Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/7B349C5AC0FC11EFBF8F844C762E951A.roa
File: 7B349C5AC0FC11EFBF8F844C762E951A.roa (raw, json)
Hash identifier: ASQnjsypxXbifH5bZBwTr3bAKbdIpLkPwyeHI7MEiuA=
Subject key identifier: 4C:8A:DC:96:EC:A8:D1:F8:1B:A1:FE:C1:8A:AF:34:D8:C9:F4:94:92
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: E7FA
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/7B349C5AC0FC11EFBF8F844C762E951A.roa
Signing time: Mon 23 Dec 2024 07:06:50 +0000
ROA not before: Mon 23 Dec 2024 07:06:47 +0000
ROA not after: Fri 31 Jan 2025 07:06:47 +0000
asID: 203020
IP address blocks: 156.226.7.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 59386 (0xe7fa)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Dec 23 07:06:47 2024 GMT
Not After : Jan 31 07:06:47 2025 GMT
Subject: CN=67690c0a-3366
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:cb:28:ce:2a:70:cd:85:a6:c1:fe:d7:d7:9d:
d3:6c:2c:fa:b1:80:96:58:69:72:1e:86:ea:ec:3c:
fa:a5:d4:08:41:ac:1d:4a:64:94:46:39:16:ad:54:
eb:b8:92:a8:a2:fe:79:51:71:71:62:b9:92:fe:bc:
fc:85:c9:93:07:c5:e6:e5:0f:a7:90:ad:4d:29:52:
ce:b0:63:98:65:c2:ab:70:e3:80:7c:bc:b2:06:92:
e0:94:5e:93:4d:47:41:e0:4b:22:59:20:29:aa:0c:
02:d9:57:bc:42:e0:59:91:2c:ad:03:82:09:27:7d:
16:a0:dc:fb:85:e1:aa:45:b6:a2:ed:cd:6b:02:3b:
2c:42:2e:d0:b0:fe:79:24:6e:80:96:b5:aa:ff:94:
2e:c2:8f:3a:50:98:4c:eb:8d:c9:d5:0e:9f:e4:9c:
02:4c:1a:c5:1f:42:e8:ed:b4:18:23:2f:b4:80:e4:
40:b1:6d:da:36:fe:aa:52:aa:a7:52:82:12:80:cb:
38:cc:fb:f0:c3:fe:ef:c7:56:1b:7d:15:33:bd:99:
02:1c:13:23:8d:6a:43:05:93:19:a4:64:ef:99:4d:
a6:3a:07:6b:79:8c:0c:df:6c:d2:c4:96:78:e1:54:
d4:4d:ca:b5:4c:fd:75:95:27:bb:7d:a4:69:1a:13:
05:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:8A:DC:96:EC:A8:D1:F8:1B:A1:FE:C1:8A:AF:34:D8:C9:F4:94:92
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/7B349C5AC0FC11EFBF8F844C762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.226.7.0/24
Signature Algorithm: sha256WithRSAEncryption
2e:e5:ae:ed:16:a1:85:27:fb:14:45:3f:60:09:a1:88:09:13:
59:d7:0e:69:20:1d:68:cd:9f:29:79:b7:4c:76:96:8f:3b:cd:
f0:af:af:67:01:79:5c:e5:dd:dc:b7:d6:73:de:fe:20:37:88:
cb:a2:75:11:f8:f0:5c:7e:0b:38:6d:87:e0:8d:60:bd:84:64:
99:2a:ea:c0:c7:df:8b:d9:10:cf:78:7c:a9:5c:bc:63:72:e3:
8f:60:e1:3c:d2:a6:c2:0c:e0:a9:9c:70:76:dd:b9:02:28:30:
be:51:02:68:51:39:be:02:e3:e1:e2:07:7a:03:af:1f:89:74:
8c:2b:5a:2b:66:7e:ca:2c:5f:d4:1a:dc:01:5f:87:99:09:78:
0d:7b:06:f9:b9:e0:70:01:12:a5:db:d6:9b:4f:8c:ae:5b:5a:
dc:29:4f:4f:e9:fb:96:11:4b:e9:2c:9b:cd:8b:f7:3c:ad:4f:
29:fe:3c:3c:03:37:16:4f:c8:d0:06:21:5b:a4:6c:f6:f8:3d:
45:46:ef:4d:7c:5f:bb:60:ca:60:f6:5a:1d:c0:47:8f:b5:20:
a4:18:82:90:68:1c:2e:36:74:1c:fd:50:7c:64:7d:94:ce:3c:
c2:4d:b0:00:e4:19:28:97:25:0f:92:73:f8:df:69:8a:53:a4:
8a:0b:d2:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 09:47:13 2025 by rpki-client