Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/93C0712AF2D111EF8CAFE377762E951A.roa
File: 93C0712AF2D111EF8CAFE377762E951A.roa (raw, json)
Hash identifier: SzVbGTkVmIPcEu8fLjoZg3tfPG9PXLQ2I8A8LFrQWb0=
Subject key identifier: 6C:82:75:EE:F0:8D:A8:0D:7B:EB:E7:63:8B:FB:DF:53:77:DC:B1:0A
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 012CB7
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/93C0712AF2D111EF8CAFE377762E951A.roa
Signing time: Mon 24 Feb 2025 17:05:41 +0000
ROA not before: Mon 24 Feb 2025 17:05:38 +0000
ROA not after: Sat 29 Mar 2025 17:05:38 +0000
asID: 203020
IP address blocks: 156.230.63.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 76983 (0x12cb7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Feb 24 17:05:38 2025 GMT
Not After : Mar 29 17:05:38 2025 GMT
Subject: CN=67bca6e5-9bc9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:4d:ca:b8:9a:27:c1:7d:23:38:13:93:19:11:
5b:99:54:df:5d:9d:ce:aa:71:9f:31:62:0e:3e:e3:
4f:05:20:e3:ad:f5:af:ab:7d:d6:f9:08:23:9d:80:
a0:e8:6f:23:2d:9d:f6:fb:01:db:d5:2d:ee:18:8d:
57:b4:ff:eb:3b:f7:15:22:46:d0:8c:41:af:a4:e6:
6f:5f:eb:1b:9d:c7:57:60:8e:36:4c:1d:c2:fc:ad:
d1:b8:b3:31:f7:37:4b:e7:ca:f4:74:6c:ca:aa:a9:
1d:ec:2c:c3:32:8c:c0:69:7f:5d:65:bf:94:bc:96:
a3:87:15:ff:8d:12:fb:45:ed:e2:1c:62:49:b0:9a:
ad:46:c6:73:9f:77:9e:44:02:2f:9f:4c:2a:ce:64:
51:20:9a:83:e8:80:ac:fb:e1:ae:7c:cf:80:7d:22:
d3:9b:c5:10:e3:34:42:da:b9:64:2b:38:b9:0f:ff:
85:e8:5a:63:1c:a6:68:af:e3:fc:11:3a:b1:50:04:
29:8b:9b:24:15:f0:27:a1:66:bd:12:1f:dd:c0:79:
62:5d:3d:13:22:09:94:56:20:4d:a8:2a:a3:5f:82:
48:81:e8:a3:15:32:f1:fb:9d:9f:ea:24:d7:f4:86:
1e:ff:14:f7:ae:24:fb:3c:35:3a:2c:ce:ea:61:8f:
c0:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:82:75:EE:F0:8D:A8:0D:7B:EB:E7:63:8B:FB:DF:53:77:DC:B1:0A
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/93C0712AF2D111EF8CAFE377762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.230.63.0/24
Signature Algorithm: sha256WithRSAEncryption
89:dd:09:07:a0:54:32:ab:bf:1f:de:eb:78:5d:bc:f1:a5:6f:
17:13:db:d8:12:6f:74:c4:48:d4:3d:bc:4b:4c:52:09:da:82:
08:6c:cc:16:59:ff:07:51:4e:ed:78:4c:39:66:a4:b9:da:86:
29:33:10:c6:00:37:59:d8:42:b7:2e:95:ab:ce:0b:69:92:b2:
e6:14:ce:9a:16:5f:cd:fd:60:14:d6:32:7b:ae:82:ae:46:00:
1c:05:ad:db:39:c5:22:69:cc:cd:54:c2:f2:eb:1e:20:38:23:
d9:f4:f8:5e:23:dc:2e:53:61:47:23:c6:01:ba:6b:90:09:12:
2a:d1:dd:fe:ec:8f:2c:3b:8d:a2:e9:09:9f:9d:3b:35:8f:31:
f6:1f:9c:9c:a1:aa:fa:ef:4f:7e:58:3f:cf:96:68:e8:f5:4c:
e4:4e:96:53:40:32:2b:d8:6e:0e:e3:27:e3:a0:9a:dc:75:e0:
8f:a1:4c:da:2d:b3:f4:ea:46:f0:cc:19:4a:06:0c:95:d7:84:
45:fc:77:53:cc:68:cb:e3:54:42:41:45:c5:bb:64:b1:37:1a:
bf:2b:05:df:e8:26:69:12:31:90:80:2b:bd:bc:6c:c5:c5:bb:
bd:5c:25:14:47:66:c4:ec:4a:e3:95:62:54:57:ea:67:31:1c:
31:34:50:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 12 05:08:34 2025 by rpki-client