Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/E1AF5FBCCABE11EFBC63FB53762E951A.roa
File: E1AF5FBCCABE11EFBC63FB53762E951A.roa (raw, json)
Hash identifier: AleTkyThLKDZuO5LYYkF040+6qXJeB6PFAFyy1I1kq8=
Subject key identifier: C2:49:60:E8:05:05:E5:55:07:89:D8:D1:83:5D:76:B0:CA:35:71:99
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: F70E
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/E1AF5FBCCABE11EFBC63FB53762E951A.roa
Signing time: Sat 04 Jan 2025 17:11:05 +0000
ROA not before: Sun 05 Jan 2025 17:11:02 +0000
ROA not after: Thu 16 Jan 2025 17:11:02 +0000
asID: 5065
IP address blocks: 156.229.52.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 63246 (0xf70e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Jan 5 17:11:02 2025 GMT
Not After : Jan 16 17:11:02 2025 GMT
Subject: CN=67796ba9-20e8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:ef:8d:16:00:55:99:e5:dd:40:aa:55:a0:4d:
09:90:29:55:ac:65:e2:58:b2:1b:e7:80:08:a5:77:
38:46:c7:ab:05:c5:6f:0a:24:5c:79:30:f9:1e:99:
ac:5c:cc:19:c9:4e:a1:02:98:d6:c3:d5:c0:2d:cd:
6e:84:bc:d2:48:68:b4:ad:55:53:99:92:79:65:54:
45:fe:0a:a3:f9:4e:ca:f9:51:fb:50:c3:27:e4:f7:
fa:74:6a:cf:43:8d:c7:31:2d:a8:6a:4d:94:e1:a2:
c4:e2:cb:1e:58:2c:7a:26:61:01:79:7a:38:68:e5:
af:97:cf:60:1a:49:69:82:7a:88:20:0a:22:79:96:
3a:a3:ae:bf:5c:c3:1d:39:e5:80:47:cf:ef:42:e7:
e4:8e:3c:54:43:82:25:34:4d:50:c0:c4:aa:7b:1f:
89:eb:32:e1:58:46:be:c1:10:30:c0:39:ce:92:14:
19:46:9f:81:d6:c9:1d:8d:3c:ff:71:2d:f6:e0:5a:
5f:ae:2c:e0:08:cb:ca:97:15:97:e7:70:40:65:a2:
3e:91:4e:bf:6b:76:8a:42:d1:17:56:02:b5:96:d0:
1c:eb:a7:ad:08:7a:86:d7:fd:f1:02:fe:33:7d:08:
19:a1:c8:22:de:b2:18:3c:ab:14:5e:6d:4f:d3:b7:
18:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:49:60:E8:05:05:E5:55:07:89:D8:D1:83:5D:76:B0:CA:35:71:99
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/E1AF5FBCCABE11EFBC63FB53762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.229.52.0/23
Signature Algorithm: sha256WithRSAEncryption
7c:64:3e:fd:f5:6a:48:6f:14:fa:c8:51:ae:25:fe:9f:a4:b7:
00:fe:99:af:fa:9c:12:b6:d0:c4:c1:54:7d:bd:db:cd:61:47:
a7:d9:1f:80:a5:5f:b2:bf:0e:dc:20:0f:30:ac:61:cb:53:a4:
7b:df:31:7f:d3:96:5b:b4:3f:1c:f9:b5:ea:06:8f:87:e2:70:
2d:9f:0e:3e:88:ea:74:00:ca:87:6c:ee:88:c3:6d:cf:50:a2:
ec:0f:78:85:52:bd:ff:00:0c:a0:4d:8b:7a:47:da:96:e1:34:
e5:8d:92:85:c6:59:3b:fd:22:79:0d:ae:08:a6:d0:b2:ca:5f:
98:95:b8:1d:61:26:e9:db:98:9e:aa:4e:46:b1:42:7e:b0:ca:
a5:5d:81:16:3f:56:cf:33:99:e5:21:fd:1e:6a:75:1d:0a:9c:
d7:5b:2c:bb:33:db:86:b5:0d:81:5c:90:00:ec:54:a0:ab:68:
ae:85:56:f7:db:87:9e:24:b3:34:24:7a:89:81:36:1a:dc:d9:
64:fe:4c:55:29:21:5f:2f:e6:54:3b:ae:02:9f:ae:80:e0:cc:
1e:69:7d:45:e4:cf:5c:05:be:5d:f1:48:25:11:8c:8e:8b:b6:
2e:cb:be:bc:0b:f9:ec:52:35:7e:bd:2a:89:b2:83:65:63:0a:
24:53:e1:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 10:01:31 2025 by rpki-client