Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/7D012D4EC50911EFB3B2EC8F762E951A.roa
File: 7D012D4EC50911EFB3B2EC8F762E951A.roa (raw, json)
Hash identifier: wuV3tSCPlc2KsBtxBU1W1FVSZfXBt8/V+PrnQJXJZE8=
Subject key identifier: 91:7B:74:80:C5:C9:03:8D:6C:F6:62:38:8E:F0:B0:C7:FB:6B:FC:E1
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: F1A3
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/7D012D4EC50911EFB3B2EC8F762E951A.roa
Signing time: Sat 28 Dec 2024 10:50:02 +0000
ROA not before: Sat 28 Dec 2024 10:49:58 +0000
ROA not after: Sat 01 Feb 2025 10:49:58 +0000
asID: 203020
IP address blocks: 156.253.202.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 61859 (0xf1a3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Dec 28 10:49:58 2024 GMT
Not After : Feb 1 10:49:58 2025 GMT
Subject: CN=676fd7d9-0b70
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:da:20:9a:93:62:7a:6a:b5:5e:9e:c1:36:d3:
6c:6d:b7:77:58:b9:7b:a0:4e:d3:be:24:1d:ba:6c:
14:5f:20:cd:df:2e:76:f4:51:df:f3:03:9a:d6:09:
30:17:a6:d1:3e:57:d4:d6:65:ed:48:b3:83:6d:ba:
15:e4:5e:62:6d:b5:29:91:bb:21:14:59:73:71:5a:
19:1f:b5:06:2e:2a:ac:c6:8d:ae:dd:47:12:a4:5c:
fb:94:c0:9a:f1:dc:a0:7d:9f:df:ea:99:b1:0b:f5:
17:54:de:06:23:9a:45:2e:74:94:ed:c2:15:93:18:
4c:a6:0a:7f:1a:5a:0a:43:dd:cf:93:ec:e1:32:8b:
0a:8f:44:13:59:9c:0e:fe:9b:e9:55:47:55:7d:db:
07:93:d0:d0:c7:4c:e9:9f:68:99:3c:18:c7:a2:a6:
8d:53:bc:7d:43:76:63:4a:e4:30:7d:f7:93:e9:30:
0c:55:48:a0:8c:68:d9:21:bd:55:86:7b:f2:3a:ce:
e7:90:96:17:6c:40:cd:45:cb:de:06:64:e0:d8:27:
2c:c1:78:0f:39:31:11:90:66:c8:5a:46:57:9e:4a:
07:b6:36:91:45:b2:80:79:a9:13:4b:78:24:27:ff:
13:09:da:0d:22:19:75:b7:cc:55:36:5b:f9:fc:00:
6b:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:7B:74:80:C5:C9:03:8D:6C:F6:62:38:8E:F0:B0:C7:FB:6B:FC:E1
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/7D012D4EC50911EFB3B2EC8F762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.253.202.0/23
Signature Algorithm: sha256WithRSAEncryption
b5:61:40:84:48:4d:cf:f8:5e:33:e0:2e:c8:e7:6e:38:18:12:
03:f2:d9:58:2b:76:24:a4:32:46:1a:4f:a4:50:66:82:36:9a:
01:e2:ef:69:a1:92:09:ac:c3:03:49:1e:20:14:b3:67:80:cd:
0d:fb:61:c0:d8:c2:eb:34:fb:b7:88:05:8b:29:67:24:9f:b6:
dc:94:40:6e:0e:46:82:e9:97:45:bf:2e:c9:34:02:1a:d6:7a:
3e:7e:d3:0f:f7:65:bb:fa:ee:d9:16:9c:c6:4c:0f:ee:9f:5c:
a8:ff:6d:81:cf:69:6e:a1:04:b4:22:22:d7:c9:49:31:32:a9:
85:71:83:c4:b8:2c:71:fa:3a:c9:41:bb:ad:08:89:a1:c6:ea:
f1:c2:eb:13:87:8e:3c:86:85:de:aa:5e:fb:b3:12:51:39:6d:
a3:0a:29:7a:6b:f0:b4:ec:21:1b:38:81:48:f1:aa:05:08:ac:
87:b0:f0:3c:c0:42:da:b6:22:df:b6:0e:e5:19:7a:12:a6:5a:
97:81:e2:03:33:f3:30:15:2d:db:d2:be:4b:8a:e2:10:a8:b7:
1d:58:52:a3:b3:9b:97:4b:b9:32:01:cb:7c:e4:32:50:a9:39:
a2:86:06:00:7f:4c:3a:5b:0b:d8:cc:a0:ae:3f:4a:d0:86:09:
4b:4f:c2:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 09:47:23 2025 by rpki-client