Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/B4977E22C47111EFBF46074B762E951A.roa
File: B4977E22C47111EFBF46074B762E951A.roa (raw, json)
Hash identifier: 5Hb/Yqfce0QnQ4OKdXsigEURUOmz6sHyAEFvXS6e/ZA=
Subject key identifier: F1:F1:82:7F:17:7A:D0:A7:91:D3:89:6F:13:02:19:88:09:FB:3E:87
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: F0BC
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/B4977E22C47111EFBF46074B762E951A.roa
Signing time: Fri 27 Dec 2024 16:43:31 +0000
ROA not before: Fri 27 Dec 2024 16:43:28 +0000
ROA not after: Sat 01 Feb 2025 16:43:28 +0000
asID: 203020
IP address blocks: 156.228.6.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 61628 (0xf0bc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Dec 27 16:43:28 2024 GMT
Not After : Feb 1 16:43:28 2025 GMT
Subject: CN=676ed933-7a8e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:fa:ce:8e:fc:43:ca:24:fb:ea:bc:0d:30:25:
54:65:df:15:b4:4f:9a:4e:b5:0f:41:ee:3b:99:38:
64:9d:e5:b5:d6:59:68:27:df:d3:c8:87:1f:7b:37:
7d:29:45:74:0f:e8:54:2a:09:86:13:71:b2:78:8d:
6b:89:2c:b5:87:75:c3:ba:e1:c4:56:fa:ae:ae:82:
1c:8d:f7:ac:b3:eb:62:15:75:9b:6d:d1:56:04:08:
ae:d3:b5:5a:e7:7e:fa:14:47:c0:63:1a:3e:da:be:
12:3e:c5:9f:cb:e0:d3:c8:43:82:f2:73:e6:66:4a:
17:80:45:f1:0c:46:03:55:b0:9d:7e:43:b1:b1:1e:
89:70:d2:e5:a1:88:73:7f:07:29:20:64:64:c8:87:
26:78:f3:07:b2:6d:9d:ea:a7:74:a6:4f:d7:ce:b7:
1d:84:0d:d4:b9:13:ff:a6:2d:8a:81:39:3a:95:89:
1c:7b:3d:84:75:85:0c:19:aa:57:c0:fe:62:43:c9:
9f:3c:82:db:76:ec:3c:1f:d7:6a:1b:62:6b:44:17:
23:c1:55:48:6d:79:90:34:a6:1b:30:83:6c:2b:b2:
25:ac:bf:a6:a3:93:e2:67:81:a9:ba:a0:50:9d:49:
5e:52:13:12:c1:52:76:5a:56:4b:09:2c:36:81:1a:
e6:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:F1:82:7F:17:7A:D0:A7:91:D3:89:6F:13:02:19:88:09:FB:3E:87
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/B4977E22C47111EFBF46074B762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.228.6.0/24
Signature Algorithm: sha256WithRSAEncryption
62:1b:fd:72:29:80:f2:62:aa:75:da:d7:b8:d0:00:e1:6c:57:
14:5e:bf:2c:46:2b:77:ad:7a:52:84:aa:b3:7b:43:7d:25:46:
89:2b:46:fb:2a:39:99:ca:41:b6:61:20:06:55:6d:a2:e6:a3:
9f:2c:21:75:1e:da:1d:df:77:e2:51:2c:0a:11:e7:90:77:1e:
23:95:be:53:b9:e7:e5:98:08:8a:13:36:f6:40:f1:38:84:22:
66:e1:55:9e:81:88:42:ba:34:00:2f:15:5c:87:44:9c:d3:8b:
7c:05:af:72:9b:61:de:8c:18:4e:65:cb:8b:42:4e:10:ef:66:
a1:48:de:a2:76:30:c9:50:b7:8b:50:2b:19:6e:3c:d4:78:48:
9f:ec:c7:a8:28:51:f3:49:b9:9f:c1:5e:eb:48:16:eb:56:cf:
0e:85:d5:f3:21:1e:e8:bb:2e:39:20:e8:b5:62:f7:1d:99:52:
b8:51:b7:b8:50:5b:f7:60:62:99:4e:46:6f:a1:fa:c7:0f:cc:
89:c5:d5:6f:e8:77:be:c7:6e:ba:fa:bf:32:52:7f:49:0c:1d:
ef:f3:c5:d9:3c:b4:2f:d1:dc:84:f9:0b:23:6e:8c:db:55:c0:
ca:f9:42:c9:21:6a:d1:15:ba:98:41:14:23:43:35:6e:cc:14:
c8:fa:69:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 09:51:38 2025 by rpki-client