Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/EC9E5932CE7E11EFB1ED28BD762E951A.roa
File: EC9E5932CE7E11EFB1ED28BD762E951A.roa (raw, json)
Hash identifier: WWwn/Hky3shljN28YN7cFsWrezftn/ylVZKv7hUihBU=
Subject key identifier: F0:38:A9:FE:FE:BC:22:5F:89:62:8D:67:1E:C1:6B:BD:DB:70:FC:18
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 010382
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/EC9E5932CE7E11EFB1ED28BD762E951A.roa
Signing time: Thu 09 Jan 2025 11:43:20 +0000
ROA not before: Thu 09 Jan 2025 11:43:15 +0000
ROA not after: Wed 22 Jan 2025 11:43:15 +0000
asID: 22773
IP address blocks: 156.242.28.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 66434 (0x10382)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Jan 9 11:43:15 2025 GMT
Not After : Jan 22 11:43:15 2025 GMT
Subject: CN=677fb658-a152
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:4a:86:83:c3:04:fd:6e:73:73:cc:87:17:d8:
fd:bd:11:07:a4:ac:fe:45:fb:ee:92:c8:61:d0:42:
92:36:8c:f2:dc:85:b7:86:bd:c6:83:3e:12:e1:e8:
e1:73:9e:0b:64:3e:b4:da:b3:b6:24:2a:9b:9b:a6:
a4:ab:16:48:d8:30:f3:ce:72:21:b1:d7:2e:63:8a:
bc:40:e0:5d:8a:d6:d3:52:14:b7:e9:e5:7b:51:95:
b9:31:49:1b:00:20:44:d9:6e:78:f2:f9:87:d3:26:
2c:a6:21:fb:7f:cd:d4:c5:b9:2a:ce:5d:81:cf:51:
72:7e:2b:83:25:f9:08:c3:e1:ad:10:17:ac:c5:b0:
14:44:00:2f:de:94:50:87:09:79:2e:56:25:3c:53:
70:4b:16:0a:7a:37:1b:e6:c1:60:ef:a8:85:62:76:
e5:8d:f7:1f:6e:8f:64:8e:8b:f0:54:07:bc:c2:9f:
24:63:d9:94:77:ff:51:20:4b:7d:e0:91:9c:cc:06:
a2:16:8b:70:65:e0:15:0f:eb:d3:a6:eb:70:a9:37:
c5:45:b3:b6:a2:2d:74:c4:f5:e5:5a:a0:97:ec:bc:
1a:47:07:78:a6:cf:86:d4:38:8d:04:3b:1c:21:e9:
a2:f1:46:b2:ca:2f:96:47:fc:31:4b:c4:2b:00:da:
7c:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:38:A9:FE:FE:BC:22:5F:89:62:8D:67:1E:C1:6B:BD:DB:70:FC:18
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/EC9E5932CE7E11EFB1ED28BD762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.242.28.0/22
Signature Algorithm: sha256WithRSAEncryption
3f:72:c0:04:e9:23:81:5f:e0:9a:f5:f5:35:c8:2a:2e:8f:80:
c9:2c:3c:ac:da:bb:f7:8b:cf:88:b5:76:1e:bd:a1:7a:57:f6:
35:0c:c2:0b:5a:36:f0:03:d4:b6:3f:5b:af:d5:f8:97:7f:d7:
8e:d0:c8:8f:70:1e:72:bc:bd:7c:f4:6d:7e:9f:2a:25:9e:49:
b7:cf:b7:50:8e:74:2f:c5:e7:08:80:56:d3:25:d6:6d:5e:c7:
db:93:28:96:7a:33:ff:80:7e:e8:37:cd:23:11:93:2a:d7:51:
fe:45:75:cd:45:a9:bd:83:42:f1:2e:27:9a:a2:46:0a:31:84:
53:bb:6f:0b:75:cf:d6:e9:76:3f:84:91:b1:26:3f:26:7f:1c:
34:10:a1:7c:0d:ff:24:0c:bb:b7:24:86:3d:d8:2b:d3:92:18:
05:b2:3d:a5:37:1c:ee:63:e3:6f:d6:d5:c7:9c:c4:bd:77:78:
bb:bd:4f:7f:a1:fe:18:ae:37:d2:2e:fe:1f:95:7b:bb:da:3a:
c4:ab:12:8f:63:be:ae:76:20:ce:1f:cd:ea:36:f1:1d:dd:bf:
ee:2b:08:81:e2:b9:8b:a6:fa:ed:46:bd:1f:f6:69:5e:8c:3f:
1a:30:19:05:3a:9d:b2:17:8c:33:13:ed:cc:f2:e1:97:5c:ac:
28:eb:42:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 09:49:35 2025 by rpki-client