Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/E4B51CA6BF9C11EF96B8199F762E951A.roa
File: E4B51CA6BF9C11EF96B8199F762E951A.roa (raw, json)
Hash identifier: wHpA7IdV/qCb8K6Pf4Lbosxj80Mwul9bEEcrnmvQzec=
Subject key identifier: DB:57:73:F0:C6:DE:EF:B5:4A:7F:02:E4:CF:41:61:B7:B7:6B:A1:49
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: E7B6
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/E4B51CA6BF9C11EF96B8199F762E951A.roa
Signing time: Sat 21 Dec 2024 13:10:05 +0000
ROA not before: Sat 21 Dec 2024 13:10:01 +0000
ROA not after: Fri 31 Jan 2025 13:10:01 +0000
asID: 5068
IP address blocks: 156.245.192.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 59318 (0xe7b6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Dec 21 13:10:01 2024 GMT
Not After : Jan 31 13:10:01 2025 GMT
Subject: CN=6766be2c-d4d1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:c8:62:e2:8a:dd:39:8b:f8:80:d9:9f:1b:65:
46:1e:9e:21:fa:64:e2:44:96:10:2e:6f:92:ee:e5:
1e:59:82:39:66:d0:da:d3:f2:a5:de:2d:64:f4:df:
65:7a:cd:d6:2a:76:94:fa:37:72:70:9e:e5:45:fc:
57:10:08:50:f2:56:fc:46:16:76:b2:f0:ea:87:86:
0c:be:20:2d:22:4d:d4:3c:6e:97:32:a8:de:92:3d:
bf:1f:79:22:92:4f:32:f1:22:5a:ef:35:0d:10:8d:
8b:88:7b:3d:04:d4:c3:e6:28:c4:fa:03:1e:3c:41:
68:91:44:41:74:d6:de:80:eb:b0:dc:39:97:61:60:
ff:c8:f5:57:2e:b8:a6:db:b8:a5:38:f6:eb:41:64:
dd:79:9d:60:e3:54:0f:45:a4:8c:11:8f:80:f1:eb:
77:02:4a:e5:46:13:84:01:79:e3:fd:70:e9:9e:ad:
e0:9f:dc:21:f1:68:60:8f:14:62:e1:d2:9b:ff:56:
55:4d:89:5b:ad:5a:fd:f3:92:c9:aa:61:64:e1:0a:
6b:9f:24:bc:31:db:53:85:f0:ba:62:7b:4d:a2:bc:
01:00:ba:d4:dc:72:2a:52:fe:2c:e2:0e:08:60:96:
01:91:1b:e0:87:b9:30:c2:29:41:1e:58:d5:ba:0e:
6d:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:57:73:F0:C6:DE:EF:B5:4A:7F:02:E4:CF:41:61:B7:B7:6B:A1:49
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/E4B51CA6BF9C11EF96B8199F762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.245.192.0/23
Signature Algorithm: sha256WithRSAEncryption
1e:ad:6a:a4:f5:45:13:3c:6c:a7:80:9d:32:96:11:92:a2:dc:
70:1c:c5:2a:e7:60:d3:0a:be:f7:1c:de:75:4e:19:bd:ca:64:
b1:44:80:80:2f:8d:5e:fe:8b:f5:7b:00:54:5d:f7:a7:6d:ee:
8a:b0:40:b7:71:5f:39:86:86:35:10:47:41:b1:b7:5e:64:b0:
51:7e:3f:e8:30:3d:5f:a3:e0:c6:97:5b:94:82:a1:1b:ba:b3:
20:cf:19:e8:77:64:5e:f8:9d:f4:79:84:c2:ee:ca:03:34:7b:
ff:cd:3b:50:67:28:1f:de:39:c5:65:4c:92:1e:53:c7:65:e8:
97:a1:f1:1d:f5:5e:79:41:0f:90:2d:56:94:8d:6f:88:8f:1b:
93:b3:2b:98:17:ba:eb:49:f3:5a:b9:a7:d6:30:4b:4e:4a:f2:
93:49:22:ad:6b:e9:33:64:82:d8:b6:06:b7:bd:bb:42:c1:52:
74:30:47:b3:95:8c:bc:25:8d:79:a2:b1:c7:e2:a5:54:6b:a7:
a5:da:9d:4a:11:5d:2d:c8:b6:87:3d:da:3c:72:fa:39:90:d2:
c4:17:4c:68:4c:91:21:00:19:6e:9d:25:18:d1:35:57:dc:a7:
a2:fb:53:06:7b:ec:8a:1c:83:47:e9:7c:f9:9b:79:76:68:0b:
9f:5b:89:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 09:37:49 2025 by rpki-client