Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/59F379BCCE8011EF91529947762E951A.roa
File: 59F379BCCE8011EF91529947762E951A.roa (raw, json)
Hash identifier: ObHm+XrmVZO7HUANTicnI86strjlqWFEKrqZumODhFg=
Subject key identifier: FE:6F:06:01:5B:EF:C3:00:9A:1F:A4:FA:DD:E3:72:76:73:A1:34:0D
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 010396
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/59F379BCCE8011EF91529947762E951A.roa
Signing time: Thu 09 Jan 2025 11:53:33 +0000
ROA not before: Thu 09 Jan 2025 11:53:29 +0000
ROA not after: Wed 22 Jan 2025 11:53:29 +0000
asID: 22773
IP address blocks: 156.246.96.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 66454 (0x10396)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Jan 9 11:53:29 2025 GMT
Not After : Jan 22 11:53:29 2025 GMT
Subject: CN=677fb8bd-c36a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:8a:49:d7:15:7f:f7:67:b4:ca:2a:6d:a0:91:
71:b1:02:cf:d2:1c:6f:17:75:8b:99:e9:98:7a:02:
33:de:94:8d:5b:42:ad:6c:83:cf:1a:d3:b0:c2:04:
63:5c:af:dc:96:7b:7c:f3:ea:fb:92:88:33:96:7d:
cb:e5:31:e4:e1:54:90:80:ca:16:6c:ea:34:f1:1e:
c2:b3:72:dc:f2:1b:1e:0e:5a:69:b5:a5:74:89:c3:
d6:83:0a:db:ef:c0:5b:5c:6f:d7:08:c5:a6:9f:1c:
7b:16:56:01:f4:a0:f4:b7:80:08:31:d9:c5:bf:5f:
7a:25:2e:7e:3a:94:33:1a:ef:e5:c9:c6:eb:c5:10:
ba:ff:3d:66:eb:58:89:6f:07:5a:c7:17:e4:7a:99:
f5:9e:8f:ea:b8:4d:34:b5:6d:02:dd:b0:bc:ae:a8:
02:41:1b:63:c2:1e:8a:38:0c:31:57:8f:0c:3b:79:
3e:ca:44:ba:6f:0b:45:9d:7f:af:0c:58:a7:2c:3b:
be:67:89:a3:11:2c:20:d3:22:93:f4:de:3c:64:22:
b2:ec:d0:b3:dc:4d:cd:0a:96:75:4e:8b:9a:22:ee:
0e:12:f7:99:ae:60:89:62:14:35:b2:0f:da:a3:3b:
28:5f:75:40:8c:80:72:9d:c1:17:39:50:7f:f8:5c:
28:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:6F:06:01:5B:EF:C3:00:9A:1F:A4:FA:DD:E3:72:76:73:A1:34:0D
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/59F379BCCE8011EF91529947762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.246.96.0/19
Signature Algorithm: sha256WithRSAEncryption
0e:a7:1d:6a:c6:20:1a:46:c7:fa:9d:75:bb:f4:93:4a:7c:11:
10:51:e3:b2:44:3f:0f:44:3e:21:60:5e:73:88:5f:e4:59:7a:
57:42:f4:e5:56:5c:5e:d2:49:93:d1:f7:e7:c9:77:0b:fd:fc:
30:ff:cd:43:cc:a8:44:a9:ba:1d:ee:da:61:37:4d:dd:1a:f4:
35:5b:81:66:11:0b:0e:d2:e1:1a:da:73:6f:08:f4:86:67:6d:
21:62:53:bb:65:2d:5e:cb:50:76:06:bd:1e:d6:16:1b:5e:cd:
3c:a2:61:10:4f:00:f5:c3:43:32:64:14:de:6c:09:b5:77:d3:
94:9a:b1:6f:fe:d2:28:16:35:eb:53:8d:31:d7:f4:6d:b7:d3:
e7:c7:7a:34:eb:d4:b8:03:77:d8:b5:72:3f:73:a4:e7:86:62:
a2:32:75:63:ab:60:44:de:b6:7a:a2:78:40:a3:2e:9b:c0:e0:
27:35:05:39:d4:39:fa:e6:6d:17:37:4b:c5:ef:dd:76:06:a3:
fe:45:8f:d7:75:94:e8:01:5f:77:ba:eb:41:fc:df:c0:44:fb:
fa:88:40:a2:e2:0c:eb:6f:57:70:d9:6a:05:e2:55:2d:c8:34:
43:0e:52:6b:cb:9e:98:df:a8:9e:08:60:7e:7c:13:f7:31:51:
dd:cc:91:54
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 09:51:04 2025 by rpki-client