Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/717285F4C0FE11EF9B310F59762E951A.roa
File: 717285F4C0FE11EF9B310F59762E951A.roa (raw, json)
Hash identifier: 35FiuQw0IQ2wUW9FPh4jnOEbWwmocMOVZHTEL/CKxnw=
Subject key identifier: 28:4E:F1:5B:42:CC:44:8F:E1:95:33:1E:AD:43:C5:D8:2B:73:E3:CD
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: E80C
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/717285F4C0FE11EF9B310F59762E951A.roa
Signing time: Mon 23 Dec 2024 07:20:53 +0000
ROA not before: Mon 23 Dec 2024 07:20:49 +0000
ROA not after: Fri 31 Jan 2025 07:20:49 +0000
asID: 203020
IP address blocks: 156.235.0.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 59404 (0xe80c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Dec 23 07:20:49 2024 GMT
Not After : Jan 31 07:20:49 2025 GMT
Subject: CN=67690f55-eaba
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:e4:43:da:85:52:13:f7:37:1b:9e:db:4f:90:
82:16:82:2f:c4:ba:b3:23:c8:c6:c6:d8:ce:11:57:
b9:c3:a0:39:ca:09:78:80:22:98:ef:3c:a2:0d:1a:
ee:74:e3:0c:d1:ad:6e:1b:b4:b2:79:56:c4:e0:cd:
38:ef:f5:5f:03:85:cc:4c:53:cb:6c:27:96:3c:c7:
2f:ab:02:95:29:56:33:07:da:b1:24:21:95:88:2c:
68:8f:64:c5:1a:fb:4d:54:6b:be:5f:92:e2:94:8c:
75:14:85:00:87:9c:5e:10:0c:5f:a6:6d:a7:8f:a4:
ee:13:af:2a:fd:d2:d3:92:7d:ef:0d:9b:11:f2:aa:
4d:79:90:8b:04:e1:56:a7:60:f0:e4:c8:e9:0f:de:
8a:c7:1d:38:1b:01:e5:dd:cb:06:ac:1b:98:9d:80:
45:1b:c6:7c:b4:e0:f3:82:05:9a:71:c0:be:a8:b9:
15:67:06:05:bb:31:f7:6e:8f:f2:86:1d:ca:60:86:
82:6e:78:63:e0:ef:4d:10:22:b2:76:31:3b:59:9e:
5d:de:05:18:18:0c:8d:f0:65:5a:88:c5:4d:0a:e9:
ca:08:94:05:d6:a9:cf:ff:19:d5:cc:7a:0d:ff:59:
1d:e5:31:c9:f3:15:57:51:b8:67:1a:dd:41:ed:61:
7b:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:4E:F1:5B:42:CC:44:8F:E1:95:33:1E:AD:43:C5:D8:2B:73:E3:CD
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/717285F4C0FE11EF9B310F59762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.235.0.0/24
Signature Algorithm: sha256WithRSAEncryption
8f:f9:93:d6:f1:02:70:e3:26:e4:6f:a7:ec:ca:0c:7e:b1:05:
51:a9:b6:a8:6e:c3:14:67:0b:20:e9:51:89:6d:4f:76:87:19:
a6:25:64:df:43:87:8d:63:d7:b7:4a:3f:ff:2d:e0:37:e9:e1:
13:b5:b0:15:7c:43:f2:91:b5:e0:c4:aa:d4:bb:d4:91:2f:e0:
bc:13:df:62:39:bf:23:be:ec:be:85:4e:ef:67:09:65:50:76:
55:5c:c6:2e:3f:31:75:5a:78:4f:92:c8:cd:d2:0a:cc:55:0b:
62:96:1d:ff:d4:98:fa:5b:7b:a9:69:8d:79:72:a1:85:17:56:
4d:0d:ca:28:88:3c:cf:d1:ec:27:e6:54:37:59:03:54:5c:f8:
7b:4c:2a:6a:f3:3e:c6:9f:41:91:00:1d:54:dd:b3:93:32:10:
61:9d:f8:63:8b:56:90:e2:51:f2:bb:6c:79:68:1c:80:d2:d4:
a0:80:63:46:90:c5:bf:46:dc:1d:65:b5:d6:64:17:af:ca:66:
ba:a6:32:03:60:61:e3:d7:44:69:a2:a5:d4:94:54:98:85:83:
61:1b:a4:3b:2d:ad:ea:43:55:7a:cc:9b:a7:7d:b8:7e:3e:17:
6d:0b:50:35:15:4c:90:a4:11:c8:01:9f:e1:20:70:e2:65:d3:
72:52:26:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 09:59:31 2025 by rpki-client