Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/C91750C8CE7D11EFB1D890B6762E951A.roa
File: C91750C8CE7D11EFB1D890B6762E951A.roa (raw, json)
Hash identifier: FJ6FPBDUvaRRIWPnWKZmBxH1U9HlEKsv4WwMnbjUa5A=
Subject key identifier: 24:FF:F0:EF:60:E2:C6:7A:52:28:9D:99:B2:9B:A5:98:75:32:36:63
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 010370
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/C91750C8CE7D11EFB1D890B6762E951A.roa
Signing time: Thu 09 Jan 2025 11:35:11 +0000
ROA not before: Thu 09 Jan 2025 11:35:07 +0000
ROA not after: Sat 01 Feb 2025 11:35:07 +0000
asID: 17561
IP address blocks: 156.236.62.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 66416 (0x10370)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Jan 9 11:35:07 2025 GMT
Not After : Feb 1 11:35:07 2025 GMT
Subject: CN=677fb46f-c67d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:ea:28:c4:d5:94:78:38:09:72:24:f4:e0:f5:
27:c1:25:ae:a3:f8:13:43:e0:45:41:dd:5c:fb:4a:
f7:63:a6:a8:60:a0:2f:71:55:0d:36:de:78:60:f5:
21:d7:3b:64:0e:ba:13:a0:d9:be:8c:eb:08:de:7e:
20:0a:94:bb:d4:d5:e5:25:db:b3:72:c6:95:c1:e2:
a2:3c:d1:ff:51:32:75:da:63:77:d3:42:12:9c:38:
59:79:75:96:6d:c7:91:d0:69:de:6d:37:eb:09:f6:
0f:13:87:dd:65:f6:90:bc:52:dc:cb:04:da:de:3c:
ff:01:f7:f6:9a:f1:dc:63:db:6b:e4:28:f1:6e:45:
09:af:47:e3:2b:33:a5:f4:58:4f:88:83:97:d7:59:
1b:9d:33:14:53:c8:d1:d7:ae:4b:b3:dc:c2:7e:9d:
8c:bc:7a:d9:84:55:c1:c6:53:72:16:e5:a2:29:2c:
bb:33:5c:cd:05:90:e8:0c:bd:19:34:f8:a2:0b:fb:
ee:b7:6c:e5:fe:77:a2:b8:ae:b8:85:e5:ce:b2:13:
6d:b5:5f:85:3b:bb:b3:ca:73:b8:02:fa:6e:64:e4:
e0:f0:b0:60:13:ca:f1:3e:f2:08:49:df:02:b4:3f:
75:00:dd:16:e6:9e:19:78:c7:9b:49:de:17:1e:af:
af:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:FF:F0:EF:60:E2:C6:7A:52:28:9D:99:B2:9B:A5:98:75:32:36:63
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/C91750C8CE7D11EFB1D890B6762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.236.62.0/24
Signature Algorithm: sha256WithRSAEncryption
89:d3:fc:11:71:7c:2b:e6:23:06:f9:7c:b9:08:08:e1:08:ac:
68:20:35:94:23:f6:d1:6b:43:31:bc:f0:00:e9:64:99:05:32:
d7:dd:60:1c:2f:6b:b0:38:a8:45:7b:41:67:63:93:c0:ce:64:
90:d1:10:54:d5:0b:cd:2c:75:40:a1:78:ce:fd:14:e5:4c:03:
32:f5:71:55:b7:51:9a:20:97:a1:93:8d:77:41:43:7c:2f:6a:
8c:93:e3:ff:5d:d4:f8:26:96:20:48:f4:96:3b:65:06:88:3d:
16:0e:50:be:9a:5e:eb:40:09:b0:65:8c:3c:50:52:04:9b:63:
b2:58:5d:a9:77:8c:8f:0f:c8:e0:f7:0c:97:50:3d:25:7a:ec:
d7:99:e2:b0:91:a5:04:90:37:ef:27:fa:74:3b:d3:49:16:1e:
12:f3:5f:81:3c:7f:42:94:87:ee:df:f1:95:8d:54:9a:63:4c:
a5:a2:06:9e:ed:42:23:15:37:41:99:7c:7e:59:3e:bc:0a:78:
24:c6:48:ae:32:3b:c5:29:49:08:57:5e:36:9b:7b:0e:b7:17:
2f:95:c6:9c:af:3a:38:b6:c9:98:54:d4:b8:85:4a:47:82:4c:
4d:16:ac:59:53:09:b0:54:c9:25:04:2d:3f:ab:37:58:f4:54:
82:a0:16:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 10:01:05 2025 by rpki-client