Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/98CBD942CCDA11EF8B7566BC762E951A.roa
File: 98CBD942CCDA11EF8B7566BC762E951A.roa (raw, json)
Hash identifier: LcQgJnCnnYCiIINuTmGB7vG7baHBmwoBxl1w1qYSMAI=
Subject key identifier: F5:7B:2E:C3:C3:F6:68:CA:FE:02:F4:F4:92:54:F8:18:2B:56:F6:03
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: FB4F
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/98CBD942CCDA11EF8B7566BC762E951A.roa
Signing time: Tue 07 Jan 2025 09:34:31 +0000
ROA not before: Tue 07 Jan 2025 09:34:27 +0000
ROA not after: Sat 18 Jan 2025 09:34:27 +0000
asID: 137547
IP address blocks: 156.245.198.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 64335 (0xfb4f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Jan 7 09:34:27 2025 GMT
Not After : Jan 18 09:34:27 2025 GMT
Subject: CN=677cf527-79e9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:52:85:2d:c5:e4:95:6d:57:90:5c:1f:4e:03:
c4:68:71:87:d5:4a:af:99:59:e7:44:14:c4:c9:79:
fa:e3:89:a0:e4:12:87:db:6b:9b:d7:03:6e:10:a9:
41:28:98:4c:f9:c7:fb:e6:4f:db:de:77:93:ce:dd:
f9:90:75:2f:47:97:90:01:28:b5:dc:86:4c:09:1e:
6f:cd:ae:00:2b:8e:8b:a2:59:10:2c:a0:12:ea:06:
65:af:34:d7:23:2b:fd:e5:64:12:3c:92:c9:a9:62:
a2:5e:df:f4:3b:fa:33:e6:6d:eb:c8:4a:2b:a8:2c:
65:9e:8b:c6:90:19:f3:36:be:a5:aa:6a:12:a4:ed:
b2:e4:cf:ca:2d:89:2a:96:10:37:cf:de:f6:2c:88:
c8:7f:b4:77:e5:78:6b:78:8c:b1:3c:e5:1d:81:37:
4d:6c:15:58:a5:15:88:44:45:ec:56:55:08:bb:fb:
a0:a5:40:25:27:de:1a:26:ad:9b:57:1f:6a:46:9f:
df:a1:29:6f:48:0f:60:6b:19:41:f5:e2:29:5d:76:
97:23:c9:ee:06:bb:33:77:17:0a:9a:6e:38:20:d3:
44:67:18:de:63:25:7e:21:07:b8:8e:10:31:a6:36:
95:93:79:38:a9:fe:ae:f0:53:46:ac:27:06:db:eb:
c5:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:7B:2E:C3:C3:F6:68:CA:FE:02:F4:F4:92:54:F8:18:2B:56:F6:03
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/98CBD942CCDA11EF8B7566BC762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.245.198.0/23
Signature Algorithm: sha256WithRSAEncryption
64:55:f9:02:31:26:d2:d3:1f:fb:78:09:34:b9:5a:0f:84:87:
b1:26:24:9a:23:8d:76:ae:f5:8e:49:66:0d:41:2f:b2:11:a5:
71:b5:c5:8d:b7:8e:3e:ac:12:b0:12:10:e2:36:27:06:3f:89:
98:33:a9:28:e0:eb:d6:ca:b6:19:96:c1:4b:d8:a7:5a:d3:d7:
ea:47:c5:a8:9c:53:d3:da:e2:8e:e5:24:f2:c5:69:70:8b:7c:
07:e0:32:4f:23:4b:09:f6:f4:34:ce:34:7a:39:ad:7e:af:60:
78:83:66:61:6f:01:85:c4:db:f7:8a:b5:80:94:c1:e8:4b:5a:
0e:6b:96:92:77:f7:e8:c8:41:b8:57:e5:75:93:1c:82:de:58:
74:31:f7:d4:38:7a:3b:0f:ae:b8:38:9b:dc:25:59:68:19:b6:
d0:32:02:8f:93:f9:83:e5:e3:c6:31:1a:c1:78:74:e7:c7:13:
e6:e4:95:bc:0e:0d:84:99:55:b2:e5:08:9f:5d:11:1f:46:51:
ed:20:da:e3:e6:20:c5:26:08:9b:d5:cb:cd:ad:1f:eb:f7:c3:
9f:4f:71:21:1b:91:2e:2d:22:cf:9d:8f:55:0e:97:ec:f1:73:
57:0c:2b:ca:0d:f0:7b:5e:72:ca:77:60:73:ca:d9:98:b5:de:
1c:84:f4:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 09:55:01 2025 by rpki-client