Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/9F7D6082B92311EFB0B6E770762E951A.roa
File: 9F7D6082B92311EFB0B6E770762E951A.roa (raw, json)
Hash identifier: YXDMkjTeCIp6wX5WudhtnbPVXMCLGV0/XRIeCvc3aN8=
Subject key identifier: 0A:81:96:A7:AC:E6:28:AD:A8:F6:C4:7E:0F:EC:99:02:4A:E0:ED:35
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: E2E9
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/9F7D6082B92311EFB0B6E770762E951A.roa
Signing time: Fri 13 Dec 2024 07:26:52 +0000
ROA not before: Fri 13 Dec 2024 07:26:49 +0000
ROA not after: Sat 25 Jan 2025 07:26:49 +0000
asID: 44559
IP address blocks: 156.246.184.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 58089 (0xe2e9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Dec 13 07:26:49 2024 GMT
Not After : Jan 25 07:26:49 2025 GMT
Subject: CN=675be1bc-3672
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:c0:33:91:cd:c7:24:89:aa:26:a9:5d:8b:97:
89:75:c4:f2:31:40:b9:c1:9d:d8:de:cc:56:19:86:
76:53:d7:44:3d:dd:aa:00:fb:ab:ad:96:64:af:95:
64:b9:ba:5d:28:85:0b:33:a8:ed:56:a6:22:36:9a:
8e:9e:f4:c1:2d:5d:03:37:72:b5:fa:9c:c7:6d:73:
96:3e:eb:d5:d7:0e:3c:67:fa:90:9c:f5:34:25:d7:
a6:59:52:dd:db:31:6f:bb:4a:d5:6b:4c:aa:8e:94:
98:fb:7d:52:ca:4f:af:c4:1f:0f:3c:a3:02:aa:30:
86:b7:ca:e0:88:e7:aa:20:2f:16:81:3a:c9:07:f0:
35:7c:fc:62:14:07:c3:49:cc:5c:64:cb:92:5a:43:
b7:75:73:f7:ac:31:c0:9b:fa:02:14:46:79:a9:2e:
65:01:61:fa:ce:72:9f:f8:17:90:54:46:63:05:01:
e4:78:be:2f:fd:1f:0f:22:0a:a5:57:6d:82:54:96:
c5:12:4e:a5:5e:97:48:a0:af:0c:e0:48:fd:31:77:
db:e5:bc:80:f3:31:39:08:40:4f:dd:d4:62:b3:f2:
5a:61:ab:4c:0c:6b:4a:69:1a:80:da:f4:45:82:14:
8d:1b:a1:c5:ba:ec:31:65:55:23:39:42:a1:50:98:
fd:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:81:96:A7:AC:E6:28:AD:A8:F6:C4:7E:0F:EC:99:02:4A:E0:ED:35
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/9F7D6082B92311EFB0B6E770762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.246.184.0/21
Signature Algorithm: sha256WithRSAEncryption
1e:35:d3:82:43:14:54:9c:1d:d8:1b:27:d8:db:57:4b:67:d7:
23:67:70:25:c1:e7:88:b6:27:99:78:22:5a:27:0e:4d:f3:ca:
9d:84:00:2d:0a:81:48:96:af:1f:53:48:1d:07:ca:f5:07:6c:
04:c2:33:7b:81:43:7e:ff:2c:7c:2e:a3:cc:4f:80:ed:af:fd:
b4:52:fd:e9:52:b1:40:76:66:46:3c:2c:b2:59:47:0d:e3:a5:
cd:0b:54:73:b7:68:ec:3c:76:16:0a:ec:2e:42:13:74:c6:f3:
ff:c8:aa:1e:57:21:ea:fd:e5:89:32:51:96:4e:b9:64:1f:af:
02:cf:cc:52:4c:03:4c:e9:c3:a9:51:eb:ea:b4:be:74:b5:a3:
8a:ff:db:59:16:1a:e5:1b:68:89:6a:41:6f:db:c6:ca:5b:b8:
67:4a:c1:a9:2b:4c:d2:be:bc:8f:93:94:e1:f3:e7:d9:60:6f:
98:27:20:85:5b:11:07:dc:9d:cf:e1:17:62:a0:6e:00:b2:4c:
44:8e:a9:51:1c:ad:20:c9:a7:4d:b5:40:96:de:34:0d:35:72:
84:44:b6:ae:d1:89:cd:9a:c2:21:ab:ff:4e:40:4e:1a:9a:33:
2c:4c:da:ff:8c:8e:65:c7:d2:89:50:07:95:ef:25:50:6e:49:
b3:e2:21:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 09:57:24 2025 by rpki-client