Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/7303F032CC2111EF93E370A0762E951A.roa
File: 7303F032CC2111EF93E370A0762E951A.roa (raw, json)
Hash identifier: YQ3mFNVyJp8mtowErpNOi47TrZ6X2PKG1W+ZuLdGmvQ=
Subject key identifier: 95:04:AA:20:D2:2E:F9:5D:91:33:5D:8D:B8:0A:70:5C:21:DB:4E:B4
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: F8AD
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/7303F032CC2111EF93E370A0762E951A.roa
Signing time: Mon 06 Jan 2025 11:29:11 +0000
ROA not before: Mon 06 Jan 2025 11:29:07 +0000
ROA not after: Wed 15 Jan 2025 11:29:07 +0000
asID: 40065
IP address blocks: 156.235.1.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 63661 (0xf8ad)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Jan 6 11:29:07 2025 GMT
Not After : Jan 15 11:29:07 2025 GMT
Subject: CN=677bbe87-ea79
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:37:11:3f:f5:96:2b:51:fc:17:32:75:03:3c:
c8:c1:d6:87:b5:b5:79:b8:79:1b:68:b3:3d:12:63:
12:bf:97:03:4d:3c:61:43:c2:88:75:d6:e7:31:65:
07:e9:9d:6a:68:2b:f0:28:10:e4:5e:87:3d:5d:8d:
af:34:99:00:36:6a:3e:d4:56:7e:db:59:83:ec:9c:
77:de:fc:28:a5:19:b0:00:de:8a:00:0b:21:6b:20:
e2:73:ee:49:74:21:ee:e3:cb:d4:67:22:e9:0c:55:
ac:ab:2f:c6:cf:91:95:8b:97:02:6a:68:5b:9b:7e:
4e:04:25:8e:ef:74:ef:b1:c1:82:f8:59:67:4d:90:
f4:83:50:d8:c3:ae:8a:91:67:c7:50:01:08:a7:26:
4a:77:c7:57:e7:21:78:8c:9a:83:75:3b:08:7e:a7:
0f:70:fb:3a:0e:19:fa:15:f6:a4:2e:38:03:9d:7a:
58:66:fc:6d:24:ed:fb:85:9f:2f:6f:19:7a:a8:6a:
03:df:2c:f8:7c:b5:29:e7:9f:d2:09:7f:f9:63:e4:
9c:1e:b3:7a:6a:4e:af:71:12:6f:84:85:97:7b:4d:
97:d8:d3:94:c1:cc:51:62:54:d7:1e:f3:6f:5b:1c:
23:1a:33:fd:bf:b6:4a:18:4e:bb:9e:cb:f7:2c:f0:
11:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:04:AA:20:D2:2E:F9:5D:91:33:5D:8D:B8:0A:70:5C:21:DB:4E:B4
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/7303F032CC2111EF93E370A0762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.235.1.0/24
Signature Algorithm: sha256WithRSAEncryption
63:d6:d5:b5:6b:44:74:9f:43:61:99:47:c7:c5:76:c7:33:ed:
dd:ab:2e:ff:74:bb:7b:67:81:36:9a:84:ff:fb:1f:d2:e6:d2:
bb:ed:5b:f3:84:4f:f7:59:e5:63:92:bb:95:e5:df:2c:13:62:
a4:01:5f:4d:3e:70:e9:9e:8a:3d:f3:73:43:39:d8:54:0e:ec:
12:4f:98:6e:8f:f5:e3:7b:4d:e0:5f:f3:35:cc:e7:f1:f0:5f:
8f:5d:cc:47:a4:c3:ec:30:b3:0b:ac:4d:b8:4b:6e:4a:ed:ed:
58:4f:9f:6f:d0:5d:37:92:5b:e6:34:d5:64:21:56:1f:e0:8a:
c4:55:c6:c5:b1:1e:bb:3e:51:d5:eb:2c:75:15:75:01:c5:55:
18:b7:80:5c:d9:47:a7:c1:c6:3f:2a:8f:9d:3f:d9:9b:82:3a:
be:c0:83:90:22:91:b2:76:21:2d:e0:d3:a0:63:54:e5:52:f6:
b6:1a:23:9c:93:f9:3d:5e:39:60:33:91:d8:57:ea:37:ec:a9:
9b:f5:d8:50:d9:35:10:40:eb:3c:52:1d:13:d0:49:b5:64:c8:
13:a5:06:37:9b:8b:58:0b:90:7e:9a:3a:43:d9:ab:af:18:0b:
c4:b8:62:64:60:e3:df:a6:31:28:f6:6b:24:00:f1:3e:eb:e1:
9a:fd:66:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 09:55:13 2025 by rpki-client