Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/6F241048C4F411EFB1B6CD8A762E951A.roa
File: 6F241048C4F411EFB1B6CD8A762E951A.roa (raw, json)
Hash identifier: bzukfFjYifYgb4rB6mSUJH6kZjOQFRG9i/+K46Y0h0w=
Subject key identifier: A3:C6:E6:55:A4:61:B8:A5:D3:13:C5:32:AF:C9:33:EA:E9:57:29:E1
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: F113
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/6F241048C4F411EFB1B6CD8A762E951A.roa
Signing time: Sat 28 Dec 2024 08:19:19 +0000
ROA not before: Sat 28 Dec 2024 08:19:15 +0000
ROA not after: Wed 22 Jan 2025 08:19:15 +0000
asID: 38193
IP address blocks: 156.238.80.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 61715 (0xf113)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Dec 28 08:19:15 2024 GMT
Not After : Jan 22 08:19:15 2025 GMT
Subject: CN=676fb487-d060
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:a2:c1:cb:a6:18:e9:8e:04:00:12:1c:3c:c6:
cc:76:58:e5:79:77:f0:29:f7:9b:aa:cd:0f:5c:75:
5a:4b:c1:4c:63:6a:39:c9:21:b8:9e:5c:2b:23:88:
6f:ab:7b:99:1c:00:9b:57:ff:10:6b:27:75:44:db:
49:fb:08:9d:71:bf:55:2d:e9:4e:6c:ff:d6:15:e0:
4e:e2:78:5c:d1:45:b6:34:07:1b:f3:ca:71:94:78:
e3:e8:ad:c0:c5:fb:3a:f4:f2:14:b2:f2:86:c3:b0:
0b:02:9a:18:5a:af:3d:9c:42:bc:43:33:70:67:a3:
b2:93:67:84:22:a2:67:cd:59:2c:e2:e7:c8:7f:cf:
ce:e0:5d:4b:ad:12:20:62:a9:52:f8:99:e7:f0:40:
53:e9:64:92:f1:85:da:08:c5:2d:f5:22:59:af:8d:
3e:dc:c4:44:55:ba:ad:a9:22:20:48:fd:f1:44:61:
f1:18:6f:3b:58:06:00:50:6a:b5:4d:52:3f:26:fc:
94:48:03:25:7e:3c:c1:72:fb:f4:13:29:8c:dd:cb:
85:b8:4f:6c:ef:82:63:c0:45:65:1a:e5:4a:8d:19:
5f:d4:ee:fe:5c:55:41:97:a6:29:a5:12:73:16:c9:
d6:89:d1:c6:ef:64:0e:8e:ad:9d:bb:c0:ab:12:a3:
71:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:C6:E6:55:A4:61:B8:A5:D3:13:C5:32:AF:C9:33:EA:E9:57:29:E1
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/6F241048C4F411EFB1B6CD8A762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.238.80.0/24
Signature Algorithm: sha256WithRSAEncryption
ae:94:56:81:93:52:e0:f5:66:06:13:21:60:fb:4a:63:32:83:
9a:6b:f9:4c:4c:89:77:b1:2b:b9:dc:f9:d7:a1:f7:03:f2:37:
32:a4:da:4b:fe:aa:bf:ac:9b:5e:68:4c:31:9b:3e:6e:ff:fb:
6d:03:cb:1b:2c:8c:68:74:38:7a:40:a2:fb:3a:12:6e:b9:8c:
2a:9d:e8:5a:d3:aa:ec:67:8e:28:3e:35:ee:bb:b4:f2:97:fa:
3d:5f:12:3c:cf:5c:ab:7a:2d:11:fe:1f:d4:0d:0a:f0:5d:1b:
ec:cb:ea:a6:ba:28:10:21:4c:a2:d8:52:0c:b7:e0:53:57:de:
74:87:49:6a:8a:b7:6e:f7:e9:b4:7a:02:7a:48:8f:ec:db:f1:
a3:54:01:6c:3e:23:6f:7e:fa:f2:95:80:6c:53:b0:10:83:69:
de:5f:ac:73:a2:bb:7c:37:dd:f9:32:d8:10:48:58:51:d3:9e:
96:5a:e5:da:76:08:7c:75:8f:f3:56:1f:39:e5:a9:3c:09:74:
64:67:e3:bd:e9:be:51:20:d8:65:88:63:f8:1b:83:78:8c:ba:
4f:c9:c9:16:7d:eb:4e:57:72:b0:0a:31:6e:a0:ea:85:80:d2:
ee:2e:69:a8:19:14:28:5c:3e:5f:37:e3:f6:ed:26:d7:0a:75:
f1:04:92:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 10:01:11 2025 by rpki-client