:22:eb:32:e3:3e:
e3:be:0c:68:9b:b9:2a:07:a1:2a:40:ce:94:3c:08:38:d6:42:
7c:54:8e:1c:68:ac:43:7e:d0:a9:b1:38:94:8e:11:a1:89:a2:
0c:24:46:b6:7f:e2:3c:63:fd:a2:3a:8f:ba:95:98:15:b1:8c:
34:b5:54:09:8f:39:68:f1:06:80:ea:b9:23:d5:e2:e1:7e:b5:
85:fc:af:1d:31:e5:9b:04:4d:d6:b6:c0:94:bc:72:10:bb:6e:
15:b6:da:7e:c1:ea:0b:93:e3:19:46:b8:67:d9:31:81:ad:f0:
4b:fb:b6:2d:ed:54:0d:c8:87:cf:94:fd:c4:c0:6f:fe:e9:9d:
db:cf:0e:0c:ec:83:93:ff:89:9b:b6:a1:b3:6f:15:fb:55:6a:
0a:60:49:a3:74:42:01:e4:20:68:ba:c2:3d:73:77:7e:52:2a:
6a:07:e1:44:7c:3b:40:7e:bd:15:45:52:82:ce:14:57:f1:9f:
c3:66:b0:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 09:47:38 2025 by rpki-client