Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/B0B5BCEAC5CC11EFB8590B65762E951A.roa
File: B0B5BCEAC5CC11EFB8590B65762E951A.roa (raw, json)
Hash identifier: MGB+WElWkvydAhxKiPkVmQiz6zxnCDgvfFHsnIgl7Gs=
Subject key identifier: DA:57:93:78:1D:12:31:92:7C:B8:02:60:75:11:B6:E5:70:83:1F:21
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: F1C6
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/B0B5BCEAC5CC11EFB8590B65762E951A.roa
Signing time: Sun 29 Dec 2024 10:07:20 +0000
ROA not before: Sun 29 Dec 2024 10:07:16 +0000
ROA not after: Fri 31 Jan 2025 10:07:16 +0000
asID: 205125
IP address blocks: 156.255.8.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 61894 (0xf1c6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Dec 29 10:07:16 2024 GMT
Not After : Jan 31 10:07:16 2025 GMT
Subject: CN=67711f58-2a5d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:77:33:fa:81:ba:17:69:6f:17:a2:8d:84:40:
15:7a:3e:5e:f1:9e:f9:13:58:15:54:85:b2:b3:76:
98:be:e3:dc:70:6b:84:76:85:a1:6d:b0:02:cf:4a:
9e:f5:d3:e5:30:51:82:ff:b5:c8:f3:4f:d8:f2:a7:
da:34:2c:f6:c4:5d:1f:f1:48:b2:3a:ed:3a:c7:a9:
1d:e6:17:7f:06:94:da:62:94:02:0a:38:fb:0c:6b:
4c:3a:4c:b6:f1:c4:fb:a5:7a:e4:8b:0a:5e:e9:23:
1d:e4:55:17:fc:54:31:84:28:37:ac:5a:90:e6:41:
d5:40:bb:76:3c:40:2a:15:57:6c:1c:ef:1f:e5:4f:
5d:4e:c8:aa:8f:95:14:72:04:89:e3:3e:0f:37:e7:
10:a7:e2:ee:6a:f2:60:5a:17:0b:e4:3c:3d:aa:a0:
b6:b5:ff:ec:14:6a:1a:5f:c9:95:e9:85:52:a8:5a:
fe:e7:d2:5f:6c:3f:ba:fe:59:12:1a:74:99:6a:96:
e8:83:f3:d6:00:87:0b:b0:79:e5:b7:d7:67:60:bf:
99:c7:d5:f8:6e:8b:40:c9:b1:45:41:05:f0:19:f0:
16:36:3d:e1:95:3b:8f:b7:71:8d:93:ed:75:ab:a4:
a9:11:7e:1c:1d:0e:a4:dd:cb:5c:2c:a6:f3:6d:a7:
5d:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:57:93:78:1D:12:31:92:7C:B8:02:60:75:11:B6:E5:70:83:1F:21
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/B0B5BCEAC5CC11EFB8590B65762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.255.8.0/24
Signature Algorithm: sha256WithRSAEncryption
08:6e:f6:91:44:85:f8:41:d0:0b:a2:93:8b:0b:6f:7b:de:fd:
65:e5:8f:81:a9:07:65:1b:75:18:ac:af:b8:d2:96:31:f9:0f:
81:89:87:74:21:92:c1:dd:cb:a4:82:ae:fb:c9:3b:83:83:95:
4e:a2:44:95:d6:b4:68:33:d6:98:a8:5c:94:40:9d:48:e7:af:
00:09:d1:5b:24:4f:36:74:4e:b8:1d:3f:9a:18:d1:5d:0d:5d:
ce:a8:21:46:e8:e1:d8:ff:8d:3b:64:f0:7d:2c:b9:f1:b9:98:
4d:a6:c0:ea:f9:44:d2:b8:ce:20:54:84:dc:8d:b3:c1:d3:8c:
1e:5f:b9:e9:ee:10:70:45:d5:bc:ff:d6:bd:1f:ae:2a:d3:ba:
13:91:69:91:58:20:f6:1d:22:f7:65:57:94:3e:d1:fd:30:72:
78:bb:e0:47:22:7a:f1:74:fb:f5:21:3d:ec:9b:de:26:09:ae:
86:0c:98:82:4e:12:5d:60:42:b8:bc:77:bb:36:88:fc:49:eb:
bc:f3:99:96:53:a2:70:b4:3b:f4:8c:4c:8f:7e:86:19:66:fb:
29:ee:a7:f4:2c:f4:9d:df:81:6d:88:d9:8e:b7:c8:d5:e1:bc:
eb:88:af:68:e0:d2:b2:81:1b:c5:c8:f4:b0:12:92:fc:36:b4:
35:a0:71:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 09:59:23 2025 by rpki-client