Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/C32E97ACCE9B11EFB1FD6773762E951A.roa
File: C32E97ACCE9B11EFB1FD6773762E951A.roa (raw, json)
Hash identifier: ao0rXGRqiJadtXbKSMW3Fs+pl6R640nSuQ2v9gBdx2w=
Subject key identifier: 9E:D4:D9:CA:90:66:FE:44:14:53:1F:CA:ED:9B:27:60:83:27:0E:32
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 010420
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/C32E97ACCE9B11EFB1FD6773762E951A.roa
Signing time: Thu 09 Jan 2025 15:09:46 +0000
ROA not before: Thu 09 Jan 2025 15:09:43 +0000
ROA not after: Fri 24 Jan 2025 15:09:43 +0000
asID: 7018
IP address blocks: 156.238.124.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 66592 (0x10420)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Jan 9 15:09:43 2025 GMT
Not After : Jan 24 15:09:43 2025 GMT
Subject: CN=677fe6ba-86d7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ee:25:91:02:3d:8d:b7:8a:a9:65:24:da:82:2f:
b0:b2:ec:16:63:ca:b6:dd:0c:cd:66:00:a0:14:a6:
18:1d:02:6f:85:21:ce:a7:42:a6:c5:f5:20:a0:92:
ce:ff:e0:26:58:5d:0e:8e:e9:6d:63:2e:35:60:4e:
dc:ea:73:c9:95:69:a2:68:9f:20:87:82:19:ef:1b:
77:d8:38:7a:17:41:ab:c4:c1:b8:d4:d0:2e:4d:30:
bf:c4:2f:78:6d:94:f7:c5:b8:b4:64:59:a2:3a:de:
b2:ca:f3:59:5b:f0:66:a2:60:d7:4d:bc:83:52:79:
f3:43:05:cf:a4:74:c2:e7:9f:16:8b:6c:d3:d7:f6:
94:97:24:6a:6a:75:80:81:53:24:48:3e:63:da:4c:
ca:82:ae:6e:97:e7:49:3d:6c:a6:36:27:d1:94:46:
ab:8e:41:70:4a:65:7b:88:2f:05:8b:7a:50:97:e6:
99:23:14:58:86:a7:b6:9b:af:0f:35:02:09:7f:1b:
b2:d6:be:8e:95:70:07:e9:cd:26:50:0e:58:9a:7a:
fd:97:1f:39:b1:ac:fb:82:43:fe:1d:ea:31:31:eb:
1b:74:75:55:93:fe:92:c7:8a:36:1b:c2:80:db:3e:
4e:6d:7d:b4:c7:48:78:ea:c8:32:02:1d:3c:20:91:
8e:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:D4:D9:CA:90:66:FE:44:14:53:1F:CA:ED:9B:27:60:83:27:0E:32
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/C32E97ACCE9B11EFB1FD6773762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.238.124.0/23
Signature Algorithm: sha256WithRSAEncryption
a1:6f:4d:ac:7f:af:92:74:44:f8:7f:42:d8:b6:b1:9f:05:1b:
da:4c:80:43:7e:6f:2a:e7:74:7d:ce:df:c7:a4:8c:de:4e:ab:
4d:23:2b:36:85:ad:c8:51:74:41:cd:57:c0:a2:10:0d:99:3d:
6d:fd:f3:80:7a:bf:64:cd:df:d8:09:d3:9b:df:13:90:09:16:
1f:ee:26:7f:91:08:c4:e5:2f:28:f1:be:a9:b2:d4:12:3f:7b:
35:ff:ba:10:e9:14:2f:e5:2e:d8:fc:24:c1:41:c0:6b:e2:2a:
7a:a9:24:c6:88:18:1a:a4:85:1f:bb:81:cf:53:82:2e:9f:3d:
11:f4:09:e8:78:b5:31:3e:1d:4e:2a:4e:f5:ff:16:e9:c4:d1:
32:e1:27:ad:c5:41:c0:78:6e:40:cb:dd:ea:cb:a2:ff:e9:a4:
26:a5:20:77:68:95:04:48:51:10:de:dc:11:fc:79:2d:15:c0:
28:dc:b9:a7:3b:44:92:b4:de:db:a7:e4:e0:32:6e:10:98:5f:
51:7b:db:bf:a3:af:0d:55:98:a1:2e:6e:59:38:fe:3b:d0:5f:
4a:9a:eb:66:74:60:6c:09:ce:74:6f:f1:24:28:18:1f:b2:b0:
6e:05:a0:22:ea:3b:23:f8:68:0e:8f:64:5e:15:65:4b:1e:1f:
ff:66:80:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 09:42:51 2025 by rpki-client