Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/A69B7472BF9E11EF975327A8762E951A.roa
File: A69B7472BF9E11EF975327A8762E951A.roa (raw, json)
Hash identifier: V02yGI/HprxEd1YdlHh6LCzhfJCQlTg7M74ETDBGZ0A=
Subject key identifier: 43:AB:A5:2B:10:13:C3:72:D5:52:B4:F1:9E:41:82:AD:4E:F3:8C:45
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: E7C4
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/A69B7472BF9E11EF975327A8762E951A.roa
Signing time: Sat 21 Dec 2024 13:22:39 +0000
ROA not before: Sat 21 Dec 2024 13:22:36 +0000
ROA not after: Fri 31 Jan 2025 13:22:36 +0000
asID: 53835
IP address blocks: 156.245.190.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 59332 (0xe7c4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Dec 21 13:22:36 2024 GMT
Not After : Jan 31 13:22:36 2025 GMT
Subject: CN=6766c11f-eb42
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:bf:7b:a8:18:c4:23:df:df:e9:3d:53:cc:e2:
7a:45:64:c9:c9:c3:a3:af:c7:9c:6c:72:2b:e0:92:
53:aa:01:78:31:52:16:f5:c7:bd:19:85:f2:b8:d5:
e5:b3:67:f5:2d:87:50:9a:7a:4b:eb:ac:7a:62:24:
d2:3a:61:46:ba:83:47:0e:b1:c3:ab:6c:31:82:10:
e3:23:b9:bd:f6:5d:de:f5:55:9f:b6:8a:f7:7b:20:
83:dc:b6:08:19:1c:44:5e:8b:67:1d:1c:cd:54:d9:
e8:34:e0:ee:a6:42:de:87:02:eb:3b:54:63:b7:65:
9c:2c:68:17:ce:71:ec:7c:25:63:36:d8:50:f2:e2:
05:0f:2d:c3:e1:c5:eb:a5:0b:0f:4b:b4:76:87:d5:
a1:ed:32:b8:ab:e6:b8:9c:2d:24:da:38:c0:ed:05:
96:3b:46:6f:29:e0:50:37:98:b0:5c:bd:a1:bb:c5:
25:b6:1d:fb:31:83:6a:aa:71:49:ae:fb:15:a3:71:
14:d9:6b:5d:27:db:77:73:e3:1c:b5:fa:c1:ee:62:
a8:4b:b9:29:c4:9d:c0:f2:d9:85:ee:e5:8d:20:7a:
dd:08:cf:c0:c6:82:38:c5:ab:6d:d0:6a:ad:0d:58:
d2:d5:43:30:af:d8:a3:a9:4d:fe:1b:ea:89:b4:9a:
37:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:AB:A5:2B:10:13:C3:72:D5:52:B4:F1:9E:41:82:AD:4E:F3:8C:45
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/A69B7472BF9E11EF975327A8762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.245.190.0/24
Signature Algorithm: sha256WithRSAEncryption
09:75:e3:51:4f:e2:e6:c5:2c:ee:eb:27:a2:87:5c:a0:b5:bd:
95:d9:19:9e:5a:df:1c:db:a2:8f:92:75:1f:65:7f:f4:d3:a4:
d7:62:52:27:ee:91:8d:9f:1e:2b:88:2b:c6:08:1a:47:e9:89:
48:56:d0:aa:92:50:71:91:17:cb:34:99:b9:d2:f5:1e:9d:40:
b0:fc:34:ab:b7:ca:65:65:4b:fb:34:53:79:22:c8:d7:3c:7a:
47:f8:42:ca:7a:e5:97:88:01:0f:c2:9d:94:ba:a1:68:53:ea:
3a:c7:4b:98:0d:3f:6e:22:1c:c7:7f:44:36:2e:b1:4d:58:15:
29:a7:e2:5c:41:7b:d9:4e:7e:e2:29:f3:96:1b:3b:56:dc:f5:
38:7c:a0:e8:63:f9:c3:a2:52:9d:f6:3e:30:28:8f:c1:4e:0f:
4d:4c:74:68:32:d7:73:1b:36:2c:d8:12:2b:a6:e7:ca:9c:d8:
6a:a6:db:3b:75:dd:39:1d:cb:b3:42:c4:b0:dc:da:db:f1:6c:
b4:5b:a8:6f:73:bb:1d:47:9b:3d:41:4c:f8:2f:2f:a9:96:a9:
3d:9b:92:ea:47:7b:e4:af:6c:4b:bb:93:56:be:04:73:a8:8d:
88:a4:b5:b6:f1:db:64:99:ff:60:97:a3:5f:01:fc:7a:08:c9:
07:42:16:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 09:45:32 2025 by rpki-client