Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/58C35350C10111EFAE48316A762E951A.roa
File: 58C35350C10111EFAE48316A762E951A.roa (raw, json)
Hash identifier: UZoe0ZB3tf+PCPnViD3+QA6kv2OryXgAkbqYZ+SKeGc=
Subject key identifier: 53:04:60:D4:08:61:CB:AD:CA:E1:67:89:24:AC:8F:5E:3C:6A:66:2D
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: E81C
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/58C35350C10111EFAE48316A762E951A.roa
Signing time: Mon 23 Dec 2024 07:41:40 +0000
ROA not before: Mon 23 Dec 2024 07:41:36 +0000
ROA not after: Sat 01 Feb 2025 07:41:36 +0000
asID: 137899
IP address blocks: 156.238.224.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 59420 (0xe81c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Dec 23 07:41:36 2024 GMT
Not After : Feb 1 07:41:36 2025 GMT
Subject: CN=67691434-dfcc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:01:3c:c0:9e:bb:84:af:1c:07:0c:fb:e5:89:
8a:c3:ab:ff:1f:9c:83:4f:ac:73:c7:ec:f2:7d:0d:
b1:c3:71:de:d6:07:4f:7e:0d:9a:18:46:14:70:a8:
2d:ae:d9:d2:c9:67:df:c6:a0:f2:05:12:4e:4d:f2:
83:4b:a2:a4:b3:47:01:4a:a9:5d:dc:5f:2e:47:d9:
0a:2e:d5:57:c0:85:39:d7:23:75:4a:31:96:d9:18:
98:5d:fc:86:0a:53:91:00:85:aa:de:cf:14:31:8f:
fa:91:9a:dc:8c:3b:ef:b1:65:85:b3:8b:40:71:6a:
4f:5f:37:87:35:14:0d:bf:d9:00:ee:db:0a:d3:24:
46:21:8f:52:59:7d:8f:dc:b0:4b:e3:7f:68:4f:a9:
35:76:72:2c:b6:9c:90:b0:fa:2c:b1:21:90:1b:18:
2d:23:0e:ac:a5:fa:bf:ea:1b:ed:06:f7:46:e6:7f:
56:42:0a:7e:06:f2:a2:43:88:e1:ba:f4:94:79:07:
b1:db:5d:62:f1:37:da:5d:e7:7a:cb:43:47:25:3c:
b8:02:ea:95:a1:70:95:b0:e5:ed:8d:f4:87:17:f3:
c8:70:b8:80:df:4c:07:58:34:86:d4:5f:34:b6:24:
75:0c:07:79:73:d4:1b:1a:06:cd:88:f7:54:9f:df:
a9:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:04:60:D4:08:61:CB:AD:CA:E1:67:89:24:AC:8F:5E:3C:6A:66:2D
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/58C35350C10111EFAE48316A762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.238.224.0/19
Signature Algorithm: sha256WithRSAEncryption
85:d9:46:0a:87:8c:71:bb:ae:0d:61:83:8f:4e:0d:3c:59:7d:
a2:33:23:b9:e3:c5:78:6b:c1:bf:20:1a:96:3b:be:24:0e:38:
c6:e8:e2:88:02:e9:68:9b:76:00:ce:16:e0:13:f5:36:d3:73:
2a:f9:3a:0b:cd:54:33:a1:fb:75:13:cf:72:a2:cc:4f:e1:7c:
4d:11:57:d4:9d:29:26:f8:8c:b0:d5:3f:8f:0b:f8:27:5a:09:
47:13:4b:38:4e:ef:7e:1c:86:47:d6:d5:be:3c:56:9b:2a:f5:
f6:41:d0:ff:3c:1c:98:af:9f:5a:ce:f1:16:7a:36:33:0c:41:
45:29:81:a8:24:89:87:97:e4:ff:a0:4e:b0:eb:a1:7b:26:45:
d1:19:12:e5:e0:16:02:09:01:41:ef:97:ac:18:53:da:e6:49:
5d:32:52:ab:ba:b6:fd:f6:5d:6c:c6:26:61:59:94:3a:32:34:
26:04:c0:aa:f1:2d:06:e3:45:eb:c9:1b:e9:d6:13:cf:ad:23:
c6:41:f5:f3:b1:68:19:aa:fd:0d:42:17:32:ef:58:1f:1b:c3:
2b:38:d0:6e:9a:ee:c9:33:1a:1c:68:92:98:a9:18:fc:22:04:
14:be:d9:7a:b3:31:7f:cb:83:f4:e3:70:33:22:09:40:68:f6:
34:87:dd:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 09:52:37 2025 by rpki-client