Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/F0514E62CE5C11EF9AF77C68762E951A.roa
File: F0514E62CE5C11EF9AF77C68762E951A.roa (raw, json)
Hash identifier: R/OZKEO6N0FguIjPpHxEuFDa2QbFS4rux03cyUD/Law=
Subject key identifier: 19:50:76:BC:2F:D5:DD:CF:81:23:DF:01:30:85:8D:18:A2:08:36:63
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 0102FE
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/F0514E62CE5C11EF9AF77C68762E951A.roa
Signing time: Thu 09 Jan 2025 07:40:04 +0000
ROA not before: Thu 09 Jan 2025 07:40:00 +0000
ROA not after: Wed 22 Jan 2025 07:40:00 +0000
asID: 5065
IP address blocks: 156.239.140.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 66302 (0x102fe)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Jan 9 07:40:00 2025 GMT
Not After : Jan 22 07:40:00 2025 GMT
Subject: CN=677f7d53-bac0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:9c:bb:2f:8c:0d:d2:10:12:ca:9d:d1:f7:87:
19:b7:c1:c6:43:f5:95:c4:6f:5b:65:97:eb:dc:e5:
c1:ca:58:39:6e:d7:16:cd:a4:ea:54:fe:45:dc:9f:
89:b5:f3:ab:bf:46:b3:f6:96:c8:40:a6:50:83:68:
e3:dd:f9:88:54:09:82:75:01:52:60:9d:2f:9f:22:
bf:35:11:84:8c:b8:e1:57:fb:1a:75:69:71:2e:de:
9e:92:e8:bf:26:3d:85:36:90:0a:ce:6d:83:b3:20:
77:9e:5b:72:d4:ae:d6:40:e2:1a:86:e7:6e:f2:c3:
1f:15:7f:c2:3c:de:7f:83:44:49:44:04:97:8b:53:
08:de:05:f6:d2:ee:e5:f6:91:59:8c:c0:21:dc:d9:
fe:6f:7f:98:07:6b:93:9d:13:ff:c4:5b:5c:cc:58:
89:2c:15:72:db:01:c6:d6:23:f4:23:5d:7b:78:ca:
d1:1b:2e:8a:cc:3b:3e:15:39:73:a7:da:13:af:d6:
dc:84:41:e4:7c:4e:f9:ab:36:00:73:3a:b9:b8:fe:
0d:d1:81:d5:e1:8c:48:78:d1:ce:e1:8f:15:f7:b5:
fe:36:35:14:b1:10:d9:87:76:13:e0:1f:ae:71:7f:
c4:85:14:2e:99:0f:6f:2a:11:de:91:8c:4d:a9:bd:
37:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:50:76:BC:2F:D5:DD:CF:81:23:DF:01:30:85:8D:18:A2:08:36:63
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/F0514E62CE5C11EF9AF77C68762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.239.140.0/24
Signature Algorithm: sha256WithRSAEncryption
76:94:37:d3:13:20:1a:81:ff:fc:b6:ce:63:e3:92:b5:af:2f:
8e:94:fc:a1:df:8c:94:63:41:b3:3f:8c:d3:c1:8e:61:34:11:
d0:57:51:d4:28:dd:df:1e:be:17:4d:63:7b:0c:b4:31:4d:cb:
a5:87:f7:fc:76:96:c3:7b:76:bb:e9:ff:47:50:ee:37:0e:b0:
34:fa:06:52:bb:3c:5e:41:7d:a1:ae:ce:6c:18:6b:2c:d3:25:
0b:ce:3c:16:9f:9d:44:90:16:00:75:1b:08:ef:77:19:3e:b0:
44:f2:ab:ad:c8:15:93:a0:e0:48:4b:18:25:d3:e9:fe:8b:c6:
ae:06:6b:12:93:35:ec:d7:b4:1c:63:fa:90:b0:d8:3a:ba:aa:
b1:8d:9d:46:1b:a8:a4:46:2c:50:57:15:1d:c8:80:c0:f1:25:
c4:54:d6:2e:89:8f:f0:dd:aa:bf:85:05:04:59:d1:71:92:f3:
ed:12:b0:b7:94:96:35:93:00:73:3c:46:25:7d:24:3b:f7:68:
1e:1c:7a:68:f2:e6:bf:fc:3e:fe:b7:95:c2:e2:0c:5b:ed:7b:
1e:db:65:4c:8d:06:a2:36:0a:55:74:5a:ff:69:9c:42:66:e1:
cd:cb:ee:e4:ea:be:e8:66:4e:a7:62:77:3d:25:c2:28:53:68:
c8:dc:00:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 09:50:52 2025 by rpki-client