Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/8B79BD74C0FD11EF881AB952762E951A.roa
File: 8B79BD74C0FD11EF881AB952762E951A.roa (raw, json)
Hash identifier: O9iBL3vGo19i9o046KiAwRIDkEE163CYMQp5psA+REk=
Subject key identifier: 9A:47:9C:58:E0:72:59:4F:72:6E:1A:7E:E2:D7:6A:91:AC:DA:B3:2A
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: E802
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/8B79BD74C0FD11EF881AB952762E951A.roa
Signing time: Mon 23 Dec 2024 07:14:27 +0000
ROA not before: Mon 23 Dec 2024 07:14:23 +0000
ROA not after: Fri 31 Jan 2025 07:14:23 +0000
asID: 203020
IP address blocks: 156.235.68.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 59394 (0xe802)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Dec 23 07:14:23 2024 GMT
Not After : Jan 31 07:14:23 2025 GMT
Subject: CN=67690dd3-3b8d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:85:3c:87:df:d6:31:27:cc:4d:ad:24:b9:a2:
53:bf:6c:49:5e:b2:06:86:4c:78:19:99:a1:93:8a:
b1:b4:df:ca:a0:e9:31:76:af:47:39:c9:e5:e8:57:
27:f8:c7:4e:51:e7:a1:33:81:e3:3e:e0:32:89:e5:
10:78:1a:9f:db:01:5d:2e:93:3c:ad:3f:48:d7:bf:
cd:40:a3:f1:15:df:2b:38:cd:fb:f5:6c:58:ce:7e:
4c:43:df:f4:4d:ac:f1:08:9d:f3:f0:51:81:6d:81:
34:dc:76:b0:fc:ee:3e:ee:92:da:80:5a:8b:7a:c4:
b5:07:1c:95:76:e5:a3:a5:20:cd:f3:5c:65:68:59:
b2:74:17:a1:a4:a0:40:c7:33:b0:c0:8b:e4:f1:18:
49:98:33:a1:50:2d:41:97:be:82:07:fa:58:d8:01:
64:92:07:96:31:4f:60:17:4d:a3:58:f9:ad:21:d5:
98:0d:0b:fe:e3:a0:88:38:14:2b:94:54:4e:56:4c:
4c:a0:b1:01:84:1b:4f:81:d3:53:8b:32:4d:81:9a:
0e:09:11:48:c7:b4:d6:73:4e:01:1a:7e:f4:3c:4a:
e7:0a:1a:81:8d:92:47:ec:1a:d4:cb:58:41:81:a2:
bc:bf:3c:c3:c1:e6:a8:4d:a7:3e:4f:c6:5a:df:1b:
62:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:47:9C:58:E0:72:59:4F:72:6E:1A:7E:E2:D7:6A:91:AC:DA:B3:2A
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/8B79BD74C0FD11EF881AB952762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.235.68.0/23
Signature Algorithm: sha256WithRSAEncryption
66:45:30:ce:7a:19:bc:aa:08:8e:11:bf:ab:31:f0:92:73:6e:
73:1b:22:e5:16:8e:c9:62:7f:b3:19:2e:a9:3a:ad:38:5b:ee:
fd:77:a9:f7:7e:1a:5d:72:87:9b:8e:af:e5:2f:60:f7:88:6f:
09:6c:4e:97:05:fc:08:2c:37:6f:ec:4d:db:48:9e:5f:cc:ca:
f7:02:7c:08:3a:4d:ca:9f:ed:dd:1e:ba:8f:6f:56:6f:b6:32:
1d:67:97:ff:f1:2a:2d:c9:49:24:fd:d6:92:2b:d4:f9:68:6c:
9d:3c:d3:e4:9b:22:fe:ba:5f:af:81:5e:bf:f6:cf:aa:6d:f7:
63:b7:9c:25:1d:9c:d2:ca:26:1d:e9:00:93:c8:be:e0:d5:7c:
08:50:ab:0b:29:b1:80:55:53:da:8f:29:29:0a:dc:d3:17:f6:
36:d8:47:d9:6f:6f:88:1d:fb:c2:47:5f:80:0d:36:30:2b:f1:
9b:90:80:11:3b:03:0b:64:4e:d5:c3:73:2a:2f:b4:0e:4d:05:
a8:d3:22:22:cc:76:83:9d:05:db:fb:f7:19:a9:bb:68:b7:4f:
22:f4:bb:3f:f0:31:c7:f5:f5:72:8e:c8:d8:cd:42:6b:cc:32:
96:c2:20:34:31:96:44:6f:cc:41:cb:18:2a:a6:27:06:29:f7:
4e:78:8f:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 09:58:24 2025 by rpki-client