Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/5215675CEF8011EFAD164B5B762E951A.roa
File: 5215675CEF8011EFAD164B5B762E951A.roa (raw, json)
Hash identifier: qDQI5bABHVyzsJaPNiiwqcqDsRm8N/pU/BpcHz5ROWw=
Subject key identifier: 81:EE:CE:8D:8A:B5:75:98:BA:1C:96:8A:C5:4D:46:7F:65:F1:97:E3
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 0125CF
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/5215675CEF8011EFAD164B5B762E951A.roa
Signing time: Thu 20 Feb 2025 11:46:29 +0000
ROA not before: Thu 20 Feb 2025 11:46:16 +0000
ROA not after: Thu 20 Mar 2025 11:46:16 +0000
asID: 54600
IP address blocks: 156.239.32.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 75215 (0x125cf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Feb 20 11:46:16 2025 GMT
Not After : Mar 20 11:46:16 2025 GMT
Subject: CN=67b71614-5e64
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:6c:e6:7c:49:b3:83:47:5d:55:ec:ae:24:d7:
e1:49:81:88:82:7b:98:f4:75:8f:e1:f2:fc:d6:9e:
ed:bd:d3:1f:a6:13:eb:f0:f6:45:c6:70:15:63:8b:
e6:81:34:de:ff:99:9e:79:c2:c2:62:24:05:8d:6a:
a1:65:6b:46:39:94:46:32:57:4c:59:d6:7f:d3:80:
55:c7:f9:9a:9c:b5:54:b5:4d:75:84:5a:bd:79:7b:
ee:1c:47:96:76:db:04:aa:2e:90:b2:e4:90:c4:2d:
9d:d8:29:20:d4:14:ca:14:23:0e:54:e9:25:eb:a3:
75:f1:77:48:dd:dd:fd:04:c1:63:86:17:5b:c7:2d:
ce:f9:ca:83:70:a8:93:a4:99:ff:4f:3e:2a:85:69:
21:8b:48:54:b3:ca:db:b7:ed:1b:a8:01:5a:43:1a:
54:84:66:e8:5f:d5:b6:ad:9d:7d:7c:fd:99:93:0f:
db:4f:05:5f:60:09:03:71:b5:49:83:9d:60:f3:5a:
c1:df:9e:b2:c9:88:c4:ba:67:85:63:1c:3c:5c:28:
30:93:e4:1f:84:14:b8:1a:f5:ea:34:91:57:90:e3:
88:b0:c9:52:54:92:91:db:3c:e3:73:b6:04:35:a8:
22:88:66:fe:f8:fe:c5:a8:57:a5:66:1c:e2:b7:b3:
41:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:EE:CE:8D:8A:B5:75:98:BA:1C:96:8A:C5:4D:46:7F:65:F1:97:E3
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/5215675CEF8011EFAD164B5B762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.239.32.0/20
Signature Algorithm: sha256WithRSAEncryption
17:91:f7:7a:9d:0d:6b:98:35:49:90:65:f2:5f:3a:2d:74:b7:
83:94:94:14:8e:42:fa:58:07:b1:f0:bb:9c:ce:1c:28:a4:90:
4e:40:7a:d1:c3:df:34:1c:db:c8:14:81:0a:5a:a4:71:4d:61:
3d:61:18:2d:d7:8f:f4:79:02:35:ed:14:84:3e:e4:a8:b9:45:
c6:b9:3b:46:67:ea:08:29:56:6c:2d:13:4f:c8:3d:ea:b9:31:
97:cd:b7:43:2f:08:f2:2f:a9:71:15:91:22:3b:03:f3:ba:aa:
35:35:97:16:ff:6f:31:65:cc:4b:05:de:1f:6c:b9:87:8f:78:
af:d8:d6:28:6f:b9:17:07:f5:da:cc:15:c8:48:7d:74:37:04:
bf:f9:85:e3:af:e1:0a:b0:d5:de:77:d7:83:14:3e:b4:0c:29:
11:dc:71:e3:c8:1f:91:9b:4f:49:6f:e6:dc:d0:aa:00:bc:08:
9d:82:bf:03:e7:26:b6:30:4f:f5:87:15:f4:20:4d:a7:07:a8:
25:ed:d4:de:cd:50:15:96:70:0f:eb:34:ef:a0:03:ab:1a:5d:
57:52:62:f1:34:f5:f5:cd:d9:f5:d0:3d:34:7d:b5:c8:c6:30:
90:f3:cf:72:ee:02:5b:58:c6:30:37:cf:dd:94:1b:6c:b9:72:
40:17:77:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 9 10:00:40 2025 by rpki-client