Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/B0C7D6E4C10011EF803C0066762E951A.roa
File: B0C7D6E4C10011EF803C0066762E951A.roa (raw, json)
Hash identifier: s0iS0gyDNUkMyii3MTg7RYoxNLf7VtR189wuLUfcpeg=
Subject key identifier: F4:CE:E7:1E:F1:42:41:50:85:26:76:0D:E3:A9:A4:1F:93:91:59:09
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: E814
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/B0C7D6E4C10011EF803C0066762E951A.roa
Signing time: Mon 23 Dec 2024 07:36:58 +0000
ROA not before: Mon 23 Dec 2024 07:36:55 +0000
ROA not after: Fri 31 Jan 2025 07:36:55 +0000
asID: 203020
IP address blocks: 156.232.108.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 59412 (0xe814)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Dec 23 07:36:55 2024 GMT
Not After : Jan 31 07:36:55 2025 GMT
Subject: CN=6769131a-b2d6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:5d:96:5a:fb:ab:50:2e:3a:7c:d3:90:c9:fb:
0b:e7:f2:09:15:23:3c:cb:60:37:b3:99:14:fb:6b:
8b:15:ec:66:0e:d9:dd:33:40:30:05:bc:e8:ab:23:
e3:64:52:b8:37:0f:d0:36:c0:78:5d:74:1f:3e:f1:
a7:e8:48:ee:cd:6a:14:7b:91:1e:d2:5a:96:bc:3f:
a7:64:53:16:3d:97:39:4e:4a:18:86:eb:67:20:16:
db:46:8d:6d:f2:c0:3c:a5:d4:83:66:e8:b8:1f:40:
01:5c:a7:1b:30:10:ab:14:70:7a:e6:18:a8:37:2e:
90:c3:84:17:0c:20:4c:4b:c2:45:ef:54:7e:a0:e7:
c8:1b:0f:7c:2e:cb:69:49:b7:0b:09:a1:4d:fd:88:
b9:c0:f4:55:74:6b:f3:e9:29:22:8a:c7:a2:95:16:
53:d1:30:68:01:87:ac:e9:18:8a:46:fc:4b:e5:68:
6f:31:5d:08:d7:5b:bb:bd:6e:b9:47:fb:8f:fa:63:
f7:0b:30:e7:09:c9:35:53:c3:f6:77:d6:03:4d:73:
24:29:d9:39:e2:14:01:33:83:47:c0:93:6c:cd:88:
6f:b0:7d:b3:76:29:40:df:a5:4a:11:71:6d:77:6c:
d8:9c:a6:7e:c3:ff:c4:cc:b2:a2:9e:39:ab:46:94:
5d:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:CE:E7:1E:F1:42:41:50:85:26:76:0D:E3:A9:A4:1F:93:91:59:09
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/B0C7D6E4C10011EF803C0066762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.232.108.0/22
Signature Algorithm: sha256WithRSAEncryption
3f:6f:73:c7:17:0b:5d:47:98:98:9d:a5:47:27:96:9f:62:81:
44:4a:7d:49:c4:ec:b6:d7:a1:f8:87:1c:0e:63:6f:2f:39:9c:
cb:d3:f9:a4:c5:03:52:e6:ed:d8:00:6f:d4:af:ab:77:7b:0a:
a4:02:05:78:93:12:be:5c:ee:0e:a0:c4:97:21:76:2e:6d:f1:
99:66:18:67:84:59:e8:2e:20:f3:6d:35:c2:7f:1e:50:63:00:
3f:17:d3:51:ec:74:d0:bf:10:b8:db:e3:99:d2:40:58:6b:05:
57:fa:18:ff:f6:7e:48:74:b5:55:fe:e1:0e:92:a4:c8:bf:97:
10:42:61:2a:6e:c9:3d:68:38:1b:d1:d8:c0:7b:3d:db:b2:92:
76:85:15:72:a4:5a:33:52:6e:77:34:b9:d7:c6:31:a4:82:a5:
0b:51:fc:9a:a9:e7:54:56:72:af:1e:a1:67:7d:e5:fd:ef:2c:
cf:62:5c:48:c9:2b:1e:54:8d:ef:aa:c2:7a:33:50:6b:ec:56:
22:1e:e4:b6:a7:3b:e6:fe:3b:79:ca:82:30:be:cf:4c:e2:12:
86:88:bc:f2:2b:2a:49:64:49:e1:15:bf:77:ed:a2:6f:dd:91:
b8:9b:53:08:41:4f:a9:e3:b1:1b:a8:9e:4b:54:58:df:97:af:
58:7a:3a:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 10:01:35 2025 by rpki-client