Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/DCAF9F56C9A411EFADCAA462762E951A.roa
File: DCAF9F56C9A411EFADCAA462762E951A.roa (raw, json)
Hash identifier: OcKrd83JO5t2cGJQEAokGw85syQ+YPAFBqfc9HauxTs=
Subject key identifier: 95:EB:E6:4D:D8:F3:06:3F:29:90:99:12:69:AD:E3:2B:40:07:EE:8B
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: F67F
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/DCAF9F56C9A411EFADCAA462762E951A.roa
Signing time: Fri 03 Jan 2025 07:32:19 +0000
ROA not before: Fri 03 Jan 2025 07:32:15 +0000
ROA not after: Sat 18 Jan 2025 07:32:15 +0000
asID: 54801
IP address blocks: 156.242.12.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 63103 (0xf67f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Jan 3 07:32:15 2025 GMT
Not After : Jan 18 07:32:15 2025 GMT
Subject: CN=67779282-9081
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:ed:ea:bb:9d:64:ec:56:42:d7:7c:84:53:d9:
fc:44:11:9b:c9:9f:9a:0f:1b:a6:25:37:a4:a6:e1:
e9:c3:1a:05:79:c5:7d:bd:db:81:c0:10:ec:a8:25:
09:54:98:e3:52:57:e7:a0:cd:a6:bf:5b:70:7f:50:
92:3e:26:69:e1:e3:01:55:25:d7:7e:be:53:9c:9b:
86:a5:cf:2f:e6:d8:07:79:fb:52:82:c9:cf:21:d4:
89:b4:bc:46:81:19:e9:f5:1e:2d:37:2e:ab:c2:c0:
ce:b0:93:ab:64:33:53:08:ba:3b:f2:c6:82:48:90:
44:b3:e5:d3:8b:70:d4:1a:2f:4e:a1:53:42:85:51:
1c:4e:45:4d:a5:99:94:af:8c:12:14:9e:7a:82:59:
3f:4c:19:c2:ba:1f:05:8f:ea:7a:83:e8:41:98:10:
e4:9d:51:d2:b0:d2:8f:2d:e9:2d:7d:64:a0:e3:03:
6f:23:80:42:25:4c:17:0c:79:5e:2d:67:9a:77:e5:
ab:fb:42:73:5a:65:00:c7:14:b2:34:e9:8f:15:5d:
32:4a:dc:50:37:a3:26:51:dd:a6:09:1f:99:59:fe:
f9:63:8e:7a:4e:4c:84:5b:36:49:94:e6:bc:26:68:
49:09:3e:00:3b:f1:80:a1:02:6c:f5:44:48:79:85:
ef:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:EB:E6:4D:D8:F3:06:3F:29:90:99:12:69:AD:E3:2B:40:07:EE:8B
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/DCAF9F56C9A411EFADCAA462762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.242.12.0/22
Signature Algorithm: sha256WithRSAEncryption
78:00:53:f2:6d:28:78:d5:f0:61:14:f1:00:38:92:ff:62:00:
05:1a:d7:3d:07:22:c1:b1:14:87:f2:b6:2f:b3:38:e6:4d:b1:
11:3b:f9:3d:74:81:71:66:b6:30:74:fa:a9:77:e2:1f:55:ea:
66:e5:db:54:6e:18:7e:5d:85:ef:db:dc:b8:e9:d1:87:7c:25:
ed:de:1d:d9:02:35:83:dd:b7:58:e0:d7:1e:4a:77:ab:81:35:
ea:c1:cf:10:99:45:2d:d4:bc:ec:54:3a:8d:27:05:64:a0:68:
c5:10:35:0c:d2:03:bf:40:25:6f:b7:08:d9:a7:56:b7:39:a6:
b8:24:cb:1c:0e:80:f1:90:ee:5e:1d:ba:e4:b3:4c:60:ec:56:
62:d1:d2:7d:a0:bc:9b:45:ea:2c:ad:d1:10:8f:7d:df:8b:d5:
06:86:a7:da:94:c5:68:5b:41:9f:c0:c9:50:b1:31:e0:11:f1:
eb:5d:37:66:d3:37:4b:33:54:83:dc:1f:d3:bc:9f:5b:34:2c:
a4:9c:3e:58:96:3d:3e:2d:b6:d9:02:6b:ac:e8:ce:52:da:ba:
42:dd:04:f3:42:f2:ff:98:46:11:17:fd:7f:48:c4:d5:b2:32:
f9:42:98:97:4f:ac:82:92:e7:75:35:b8:c0:a6:8d:73:6f:74:
8c:1d:44:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 09:54:48 2025 by rpki-client