Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/C0F0E5F0D30D11EF80CFB6A0762E951A.roa
File: C0F0E5F0D30D11EF80CFB6A0762E951A.roa (raw, json)
Hash identifier: wEq8gxYGbLHVxVtaf7S714A6ITO3RF8P3oue/BVuJ+c=
Subject key identifier: 4A:98:6C:97:7D:83:CA:B0:59:C6:54:A2:82:12:77:70:94:9D:F8:7F
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 010837
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/C0F0E5F0D30D11EF80CFB6A0762E951A.roa
Signing time: Wed 15 Jan 2025 06:55:50 +0000
ROA not before: Wed 15 Jan 2025 06:55:46 +0000
ROA not after: Mon 27 Jan 2025 06:55:46 +0000
asID: 142032
IP address blocks: 156.225.16.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 67639 (0x10837)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Jan 15 06:55:46 2025 GMT
Not After : Jan 27 06:55:46 2025 GMT
Subject: CN=67875bf6-0fc6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:11:21:cc:11:ad:7e:01:bd:8b:e5:11:38:05:
d6:26:73:79:8b:67:b1:66:eb:c8:1c:c7:00:11:cc:
dd:de:29:11:4e:e9:5d:60:d9:37:14:6a:b4:bc:66:
91:8e:a0:d5:fb:ca:c4:84:6c:88:ae:ad:96:2e:e8:
07:a4:82:47:41:fa:bc:88:db:71:7f:b2:72:de:83:
26:5c:73:97:f0:d8:2d:8b:fd:40:4f:2b:d7:64:5e:
0a:f7:46:af:09:d7:37:56:31:2d:07:aa:27:48:6a:
96:e9:75:b6:b8:97:0d:74:fc:2d:d7:e7:04:0d:49:
03:a8:9a:7e:1d:5f:4f:12:94:7e:f0:95:a3:4d:95:
35:c5:7a:c8:d8:ee:76:73:4b:96:2d:2b:cb:50:3d:
16:cb:3d:69:96:e7:73:fb:5c:4b:90:80:e7:3d:98:
99:7d:58:1a:9e:1b:81:88:d5:da:22:86:c9:fd:85:
46:cd:73:9b:62:ab:3b:0f:30:70:8b:f2:aa:3d:d4:
26:12:43:3f:f6:be:c4:36:c9:67:03:e4:3f:78:0a:
f5:3a:f0:89:81:87:62:28:1d:89:f7:0b:5c:13:e3:
a8:f4:fa:f4:f4:88:17:6e:53:6a:31:74:a3:e3:d7:
94:c7:e3:0d:76:b5:4c:39:1c:88:9d:ec:8d:51:1a:
70:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:98:6C:97:7D:83:CA:B0:59:C6:54:A2:82:12:77:70:94:9D:F8:7F
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/C0F0E5F0D30D11EF80CFB6A0762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.225.16.0/21
Signature Algorithm: sha256WithRSAEncryption
ab:30:ba:e2:b3:8c:f0:3d:50:a8:6d:96:8f:61:d6:97:3b:1b:
92:6e:81:07:45:49:b5:e9:f1:7f:09:bd:f6:15:3a:ea:d6:a1:
95:d8:ab:d6:60:34:e7:12:fe:8b:89:ce:9a:e9:b1:f8:df:d4:
9c:cc:87:c3:82:71:6a:9d:d9:40:29:55:f9:a8:f2:a5:c8:ae:
88:84:3e:26:3f:57:69:48:7c:3c:7e:ba:c6:da:c8:bf:9a:fc:
71:a0:40:6c:71:dc:56:83:9e:fb:bd:05:ba:ed:9d:30:4d:24:
97:ad:96:81:dc:7c:c2:81:21:12:7f:2d:af:8f:7f:f8:41:aa:
d9:c7:eb:a4:6b:39:c4:a3:5b:b5:64:de:9c:5e:3e:0b:a4:04:
d1:d2:d3:96:22:7b:6c:b6:62:41:29:e3:9f:03:7a:77:13:69:
48:4e:85:82:a7:06:07:76:2c:63:23:3d:ce:a0:65:47:ab:c8:
30:2b:1e:f7:8c:8e:ba:0e:74:09:f5:50:ce:3c:07:8d:4a:54:
19:08:51:5c:05:d4:79:54:a2:22:47:66:38:44:3c:3a:bf:6e:
5f:55:63:99:4b:64:e9:2b:59:5c:d3:2e:73:2c:f6:48:2d:9c:
cc:62:ab:57:ed:b3:99:24:7b:27:15:3d:73:26:be:0b:db:74:
7e:63:6a:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 10:01:08 2025 by rpki-client