Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/C8A79ADEC05A11EF9ACC2B4A762E951A.roa
File: C8A79ADEC05A11EF9ACC2B4A762E951A.roa (raw, json)
Hash identifier: SLioBFORy8B6dhRFulSeY7P+ctVUTdrJ8kiRHadQLjs=
Subject key identifier: 19:0F:33:17:5C:AD:C4:F3:D0:B7:9B:14:E9:0D:31:78:87:06:93:0D
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: E7E9
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/C8A79ADEC05A11EF9ACC2B4A762E951A.roa
Signing time: Sun 22 Dec 2024 11:49:22 +0000
ROA not before: Sun 22 Dec 2024 11:49:18 +0000
ROA not after: Wed 29 Jan 2025 11:49:18 +0000
asID: 61112
IP address blocks: 156.243.244.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 59369 (0xe7e9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Dec 22 11:49:18 2024 GMT
Not After : Jan 29 11:49:18 2025 GMT
Subject: CN=6767fcc2-b609
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:4c:1d:55:85:c3:9c:51:0e:0f:cb:85:fe:d2:
b0:c8:40:05:c5:8f:cf:a5:e8:1b:55:c8:fe:0c:78:
7e:51:86:39:9f:38:17:5c:ef:23:22:41:1f:cb:7e:
a7:61:76:8e:03:26:4c:48:8d:55:2a:ec:ca:5c:49:
a3:0f:74:16:4a:38:64:eb:f9:4a:9f:1c:17:74:ca:
aa:6d:17:f2:51:89:2d:93:b8:12:2c:af:01:51:23:
7b:9b:6d:67:07:e9:29:d3:53:ba:77:cf:80:a5:55:
b0:c4:28:08:73:73:ff:ba:63:4a:3e:64:9b:43:7a:
93:fd:49:94:e8:68:90:53:bf:9d:ca:2d:aa:72:3e:
59:8f:1c:1f:f2:89:37:c0:35:9f:b2:1b:c4:b9:34:
71:52:6b:12:6a:3f:76:9a:a1:e9:e8:50:7d:de:c4:
4a:6e:90:38:0c:da:d8:65:b5:b1:3c:8f:f2:3d:ea:
dd:88:8c:30:bc:ff:76:45:42:54:20:20:8e:8d:a8:
45:44:3a:27:cc:be:65:3a:0a:6d:83:4a:67:29:13:
45:d6:d2:bf:13:e2:d9:0d:d5:aa:2c:0f:80:00:7c:
95:60:dc:d1:ac:18:89:f8:91:8b:35:41:59:44:df:
d3:38:14:cf:e2:2c:65:01:a8:fc:ba:d2:c4:fe:21:
9f:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:0F:33:17:5C:AD:C4:F3:D0:B7:9B:14:E9:0D:31:78:87:06:93:0D
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/C8A79ADEC05A11EF9ACC2B4A762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.243.244.0/24
Signature Algorithm: sha256WithRSAEncryption
b2:95:36:1d:40:54:6f:3b:73:f0:a0:58:8d:44:ea:df:be:92:
87:85:0f:b3:7d:d8:03:ef:5c:48:93:77:da:cd:87:86:b7:6d:
38:19:2a:b6:f1:5b:81:b8:dd:a1:05:5a:92:58:72:5b:48:0f:
17:57:dc:66:b7:86:00:6b:d2:d4:f6:3a:0f:01:62:5b:1a:3d:
d8:f4:a0:7c:1f:28:22:ee:d9:4e:1f:6d:33:36:12:7f:e3:75:
29:90:d9:d5:e5:ea:48:ea:be:fe:8a:8f:f3:ea:f7:15:04:16:
10:f4:28:7a:59:f6:45:d4:2c:88:47:57:2d:61:e5:04:21:6f:
a2:5d:06:16:72:a2:27:91:3a:c3:e7:aa:2c:dd:5b:27:df:05:
1e:65:da:6c:23:51:2c:b5:c2:5c:2f:8e:45:2d:ca:cf:e9:d6:
df:a8:98:63:bb:89:bc:82:1d:ec:9d:1b:7a:54:e2:2a:50:99:
ef:6d:e4:92:aa:ae:c4:e7:a8:e7:f4:82:cd:ce:a8:c4:0f:bf:
be:70:ff:10:07:2f:c1:eb:63:0f:9e:19:d7:64:07:b0:ff:be:
b1:ac:6b:98:74:32:39:11:6c:57:f1:0c:e0:4b:5b:86:68:65:
19:f5:f7:ec:f8:74:f6:2d:fe:28:8c:4d:45:10:0e:06:4e:ae:
52:10:31:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 09:54:54 2025 by rpki-client