Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/C24788FCD25211EF8A100E78762E951A.roa
File: C24788FCD25211EF8A100E78762E951A.roa (raw, json)
Hash identifier: 69APsUCmguIUgnzwA7sqje9G1AnHZW0rrFu8mq86eRQ=
Subject key identifier: A0:FF:3E:A8:F2:83:65:D4:E1:7B:10:F9:48:C6:B6:8F:1F:8D:FA:C1
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 010704
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/C24788FCD25211EF8A100E78762E951A.roa
Signing time: Tue 14 Jan 2025 08:37:16 +0000
ROA not before: Tue 14 Jan 2025 08:37:12 +0000
ROA not after: Wed 22 Jan 2025 08:37:12 +0000
asID: 40065
IP address blocks: 156.235.4.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 67332 (0x10704)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Jan 14 08:37:12 2025 GMT
Not After : Jan 22 08:37:12 2025 GMT
Subject: CN=6786223c-0433
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:08:b5:4c:62:1a:3a:91:8d:6c:ef:21:b5:3a:
0f:d4:4f:8c:55:c4:94:38:a2:bc:be:f0:4c:e0:c2:
45:f0:82:43:93:49:11:85:7e:61:0f:77:50:83:82:
50:c9:56:eb:45:f1:a0:7a:97:7c:81:1a:0d:4d:6c:
f6:fa:cf:78:d0:1b:fd:bd:b5:ab:66:26:1f:80:92:
0c:7b:be:eb:95:d8:77:5c:b7:b1:2c:4c:2a:7d:53:
94:8e:0f:14:6f:35:59:fb:e5:7f:45:07:d6:f8:38:
36:75:1e:de:d5:9a:92:33:1f:56:20:c8:20:88:f7:
23:80:d4:f6:b7:74:7f:c2:15:a3:9f:1c:67:70:e3:
f3:1a:56:a8:df:9f:16:5e:9e:04:4f:d6:09:63:b2:
21:22:05:b2:4f:ba:ea:87:27:66:5d:1c:e3:e4:0c:
ee:70:90:86:95:91:ed:21:1a:f6:de:3d:0e:8a:73:
61:31:95:31:d1:16:c6:77:0f:4d:e4:ba:69:e1:52:
b8:01:a5:d8:b9:69:21:c8:02:1f:37:1e:9a:5c:10:
54:78:9f:08:c1:d7:cd:ce:1e:c1:7c:2b:5c:66:a2:
43:27:75:2f:e2:1c:8c:ea:37:e1:d5:6f:c0:2b:20:
f4:76:39:f8:89:5f:87:2a:c6:cf:fc:6e:4b:fa:01:
b2:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:FF:3E:A8:F2:83:65:D4:E1:7B:10:F9:48:C6:B6:8F:1F:8D:FA:C1
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/C24788FCD25211EF8A100E78762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.235.4.0/22
Signature Algorithm: sha256WithRSAEncryption
55:3b:c7:8c:31:18:00:52:25:ea:f5:0a:dc:7b:93:86:c2:2d:
e6:c5:fe:3d:0c:0c:c9:30:b2:3a:8e:83:80:90:33:34:28:61:
2b:d5:ae:d1:8d:a5:29:c3:70:b4:1f:f4:00:8b:7c:f8:e6:ed:
9c:64:87:b3:31:f3:64:d9:b2:8e:99:02:7c:73:16:02:f9:b3:
a6:5f:9a:08:8c:fc:b3:1d:22:f3:fe:5b:82:f0:9e:04:91:40:
eb:4a:1e:9a:d9:89:d3:39:fc:20:dc:e7:f5:68:a9:4e:7e:cd:
cb:04:ac:1a:34:93:4c:d2:39:0f:8a:24:e7:c5:e0:03:69:48:
2b:df:62:f4:9c:a9:25:b9:08:24:88:cc:a9:d5:60:e8:a7:c7:
ac:7d:a8:55:e5:03:67:31:17:82:96:15:66:a6:5a:7d:b8:c0:
58:10:c1:de:e0:11:6b:31:bf:1f:54:2f:e3:df:dc:df:c8:1a:
8b:d9:f3:8f:07:46:1a:a8:c0:00:79:73:af:19:da:04:66:a9:
61:76:fe:2c:c4:3f:c8:4a:24:d2:7f:89:b0:b8:f0:e2:8c:55:
b9:a1:7b:1f:d1:44:d0:c2:be:f9:57:04:12:f9:8b:f6:72:4d:
e1:de:6a:cd:5d:6d:38:31:92:04:af:be:e5:89:66:9a:b7:1a:
2c:4e:40:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 09:47:29 2025 by rpki-client