Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/B4C544D0CD8E11EF9E25AE42762E951A.roa
File: B4C544D0CD8E11EF9E25AE42762E951A.roa (raw, json)
Hash identifier: jtvw5T+VOmMStgThO9TAViAMyAC857uMErcJphf3ejw=
Subject key identifier: 64:36:CA:64:90:45:54:F2:2E:67:F0:83:23:29:3F:8A:57:81:E8:03
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 010053
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/B4C544D0CD8E11EF9E25AE42762E951A.roa
Signing time: Wed 08 Jan 2025 07:03:47 +0000
ROA not before: Wed 08 Jan 2025 07:03:44 +0000
ROA not after: Mon 20 Jan 2025 07:03:44 +0000
asID: 395793
IP address blocks: 156.236.14.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 65619 (0x10053)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Jan 8 07:03:44 2025 GMT
Not After : Jan 20 07:03:44 2025 GMT
Subject: CN=677e2353-3b7f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:6b:ee:5c:ee:a4:9a:87:13:ce:e9:94:37:cb:
92:61:e7:ed:fd:e8:1c:ac:54:f9:2d:ce:98:7c:c2:
6c:94:1b:3c:0d:79:54:5e:b2:e4:f3:b6:da:16:f9:
a9:33:db:99:b0:a9:ab:2d:08:ab:7e:96:4a:61:9e:
47:83:05:04:4c:5f:eb:2d:d3:97:c6:0f:6a:c4:67:
22:23:98:47:cc:a6:64:4d:a2:c1:7d:4b:85:23:72:
62:77:6b:38:cd:0d:ff:8d:09:43:08:f0:0a:6e:ab:
cf:89:92:75:1c:14:80:a4:61:90:74:89:6f:eb:70:
d4:46:bd:18:51:5d:38:0c:ec:8b:fd:8b:f8:9c:f9:
a1:54:69:aa:66:e3:2c:71:22:38:be:1f:1d:9d:d3:
4c:84:1a:8b:c4:46:81:2a:a5:bb:04:2d:9d:3f:c5:
ab:3a:da:88:58:87:7c:e7:dd:20:f5:9c:15:0b:b8:
44:1c:27:4f:ee:d2:55:28:c8:99:94:d8:ec:bc:5a:
ac:e3:2c:b9:1e:b1:22:e5:64:47:09:b0:47:57:ba:
be:4d:41:c2:d2:29:7a:5d:1f:e3:67:c7:87:b7:06:
7e:93:31:cc:52:24:1a:8e:5b:68:10:47:b7:a8:6f:
5f:79:5e:27:f5:17:43:a2:83:bf:a2:c3:a1:f6:04:
3b:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:36:CA:64:90:45:54:F2:2E:67:F0:83:23:29:3F:8A:57:81:E8:03
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/B4C544D0CD8E11EF9E25AE42762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.236.14.0/23
Signature Algorithm: sha256WithRSAEncryption
0e:2e:2d:43:03:05:1d:b7:94:ba:6c:05:ac:fe:bc:25:2e:c9:
34:69:45:1b:ff:22:d1:06:73:cf:2b:28:61:a8:71:ba:1d:b3:
5f:13:42:9d:98:41:40:4b:b9:6a:0f:64:de:d7:56:30:05:d2:
cf:eb:32:34:f7:8f:1f:85:dc:f7:14:70:b0:bc:8c:5d:42:73:
bb:a8:77:45:08:b6:eb:0f:62:10:7b:87:6c:d4:17:c0:82:6f:
df:1a:46:ad:ee:b6:aa:26:ff:e0:a8:bf:8c:20:77:be:00:56:
1c:7b:f2:fe:62:3d:27:82:bb:a7:49:d6:68:5c:8f:19:03:6e:
32:3a:03:a1:04:ed:d9:58:a4:ad:4d:73:a0:ea:d0:15:7e:94:
2c:01:dc:ab:89:93:9b:18:2b:f4:f5:b8:a1:e9:3d:e6:56:35:
37:0b:f7:54:2c:80:9d:48:73:2b:f0:6e:cf:fc:ef:a3:e3:b0:
4f:69:cf:c8:57:26:5b:fa:d5:35:40:f2:11:71:e5:9a:cd:98:
ba:76:88:9e:0a:04:d1:c3:42:14:50:f0:bb:b2:10:19:6f:31:
a2:06:b7:38:98:b8:db:ca:c6:7c:0d:03:6d:21:da:7c:1f:e9:
da:dc:4c:f5:53:5f:52:4d:d1:89:1a:51:9b:3f:8e:ea:39:d3:
a6:2b:cb:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 09:47:35 2025 by rpki-client