Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/9A890C6CCCDC11EFB1B1484B762E951A.roa
File: 9A890C6CCCDC11EFB1B1484B762E951A.roa (raw, json)
Hash identifier: 9nRs1FeKXvOm4DFo1tUTu9GmB6W4PREiz5IfS/1EIcY=
Subject key identifier: C2:A2:10:24:FD:C0:74:05:D7:96:45:A1:F2:1A:9A:A4:7B:70:D4:BB
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: FB73
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/9A890C6CCCDC11EFB1B1484B762E951A.roa
Signing time: Tue 07 Jan 2025 09:48:53 +0000
ROA not before: Tue 07 Jan 2025 09:48:49 +0000
ROA not after: Sat 18 Jan 2025 09:48:49 +0000
asID: 62468
IP address blocks: 156.245.200.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 64371 (0xfb73)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Jan 7 09:48:49 2025 GMT
Not After : Jan 18 09:48:49 2025 GMT
Subject: CN=677cf885-f3d8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:83:c7:10:7c:f1:89:8c:d6:38:97:4c:03:92:
31:a3:b3:bf:50:8f:76:2c:db:4d:58:e3:eb:01:ec:
fd:c9:89:1c:52:29:e2:cb:5e:25:59:a8:49:73:6f:
b4:10:44:39:56:c8:81:39:be:1e:08:1d:a3:f2:ff:
ce:f2:31:5e:de:3a:00:26:b6:b0:9e:49:fb:f4:13:
97:b8:82:98:f9:69:4c:91:c1:36:3a:a9:00:9e:19:
58:f8:eb:f7:b4:8e:8b:7b:12:ca:9c:6b:cb:99:ab:
ff:e2:6f:c2:83:d5:c6:87:ed:28:6e:85:1e:10:dc:
9d:a1:cd:3b:06:b0:86:7a:59:6c:57:8d:06:40:bc:
8f:d1:7c:79:ba:47:9b:a9:98:67:46:29:28:9d:b8:
bf:a8:5f:12:03:8f:c6:50:d1:d3:fe:f9:59:18:fe:
41:95:2d:8f:ee:3c:7d:44:a3:25:6c:e2:f8:18:43:
b8:c6:c5:8c:0e:ff:b4:39:af:e1:14:c3:a6:90:db:
1c:17:3b:8b:a1:80:ae:d6:7b:1d:e3:90:5d:4c:7f:
22:8b:74:48:bf:62:55:24:7b:d8:ec:4c:88:6d:f3:
3d:83:4b:e9:9a:43:81:13:a8:ff:cb:ca:74:b4:0b:
2c:3b:22:89:d5:52:34:ed:73:0d:f3:25:81:c5:6a:
dc:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:A2:10:24:FD:C0:74:05:D7:96:45:A1:F2:1A:9A:A4:7B:70:D4:BB
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/9A890C6CCCDC11EFB1B1484B762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.245.200.0/22
Signature Algorithm: sha256WithRSAEncryption
73:63:5f:ac:8b:9e:52:f6:c5:70:50:8d:e2:f9:c3:b7:c7:3b:
67:1d:be:5a:31:a6:fa:c1:60:66:28:8b:65:4d:5e:fe:79:55:
03:b8:c4:46:9e:37:93:68:a7:92:80:01:87:6c:ff:06:a9:90:
b9:51:a2:b7:2e:4c:2e:57:44:38:95:5b:5a:64:e9:42:17:01:
6d:8d:a9:30:4f:7f:5e:7a:94:5d:3e:87:d4:de:44:38:ba:c6:
f9:33:f8:e3:a6:ba:d2:1c:15:1d:75:8d:dd:0b:64:2e:d2:17:
00:d7:e3:08:7e:5f:e3:89:d3:6a:94:d8:df:e3:b6:1b:bc:1e:
72:f2:25:0a:8e:d9:9f:a3:33:1f:c6:71:3f:16:a6:8c:cc:a0:
40:11:2d:d6:dc:da:55:97:fd:8e:b5:9b:8a:ac:10:85:95:10:
71:74:18:97:f7:b6:ef:02:79:4c:64:cf:1b:bb:9e:95:84:ae:
d4:12:e3:b5:c4:2f:5b:c6:26:ea:d5:00:15:17:cd:9c:8e:eb:
86:8b:5d:78:36:86:11:bf:56:a1:69:8d:91:42:c5:66:13:61:
e7:7b:86:7a:ee:01:fc:9c:83:ac:7f:3d:56:1b:8b:b4:f2:64:
5b:a1:49:53:56:49:de:78:a8:20:35:45:f5:de:ce:7a:17:65:
b4:e4:19:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 09:50:31 2025 by rpki-client