Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/EB416202CACB11EF80BC45A4762E951A.roa
File: EB416202CACB11EF80BC45A4762E951A.roa (raw, json)
Hash identifier: Gl72pXIAtDLeiNHdmNGgETqJwj8ODQLLS+cQuTYFFSY=
Subject key identifier: 31:0B:02:3C:86:07:AF:36:BC:C7:8E:17:F2:46:19:06:DE:89:D8:B8
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: F756
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/EB416202CACB11EF80BC45A4762E951A.roa
Signing time: Sat 04 Jan 2025 18:44:25 +0000
ROA not before: Sun 05 Jan 2025 18:44:21 +0000
ROA not after: Fri 17 Jan 2025 18:44:21 +0000
asID: 39600
IP address blocks: 156.255.81.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 63318 (0xf756)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Jan 5 18:44:21 2025 GMT
Not After : Jan 17 18:44:21 2025 GMT
Subject: CN=67798189-9609
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:b0:1a:f2:07:3d:d9:64:74:5e:b0:73:67:fc:
2c:2b:57:40:2d:f7:52:bb:17:6f:5a:82:bf:e8:d5:
d7:85:25:57:33:4a:59:91:c7:d2:19:35:17:52:ae:
0f:c5:08:cb:81:b2:ab:03:38:af:1a:7f:d6:a6:78:
01:a2:22:aa:78:3e:a3:db:61:f6:49:79:3c:60:06:
9d:a6:1f:e6:20:44:1c:32:a5:32:ee:b0:55:bb:fe:
fd:a1:21:8e:31:fe:7d:8a:7d:a6:2a:1e:92:82:96:
c1:30:55:e7:a4:ae:e5:23:00:57:61:9f:7d:ae:9a:
a5:d0:47:7b:f6:5a:13:65:77:f2:60:2f:fd:01:cf:
87:7a:57:c0:c4:4c:41:00:d6:27:ac:28:1d:54:a3:
c9:78:27:bc:ca:d5:78:33:bf:d7:65:86:bd:6c:2e:
03:b1:c2:79:5e:25:55:08:68:97:52:f8:d4:f0:7a:
5d:9e:e5:a6:a6:11:8f:d5:d6:46:65:1b:2c:a7:45:
20:52:62:ae:2e:5e:c9:e9:fb:7a:dd:d3:6b:e1:6c:
c6:31:8f:a6:b7:33:7e:1f:73:aa:72:54:49:b5:70:
26:5c:55:23:54:9d:19:9e:50:80:84:89:e6:6f:ef:
87:26:77:89:32:51:92:4f:c1:a6:fb:27:53:3d:27:
5a:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:0B:02:3C:86:07:AF:36:BC:C7:8E:17:F2:46:19:06:DE:89:D8:B8
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/EB416202CACB11EF80BC45A4762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.255.81.0/24
Signature Algorithm: sha256WithRSAEncryption
bb:ce:d3:9b:36:c7:1a:7e:81:fa:b4:7a:a2:51:03:2c:7f:99:
68:ff:bf:ce:36:fd:48:96:95:dc:36:e0:86:1b:f8:b7:ca:81:
49:dd:b8:61:bf:47:04:13:6a:ec:33:69:32:5a:56:b5:64:a4:
47:66:70:8c:11:e6:21:7b:97:e4:ba:65:e5:af:ac:1c:43:51:
e8:c5:c8:a7:a6:4a:f2:bd:39:ef:14:46:68:04:f4:c7:e7:a0:
c0:5d:bd:2e:f1:ad:77:cf:e0:5d:c2:e0:91:d2:c4:16:9e:ab:
2c:1c:53:a6:bb:bc:7f:d4:8a:fc:7c:85:93:a2:f1:14:14:24:
e0:35:2d:23:00:82:c9:5f:e1:f8:52:e4:99:91:cd:c0:99:fb:
e5:c9:03:6b:51:a8:59:bb:88:e8:22:20:b6:64:7e:a5:6d:7e:
f2:9c:3a:1d:bd:d5:d1:57:26:94:16:cb:af:27:a7:4c:27:f1:
03:0d:b9:f0:e1:c6:6f:78:f2:6a:e9:78:d3:43:c3:a6:1f:c0:
11:1b:2b:49:3f:61:f7:e0:21:b7:2a:66:1d:86:80:5c:3d:4e:
89:24:b8:b2:8c:77:7a:ee:a1:8a:61:1f:92:6d:9e:ec:6b:82:
d3:41:4b:bd:27:0a:a3:8e:11:95:47:7f:99:57:a4:e5:84:ff:
00:73:d2:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 09:38:12 2025 by rpki-client