Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/A7917392CE9C11EF910BD078762E951A.roa
File: A7917392CE9C11EF910BD078762E951A.roa (raw, json)
Hash identifier: 2A+UFLb0reTT2RF1P68mv+MbNNbnBBvm74vIRJf4dgQ=
Subject key identifier: 50:D1:74:46:83:C1:62:98:4F:C4:1D:26:C6:F4:C9:C9:C8:0A:EB:33
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 010426
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/A7917392CE9C11EF910BD078762E951A.roa
Signing time: Thu 09 Jan 2025 15:16:09 +0000
ROA not before: Thu 09 Jan 2025 15:16:06 +0000
ROA not after: Fri 24 Jan 2025 15:16:06 +0000
asID: 7018
IP address blocks: 156.238.190.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 66598 (0x10426)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Jan 9 15:16:06 2025 GMT
Not After : Jan 24 15:16:06 2025 GMT
Subject: CN=677fe839-9344
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:a4:12:71:21:e3:3b:33:08:2f:90:86:db:45:
22:e1:8c:d9:47:50:6e:3b:b4:27:ac:f5:8c:f6:6b:
53:d0:d5:f1:16:07:e1:c0:1e:2a:d3:4c:2b:99:c2:
78:f1:b4:50:18:40:ee:81:38:6c:c6:89:d1:6c:73:
10:e6:54:77:4a:cc:7a:b8:32:f5:74:39:27:b8:42:
f2:b5:c6:c9:5b:8f:f0:2d:85:2e:6b:40:d2:b0:5b:
ef:70:ae:13:89:4b:c6:ed:33:90:51:2b:38:66:ab:
3b:e4:b6:7f:8c:9c:08:4c:2f:f8:23:26:ea:15:d2:
9c:68:99:10:d1:a9:ef:25:0c:1c:7b:9e:a3:60:7f:
20:d0:41:02:30:97:6a:a2:f7:0a:73:35:4e:bd:d3:
70:f1:e0:4d:20:0b:fd:12:74:5f:38:17:b8:cc:63:
ec:04:e9:e1:dd:b0:7d:d5:f3:33:28:bb:09:eb:ed:
88:6c:24:63:52:17:00:5b:0b:52:32:ad:13:50:d6:
2a:49:37:9c:8f:53:0f:1f:d1:4d:db:1c:54:f4:ee:
5d:67:c6:c8:13:ae:1f:67:bf:d1:51:36:32:0b:f5:
7a:52:22:48:6b:76:f4:5c:f5:ff:f1:8b:3f:79:3a:
fe:17:64:38:52:46:74:e2:71:92:ee:5f:69:6c:30:
8d:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:D1:74:46:83:C1:62:98:4F:C4:1D:26:C6:F4:C9:C9:C8:0A:EB:33
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/A7917392CE9C11EF910BD078762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.238.190.0/23
Signature Algorithm: sha256WithRSAEncryption
6e:58:db:5d:be:c8:d1:9f:61:0c:8f:dd:e7:e8:2d:0b:53:06:
c4:87:82:1c:8d:83:75:39:77:31:56:1d:bf:95:9e:b0:b6:f1:
b6:6e:6a:ed:3e:43:34:69:9a:36:34:91:a7:b4:9a:f4:37:57:
44:4a:97:d8:58:fb:35:28:ac:ea:a5:50:31:32:08:ea:77:37:
70:ce:4e:fa:c2:7a:89:7d:47:ed:1d:c5:08:56:78:5c:04:a8:
63:94:63:f9:fc:54:6e:8d:cf:cd:19:98:59:e2:ae:c0:9d:28:
f9:3d:7f:31:bf:5e:f1:75:d6:90:4e:f7:3c:d0:60:cc:31:a8:
f7:1d:3e:2c:e3:ee:8b:b8:24:8b:1c:27:34:5b:70:eb:12:11:
c7:20:c7:28:77:22:c2:7a:cf:c2:9f:0e:21:01:e8:99:47:99:
49:9a:b9:e2:9e:bd:8e:c3:84:3a:f9:f0:6b:e5:b7:9c:c6:23:
c3:c8:3b:7c:9e:ae:2c:a6:50:ad:d9:5f:a6:06:f5:f6:20:41:
2c:61:7a:68:43:55:c7:01:cf:38:44:1d:9e:9b:c9:28:16:2d:
8b:c5:1d:d3:c4:17:c0:80:1a:b6:00:90:5a:a9:09:f2:91:b5:
d6:6a:6d:85:fe:13:11:d1:8d:8f:28:5d:0b:a3:8a:3b:97:9a:
12:01:44:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 09:47:55 2025 by rpki-client