Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/CCA0FF50CACC11EFAA859EAA762E951A.roa
File: CCA0FF50CACC11EFAA859EAA762E951A.roa (raw, json)
Hash identifier: ffoQtNSYXciTzzAMlaqtbXAjXVUeiACQ8V5wtv/ol7c=
Subject key identifier: 82:BD:D4:A4:E3:20:0C:C7:9A:FE:9D:F7:17:22:48:FD:11:87:24:31
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: F75E
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/CCA0FF50CACC11EFAA859EAA762E951A.roa
Signing time: Sat 04 Jan 2025 18:50:43 +0000
ROA not before: Sun 05 Jan 2025 18:50:39 +0000
ROA not after: Fri 17 Jan 2025 18:50:39 +0000
asID: 39600
IP address blocks: 156.255.85.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 63326 (0xf75e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Jan 5 18:50:39 2025 GMT
Not After : Jan 17 18:50:39 2025 GMT
Subject: CN=67798303-0d3b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:a7:41:37:0d:d4:0c:bf:93:ce:40:de:3f:d3:
61:ef:a5:09:28:55:ad:e0:4a:47:56:4a:5e:34:9e:
04:dd:3e:45:2b:48:6b:45:42:cf:be:d9:ac:2f:1b:
c0:b5:0c:ad:d5:e1:95:30:a4:2c:ad:82:8c:54:21:
cc:5e:25:e0:ec:60:d8:06:72:6f:72:51:50:05:39:
b1:29:6e:55:09:09:33:b4:e0:d0:6d:64:88:d3:40:
fc:f9:5f:42:b8:58:fb:8a:7f:ab:96:b8:f8:e0:aa:
10:f3:37:de:1f:a4:69:38:f5:2d:a2:cb:89:26:bf:
e5:f4:88:f0:5c:5c:c6:ec:ca:38:e7:04:90:a0:c9:
27:58:05:7c:28:94:f6:ad:7e:92:e9:e6:f6:46:b0:
6a:c1:ce:97:aa:4c:1b:5b:96:80:4e:0b:ad:13:a2:
84:0a:7a:0a:64:2e:64:37:7b:b9:4b:1d:19:8d:29:
22:da:a7:4e:54:4d:42:68:40:42:c4:90:88:05:93:
d7:a8:2e:34:64:c6:03:75:63:20:ba:24:f3:ab:01:
65:01:15:be:d1:6e:53:51:f7:bb:61:75:2b:87:5b:
99:96:59:e5:76:71:c9:b7:92:27:bb:1a:7b:f7:a0:
9f:17:f6:a2:86:e6:7d:a6:a7:d2:f8:86:2a:13:c8:
76:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:BD:D4:A4:E3:20:0C:C7:9A:FE:9D:F7:17:22:48:FD:11:87:24:31
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/CCA0FF50CACC11EFAA859EAA762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.255.85.0/24
Signature Algorithm: sha256WithRSAEncryption
96:61:4b:be:a2:22:21:bb:74:08:24:f3:6d:d6:41:a7:52:32:
1d:26:d7:5b:9b:1e:a5:38:fe:ef:96:2d:e8:28:ae:c2:6c:0f:
df:1b:36:da:c0:61:f7:23:97:29:8f:9c:79:32:52:8b:3c:e0:
31:51:0a:12:30:07:e9:32:2f:5e:93:e4:59:80:36:6c:ec:f1:
d3:9a:08:04:78:10:0c:30:00:6c:cd:1c:30:04:b7:b5:d4:fc:
23:15:e2:f7:e3:a9:41:24:9d:74:bc:49:aa:44:95:da:65:52:
9b:9e:83:31:25:f9:b0:90:0e:13:ae:4c:23:d7:ff:85:e0:a9:
ec:3c:e7:df:07:e5:1e:df:46:e0:98:11:1f:9e:f9:08:12:43:
8f:04:86:24:b5:f7:7a:21:a0:ad:b2:ac:aa:5a:ac:6d:9a:b8:
69:34:06:39:d6:62:2f:b1:f3:2d:11:48:f8:55:28:44:a7:bf:
b3:5d:33:23:10:a7:ef:da:74:d6:01:86:af:be:c0:45:f3:b7:
54:1e:ac:39:8c:d3:2a:45:55:c5:b0:e6:c3:c2:11:36:b0:11:
f3:3b:46:0b:e9:73:3a:45:57:20:10:ca:50:dd:58:ca:64:7f:
e9:08:80:83:1d:9a:5c:79:f5:16:07:58:5e:7e:fe:c6:41:e9:
02:f9:6f:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 09:54:33 2025 by rpki-client