Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/92E8704AD01C11EFA13E6F82762E951A.roa
File: 92E8704AD01C11EFA13E6F82762E951A.roa (raw, json)
Hash identifier: hN8lANv9f1BTA+FbLL3QaiVQGmbpw4IuxTRK+nLGqsk=
Subject key identifier: CF:6F:2A:E1:9B:03:22:3D:E2:A1:A3:25:14:56:27:70:BD:8C:6B:21
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 0105FC
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/92E8704AD01C11EFA13E6F82762E951A.roa
Signing time: Sat 11 Jan 2025 13:04:21 +0000
ROA not before: Sat 11 Jan 2025 13:04:18 +0000
ROA not after: Sat 25 Jan 2025 13:04:18 +0000
asID: 141883
IP address blocks: 156.240.32.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 67068 (0x105fc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Jan 11 13:04:18 2025 GMT
Not After : Jan 25 13:04:18 2025 GMT
Subject: CN=67826c55-d8d4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:0d:1e:c9:bc:6e:7d:93:a9:7f:ec:a1:de:02:
4a:5a:f2:27:f0:09:9d:54:e8:f6:a3:8c:6b:9b:15:
6f:59:47:b8:a4:bc:34:15:75:e0:0e:1b:80:9b:f7:
8e:3c:b2:e8:ba:0e:2f:33:f3:4f:46:15:f3:3e:0b:
01:3b:6b:d1:20:6a:48:4e:70:9a:a4:ad:85:6c:d5:
7d:21:b7:c0:bd:fc:b0:af:3f:a4:bd:fa:a5:55:6a:
eb:49:09:b1:76:09:30:b0:8e:37:56:14:dc:bc:6c:
a0:ee:a1:96:b0:ec:66:51:49:38:0d:b0:7a:52:ff:
88:a8:4b:4e:d4:8c:1e:7a:a6:d8:fd:c4:46:8a:42:
9a:04:40:bb:c9:11:82:79:a4:29:d0:81:b8:7e:60:
9f:d9:e5:7d:09:fc:62:41:0f:d6:80:55:0f:44:fa:
bd:b0:0c:4a:22:91:86:90:a9:b8:47:9e:9d:fc:82:
ee:cf:bb:77:dc:00:d3:2f:38:1e:e9:ed:29:b4:52:
62:d1:56:49:e6:8a:ad:56:68:a9:b1:0d:e9:49:0e:
d0:e3:6a:66:2b:cb:f7:35:eb:0d:a2:21:ff:99:8f:
4e:3d:7e:87:f9:b2:32:0a:ee:6d:5e:82:6a:97:bb:
04:de:a2:7d:37:5f:51:03:39:41:42:de:79:2b:22:
3a:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:6F:2A:E1:9B:03:22:3D:E2:A1:A3:25:14:56:27:70:BD:8C:6B:21
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/92E8704AD01C11EFA13E6F82762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.240.32.0/20
Signature Algorithm: sha256WithRSAEncryption
54:64:0a:d9:51:64:26:38:92:f8:d6:0a:c9:b6:88:9e:55:64:
2d:3b:34:49:08:ca:82:03:70:17:7e:ba:4c:ee:ea:2a:9b:7d:
f5:14:1a:e2:83:fb:e6:6f:ac:dd:db:8c:70:e4:77:bd:da:ff:
2e:53:77:c2:06:5d:52:3b:7c:91:56:2a:63:5e:92:24:9e:ff:
32:e6:f1:88:49:70:c0:2a:ea:b1:54:b4:ee:6b:2d:fc:a8:af:
72:17:74:84:81:2a:4e:a5:f9:0e:5d:15:ce:5d:97:67:27:fd:
5f:96:36:a3:d7:6f:ed:db:58:6e:d7:d3:7e:57:d5:59:16:ed:
ff:d5:92:47:fe:5c:6f:17:de:84:2a:e2:52:58:77:aa:03:c1:
e1:c9:c5:b7:e7:00:4a:1e:56:7a:6a:dc:1c:87:dd:8b:42:60:
ed:38:17:66:62:57:49:f5:62:8a:1a:56:26:dc:34:ce:4e:d8:
52:f4:25:25:b3:cd:e6:cd:48:8e:51:20:1e:e5:cf:0f:37:20:
d9:e6:29:1f:f4:9e:b9:85:04:f2:e9:cb:47:12:2b:c2:f6:8e:
61:c7:2e:a6:d1:78:a7:ca:78:1f:f0:67:15:f5:5b:49:3f:69:
c9:b0:46:88:37:35:bb:8e:d2:23:7e:70:1a:dd:1f:07:d3:e7:
42:3c:46:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 09:44:46 2025 by rpki-client