Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/95BDF580D25911EF9852C1A2762E951A.roa
File: 95BDF580D25911EF9852C1A2762E951A.roa (raw, json)
Hash identifier: 1O6ik2X7LTyplLeuSGOSlnCYy+KqRgRFQlmQUnITi/s=
Subject key identifier: 9E:10:C6:72:E3:4E:96:C8:96:5C:E9:81:31:F7:AA:61:F2:EC:1F:3C
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 010720
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/95BDF580D25911EF9852C1A2762E951A.roa
Signing time: Tue 14 Jan 2025 09:26:08 +0000
ROA not before: Tue 14 Jan 2025 09:26:04 +0000
ROA not after: Sat 25 Jan 2025 09:26:04 +0000
asID: 149641
IP address blocks: 156.224.0.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 67360 (0x10720)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Jan 14 09:26:04 2025 GMT
Not After : Jan 25 09:26:04 2025 GMT
Subject: CN=67862db0-503b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f4:ae:b2:3c:06:e8:e1:09:c3:55:ec:c5:83:bd:
d0:d2:7d:33:77:c1:18:be:59:1c:4e:dc:86:c9:63:
e4:43:65:93:19:02:5f:e8:34:4c:ad:58:fc:57:7c:
e4:7e:be:f7:43:b9:26:bb:1c:2c:04:fc:b5:8d:f3:
67:64:f0:d2:2c:cc:1d:79:56:68:ab:e5:dd:cf:d3:
e2:4a:3d:cc:14:2c:61:08:d9:e9:03:e8:65:22:69:
45:cd:f6:2b:da:c4:4d:49:e0:1d:4c:12:fc:23:c3:
1c:4b:f9:9b:08:d4:cf:9c:1a:c1:f3:e3:11:10:84:
ff:09:20:1a:7e:4b:a3:75:c3:c2:eb:ed:68:07:5b:
82:66:95:20:62:14:6b:61:09:cd:52:df:b2:a1:b0:
76:95:ba:25:69:ca:9c:b8:29:72:59:bd:0c:4e:51:
dc:dc:5b:65:93:95:a7:3f:93:f8:ed:bb:bf:2b:03:
74:d7:59:ab:0e:a7:23:cb:9e:fc:a0:07:bf:90:dd:
7c:3f:50:6b:b8:46:0b:46:b6:69:8c:d2:51:5d:8a:
4b:56:62:c0:60:8b:14:25:b2:f1:eb:04:96:b8:bc:
ec:e4:3d:29:0d:a2:91:35:d1:23:d6:b6:cb:b6:0e:
a8:80:e5:60:df:07:f2:1f:85:74:ec:d9:d4:e4:0f:
79:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:10:C6:72:E3:4E:96:C8:96:5C:E9:81:31:F7:AA:61:F2:EC:1F:3C
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/95BDF580D25911EF9852C1A2762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.224.0.0/24
Signature Algorithm: sha256WithRSAEncryption
3c:bb:ce:b9:f4:ff:6e:aa:a8:34:58:55:35:8f:29:5b:18:a3:
6a:3e:f1:c6:5e:46:6f:f4:36:26:a5:45:6c:f4:5b:44:18:f1:
cf:0e:2c:17:ae:5c:9e:04:74:56:b8:74:64:fd:51:6e:7e:ef:
d1:2d:87:f5:7d:92:2c:1b:00:42:e9:9c:3b:06:91:12:43:8d:
4d:88:b2:e0:b3:99:fb:88:24:85:8a:56:41:67:f6:60:81:68:
6e:b5:ef:64:cc:a3:bc:72:86:76:0f:be:29:f8:18:54:53:28:
ac:66:d5:f8:1a:84:d8:70:8b:e2:00:e3:4a:02:80:52:f2:bb:
d8:c9:f9:3f:eb:5d:d8:82:8e:be:98:f5:02:c7:a1:80:5b:0a:
4d:a9:da:8d:6a:87:34:d3:f0:04:bf:1a:a8:c3:3e:0c:21:e6:
76:52:b9:79:99:86:3d:ce:05:e8:6e:a6:bb:be:c3:fc:6b:2f:
ae:0b:05:df:33:c2:ed:df:08:ee:14:16:ef:c3:5a:1f:65:56:
03:cc:88:4b:17:b0:c5:90:ab:ce:30:43:27:0d:5a:80:16:a1:
a4:33:4e:90:7e:63:71:5f:61:76:93:63:45:64:9d:8d:16:26:
1a:61:a5:01:d4:1d:cb:a5:43:53:81:56:16:e6:e3:5c:74:66:
b1:3f:9a:e0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 09:48:22 2025 by rpki-client