Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/E2B6BCA0CAC011EFAC8FC360762E951A.roa
File: E2B6BCA0CAC011EFAC8FC360762E951A.roa (raw, json)
Hash identifier: hb4IvlpEZWYcBuIBQtAut8IrBnNKmKoEF3h6XNbK00o=
Subject key identifier: 7C:82:41:90:60:5B:8B:1B:DF:89:C5:59:50:73:06:E7:58:CF:C9:1F
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: F71E
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/E2B6BCA0CAC011EFAC8FC360762E951A.roa
Signing time: Sat 04 Jan 2025 17:25:26 +0000
ROA not before: Sun 05 Jan 2025 17:25:22 +0000
ROA not after: Thu 16 Jan 2025 17:25:22 +0000
asID: 5065
IP address blocks: 156.229.59.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 63262 (0xf71e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Jan 5 17:25:22 2025 GMT
Not After : Jan 16 17:25:22 2025 GMT
Subject: CN=67796f06-8789
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:51:ee:14:82:fd:d7:d6:f3:e6:52:21:e3:98:
ba:12:a0:d0:ff:9b:6f:b2:49:20:df:02:1a:97:21:
41:7a:12:5a:5c:e8:9d:ae:38:09:29:e1:5f:82:b4:
03:1f:1a:d5:8f:2f:90:c9:32:bb:c5:89:7e:c8:f2:
d5:47:a1:4e:ed:50:e4:39:d3:1b:ae:3a:2d:e5:55:
07:c7:15:4e:1e:f2:27:e2:86:88:6c:25:a9:35:03:
79:b2:78:f5:27:68:f0:97:38:89:1e:2f:4b:7a:6f:
d4:e6:23:b4:b1:6a:a3:94:b9:70:aa:e4:02:d7:54:
95:b8:ef:17:49:5d:59:3c:99:b3:db:98:2f:c4:2c:
11:51:8f:b8:40:50:c7:35:bb:83:bf:55:5e:b5:a4:
75:cb:38:02:0f:00:91:38:f8:50:70:05:1a:c8:b8:
e5:36:08:84:a2:de:16:49:93:59:61:9e:ac:6f:ba:
a6:57:da:37:fa:a7:40:21:c4:14:64:e0:d6:7d:95:
34:62:49:81:96:1f:ec:c1:d8:4e:53:5a:82:0f:93:
cc:11:85:a2:93:19:d6:4e:bb:c2:f5:cf:20:17:db:
45:94:b2:d1:d9:a1:14:76:01:b4:76:ab:c3:45:8b:
74:ac:ba:f2:9f:c4:f0:02:c5:9c:c7:ee:5e:a2:6d:
ce:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:82:41:90:60:5B:8B:1B:DF:89:C5:59:50:73:06:E7:58:CF:C9:1F
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/E2B6BCA0CAC011EFAC8FC360762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.229.59.0/24
Signature Algorithm: sha256WithRSAEncryption
6f:f0:a8:6e:71:93:74:77:0c:b0:64:68:d1:c3:84:c9:fe:f4:
6d:9a:e5:70:a6:77:92:16:41:99:dc:e9:9f:04:1f:4f:99:36:
72:b2:6d:68:b9:09:3a:0e:28:4f:62:6e:18:a3:cc:d2:84:16:
f6:2c:20:94:0b:6c:ab:27:38:5d:7f:15:75:ac:6b:6e:18:15:
70:e9:ad:d7:45:e5:04:ab:33:5f:ab:12:18:da:30:62:94:d0:
5a:02:37:8d:46:8b:cd:04:0b:cc:22:56:aa:9c:51:ac:66:7a:
68:64:64:50:4b:32:ff:2d:09:3f:a2:7a:52:7d:30:53:03:5e:
ca:f4:b8:4c:4a:1b:8c:15:f0:66:3c:bf:18:cb:1d:da:92:33:
ca:e2:1f:e9:a4:04:8c:05:44:ad:3e:4d:c1:03:1c:17:62:5b:
46:bd:40:88:50:93:fb:71:c9:a0:40:23:45:c3:cc:3d:36:2e:
10:6d:69:39:75:02:2c:d1:63:b6:e3:ef:aa:d0:27:d6:e8:a3:
8c:57:e0:02:6a:3c:e1:0a:49:2c:10:12:bf:0e:f1:e5:e1:e1:
26:29:9a:db:31:46:20:79:72:2e:92:39:62:f6:84:7f:3e:18:
cc:28:aa:e9:9b:d6:4a:70:10:86:18:f9:5a:e5:07:a0:61:65:
7b:f1:82:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 09:42:46 2025 by rpki-client