Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/7428CFC6BDD711EF8FB0557F762E951A.roa
File: 7428CFC6BDD711EF8FB0557F762E951A.roa (raw, json)
Hash identifier: RpRP5oFfYzp1C0bTG6XzPSlgGRMhtjWQplnhonKIC7A=
Subject key identifier: B3:21:27:AF:62:C0:17:3A:5A:D1:42:21:F8:81:A4:9E:9A:81:8C:27
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: E5AB
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/7428CFC6BDD711EF8FB0557F762E951A.roa
Signing time: Thu 19 Dec 2024 07:04:14 +0000
ROA not before: Thu 19 Dec 2024 07:04:10 +0000
ROA not after: Fri 24 Jan 2025 07:04:10 +0000
asID: 395793
IP address blocks: 156.228.62.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 58795 (0xe5ab)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Dec 19 07:04:10 2024 GMT
Not After : Jan 24 07:04:10 2025 GMT
Subject: CN=6763c56d-8fde
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:29:3d:67:18:90:bb:85:d3:5e:4e:ed:dd:bd:
0a:6e:0d:de:96:6a:21:01:94:35:dd:5d:da:06:2c:
9b:b4:f9:54:84:7e:03:e4:24:b7:b2:dc:f0:b5:2f:
b7:e8:15:11:c4:2d:e7:ef:ae:5d:8b:51:10:b7:a4:
65:39:7a:a0:87:40:ab:cb:4d:25:72:b2:6b:1d:39:
91:16:bc:8c:bb:7e:b8:15:02:98:2f:3a:0d:9e:12:
93:37:b4:8e:78:63:30:57:d9:8f:32:25:d6:59:1c:
15:c9:55:d3:7c:d1:cb:9d:11:82:7b:d3:40:84:30:
8f:2e:1f:1c:9c:2a:bd:97:fe:ed:1e:8e:2d:79:57:
5c:ca:ff:32:4b:bc:e8:db:92:6d:01:3c:bb:95:b1:
7c:17:8a:4a:6f:f7:76:6d:3e:a9:c2:30:e7:c8:93:
62:42:d0:b6:ff:05:c5:9a:21:a1:ef:2b:dc:11:f8:
56:54:2c:da:a9:ee:ab:6d:6d:2d:6f:7a:8a:3e:1e:
5f:91:99:93:46:34:58:05:69:4e:45:ed:68:e2:f9:
a0:c2:2d:f5:bd:c5:5f:0b:87:87:83:7b:0f:ae:b9:
39:a4:89:40:f5:69:2c:88:39:1d:7d:44:ae:7b:cc:
34:dd:52:e9:1f:bf:6d:14:41:5c:f3:86:c3:b4:d5:
29:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:21:27:AF:62:C0:17:3A:5A:D1:42:21:F8:81:A4:9E:9A:81:8C:27
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/7428CFC6BDD711EF8FB0557F762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.228.62.0/24
Signature Algorithm: sha256WithRSAEncryption
b2:f3:d5:03:6b:bd:f7:3c:6a:63:70:a9:1a:70:6c:4d:f7:a1:
89:39:84:ca:e2:65:06:83:4c:f4:ed:e4:ff:00:6e:78:8c:74:
c7:a2:64:c1:60:9c:8c:67:6d:1d:a6:c3:a3:c9:3a:08:c2:cc:
fb:35:f4:6e:f3:99:b1:2c:e6:d3:1b:69:a0:9e:82:fa:74:65:
b8:47:53:de:7c:03:41:2b:67:2c:46:be:6a:bc:32:46:be:d1:
03:15:0e:67:d8:fd:c8:19:6b:13:24:06:2b:91:fb:bf:10:82:
53:d0:fa:2c:d4:49:46:72:65:ed:94:f6:d7:12:fb:26:c1:83:
46:27:4e:06:29:dd:46:07:77:6b:a8:d0:4b:9b:52:84:f6:fe:
fd:cf:fa:a8:16:ec:97:51:19:3a:eb:2e:2d:fc:f0:e5:e8:9e:
2d:fd:92:87:70:33:90:23:96:cc:d7:d3:97:ab:1c:d7:be:bd:
2b:c3:2c:d4:23:a0:ab:f7:b2:f4:fd:f1:bd:33:6f:0b:74:50:
b5:3d:36:b4:c5:3a:92:78:a2:53:38:37:ac:23:50:58:ed:8d:
12:24:68:2e:09:38:b5:17:b4:69:fa:f5:23:8f:99:67:ef:05:
2e:4d:f3:52:ab:02:d1:41:cc:ce:0e:e6:ba:d4:07:6f:50:87:
62:d9:ab:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 09:59:04 2025 by rpki-client