Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/B2A2E51ACACB11EFA94E30A4762E951A.roa
File: B2A2E51ACACB11EFA94E30A4762E951A.roa (raw, json)
Hash identifier: 9i4nF9GcjZRtbGSWkoOipIDhzR6iUERack7FjyMeLCI=
Subject key identifier: BA:E0:1B:8D:DF:06:B9:90:AD:DE:12:AB:F0:02:97:D7:42:BD:9C:EB
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: F754
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/B2A2E51ACACB11EFA94E30A4762E951A.roa
Signing time: Sat 04 Jan 2025 18:42:50 +0000
ROA not before: Sun 05 Jan 2025 18:42:46 +0000
ROA not after: Fri 17 Jan 2025 18:42:46 +0000
asID: 39600
IP address blocks: 156.255.80.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 63316 (0xf754)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Jan 5 18:42:46 2025 GMT
Not After : Jan 17 18:42:46 2025 GMT
Subject: CN=67798129-e9d4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:ea:92:af:10:8f:8b:30:d8:ef:5e:b9:45:e6:
88:48:20:54:54:b5:f7:87:bb:96:0a:c7:da:e9:4c:
32:6d:0f:b7:8b:f0:04:f3:e7:f5:36:76:06:fe:41:
4a:db:2c:0f:58:27:1f:f3:de:cf:35:07:54:c3:7a:
2d:23:ea:b0:5e:41:71:a6:98:89:1e:d1:14:5f:23:
38:c4:40:5e:96:eb:7c:0d:ba:fc:06:b8:a0:e8:7c:
0a:0e:45:4d:9d:05:eb:f8:c6:80:a8:52:8c:fa:66:
7e:2e:08:aa:4d:de:7f:c0:80:09:c1:37:b4:cc:ee:
70:bf:8c:5b:3c:7e:ce:19:bc:65:c3:e6:78:d7:84:
a2:85:f3:fe:f6:c6:c1:e6:34:7b:75:dc:06:fd:66:
60:52:ca:d6:b1:0c:25:be:cd:c8:07:3f:25:c7:c0:
0e:10:80:0d:37:a1:bb:f7:6d:22:6c:78:c4:63:97:
11:b6:d7:d4:cb:69:fe:af:0c:09:ac:e0:56:02:54:
df:14:0b:36:d0:b6:34:8d:31:92:c0:eb:d9:bb:3c:
c8:8d:cb:38:52:e0:c9:17:d7:73:8a:e1:9e:37:26:
fe:4f:7b:c6:df:d7:b8:78:b2:3b:88:8a:ba:53:d1:
cb:d2:83:9d:e8:e4:7e:d4:ba:d3:16:d6:16:b9:3e:
42:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:E0:1B:8D:DF:06:B9:90:AD:DE:12:AB:F0:02:97:D7:42:BD:9C:EB
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/B2A2E51ACACB11EFA94E30A4762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.255.80.0/24
Signature Algorithm: sha256WithRSAEncryption
9d:af:18:b4:62:46:fb:36:10:54:94:26:a9:61:5b:96:9a:07:
4f:39:fa:4d:04:08:13:34:b0:57:ef:2b:3f:da:17:10:6b:82:
77:be:63:fb:70:7d:e7:da:b0:5b:bf:c2:d0:2c:ad:93:4c:e1:
55:fc:80:ce:db:c7:8e:7e:d3:da:c4:25:47:07:3f:36:89:a0:
88:06:46:28:80:99:be:7d:b3:3d:0a:e5:9a:5c:a3:c0:f1:b7:
b4:92:6a:27:95:e7:61:35:fe:8a:df:96:38:30:fe:b8:47:ce:
88:00:4f:b7:38:2c:6d:c2:c1:38:61:51:e8:5c:4e:d5:d4:ac:
d9:45:35:b1:28:f9:7f:9b:de:45:d8:a5:c8:10:61:ec:5f:9d:
b7:0b:4c:6c:17:45:43:af:55:4c:40:35:3f:5f:d6:6f:ed:6b:
c2:b2:e0:a0:8e:37:05:2b:fc:47:8d:6a:b6:50:5c:40:6b:68:
0b:a4:bb:6c:c2:06:26:96:d9:5c:e9:4e:28:9b:ac:8e:89:8a:
2c:97:43:f3:6e:a1:c7:7a:49:88:89:a0:b3:3b:ef:4d:cf:72:
3c:94:18:61:cb:10:2a:dd:5d:9f:e2:8c:6c:0f:1f:4c:5b:74:
e8:ec:28:42:ee:26:7e:60:25:88:92:d5:d1:71:9e:72:20:6c:
42:0c:eb:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 09:43:54 2025 by rpki-client