Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/C6E52966C29711EF96BD2E89762E951A.roa
File: C6E52966C29711EF96BD2E89762E951A.roa (raw, json)
Hash identifier: 5b3xSwJWOGPmsMNUZy0HIuUfAaMFAoUp/CHDM9T2PHo=
Subject key identifier: 6A:68:3E:90:AB:34:C4:14:52:A2:00:B8:D2:E1:48:32:53:6D:70:49
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: E9C9
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/C6E52966C29711EF96BD2E89762E951A.roa
Signing time: Wed 25 Dec 2024 08:11:01 +0000
ROA not before: Wed 25 Dec 2024 08:10:57 +0000
ROA not after: Wed 29 Jan 2025 08:10:57 +0000
asID: 398993
IP address blocks: 156.229.192.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 59849 (0xe9c9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Dec 25 08:10:57 2024 GMT
Not After : Jan 29 08:10:57 2025 GMT
Subject: CN=676bbe14-27cf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:c4:05:4f:44:87:7b:b6:13:38:45:e1:0d:db:
5d:9d:6b:aa:27:a2:76:db:8a:36:5d:f7:ab:2e:58:
e0:57:1e:86:ca:11:bc:35:5a:69:65:44:7a:80:ba:
85:62:34:58:dd:c9:97:fd:1b:a6:d4:e4:43:52:bf:
5a:0a:ac:ac:2b:fb:37:3b:59:09:92:46:9b:2d:0e:
fb:3a:fc:aa:41:77:9a:f2:10:a9:e1:65:c1:8a:ed:
be:c5:2d:4f:0a:1c:3e:3a:f8:51:38:f7:b9:58:90:
4c:b9:d4:ab:47:7e:8e:65:a8:cb:7c:a0:79:07:52:
ec:1c:96:a3:42:07:38:4b:c9:e8:48:58:1d:0a:74:
30:5e:c0:0e:cb:a1:04:93:b4:f2:69:8e:2e:d6:6c:
31:95:2f:2e:7a:8c:bb:7d:f2:9b:08:22:ca:55:ab:
8b:ee:65:b1:7c:64:8a:82:44:72:84:78:ef:25:04:
8f:d6:9a:b0:a4:5c:38:07:0d:89:f5:e1:83:92:d2:
15:33:96:78:d4:1b:2a:be:31:d7:9f:b6:f1:90:34:
51:65:82:db:9a:7a:3e:43:fb:60:fd:b3:c3:67:00:
24:7f:d7:08:d1:19:82:84:ce:71:b6:8e:3b:5b:5f:
7f:4f:7b:1c:86:6e:a9:8f:8c:e9:07:d8:2f:35:47:
b9:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:68:3E:90:AB:34:C4:14:52:A2:00:B8:D2:E1:48:32:53:6D:70:49
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/C6E52966C29711EF96BD2E89762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.229.192.0/19
Signature Algorithm: sha256WithRSAEncryption
03:76:1a:3a:b7:de:68:f2:5e:a7:27:4b:b5:a1:c6:26:91:6f:
c6:9a:5d:7c:5e:e2:a3:7a:f5:26:9c:fd:cd:29:e2:7c:f4:9b:
de:13:03:6c:9e:9d:05:6f:48:0c:f9:6e:53:75:ca:24:54:de:
fb:d5:64:50:ad:0c:9f:e5:03:fc:e2:9f:96:1f:1e:67:37:81:
54:20:bb:64:cd:c5:8c:41:c8:a4:a8:32:75:b6:5b:80:c2:dd:
9c:f2:9b:70:0c:95:20:92:50:bb:4e:2f:62:a6:6c:bc:db:1d:
fb:a6:5f:55:7e:fe:88:e1:fd:9f:66:a9:be:8d:56:65:79:50:
d5:78:2f:0c:c3:7a:61:ea:37:2c:ef:bd:7a:af:8e:e0:d6:57:
ab:ac:22:76:65:f2:33:81:18:b4:08:e6:bc:11:a2:2c:02:6d:
47:c9:3a:e8:83:02:53:3a:53:c2:f9:7e:5b:eb:3b:39:0c:52:
8b:bb:74:92:d8:ef:69:dd:15:35:01:5d:30:c1:e4:93:44:e6:
3a:2a:ca:74:56:31:5e:bd:48:a9:5e:b1:98:b8:2c:6d:d4:c8:
90:8f:59:9d:b8:75:6a:c8:51:22:05:ad:c7:c8:40:1d:ba:80:
d8:1c:4b:4d:e7:ec:c5:3a:52:59:97:7c:61:c6:6a:70:b6:58:
90:76:c5:2c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 09:53:08 2025 by rpki-client