Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/F2368528250B11ED81D362E9F1222468.roa
File: F2368528250B11ED81D362E9F1222468.roa (raw, json)
Hash identifier: ttngF/keoUoP6s4NvTVq7FSIyM1fvxRBbk0qpro4pII=
Subject key identifier: 40:A8:48:85:40:2C:88:F5:CE:11:D1:B4:53:E8:32:83:38:14:D1:A5
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 170B
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/F2368528250B11ED81D362E9F1222468.roa
Signing time: Fri 26 Aug 2022 06:54:36 +0000
ROA not before: Fri 26 Aug 2022 06:54:32 +0000
ROA not after: Sun 15 Jan 2023 06:54:32 +0000
asID: 139057
IP address blocks: 156.225.108.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5899 (0x170b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Aug 26 06:54:32 2022 GMT
Not After : Jan 15 06:54:32 2023 GMT
Subject: CN=63086e2c-679f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:dd:8d:e8:c5:41:35:21:36:f5:47:e5:05:76:
c1:c8:5b:e0:74:f6:12:36:85:15:47:d8:c0:a8:02:
9f:ad:d1:3a:cb:14:1a:0a:d2:f2:de:4c:cb:1a:fa:
2e:e6:c9:08:f7:35:24:ee:43:e9:34:ba:ed:4f:04:
b1:1a:33:bc:dc:1f:01:27:30:02:c0:81:08:53:2c:
be:f9:42:85:a3:d3:da:56:07:85:53:7e:0c:e5:c5:
b4:2e:74:02:4a:b2:46:c1:d5:26:39:ad:da:7e:c4:
ee:23:81:16:11:31:ee:fe:b9:ce:25:86:48:b5:2f:
22:a3:fe:22:ca:ea:ba:84:44:39:56:de:37:e9:3c:
09:a2:ae:47:ff:02:f7:cd:82:b9:f8:81:b0:7c:fa:
65:78:2c:e9:3d:c7:cd:95:f5:6b:d8:f3:15:33:8a:
15:fa:2f:bd:62:46:24:74:a0:41:17:52:e9:03:80:
dc:01:2f:0e:db:5a:fd:c5:8e:44:48:ca:f7:f3:84:
7b:b5:2b:4f:11:62:fd:00:55:ba:6d:bf:5d:75:e2:
91:88:24:ad:f1:69:23:d1:9b:50:b2:83:4b:57:66:
f1:6c:b4:bd:8c:cd:7e:bd:1d:ab:12:8e:95:73:a6:
75:8d:b5:55:76:3e:a4:22:cb:a2:eb:fd:b3:4b:ad:
71:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:A8:48:85:40:2C:88:F5:CE:11:D1:B4:53:E8:32:83:38:14:D1:A5
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/F2368528250B11ED81D362E9F1222468.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.225.108.0/24
Signature Algorithm: sha256WithRSAEncryption
31:56:9c:7d:1d:35:d5:73:cc:52:f6:26:09:61:54:6d:68:b1:
c6:a0:82:50:22:5b:be:1f:1b:08:38:a5:82:77:1b:4d:5e:85:
2e:8f:15:ac:be:62:95:2e:31:aa:ba:41:35:39:2a:0c:17:d7:
47:4b:5b:c9:00:92:70:c6:c9:da:48:1b:32:64:fc:0d:14:4d:
25:99:1a:de:0c:3b:e7:77:b4:16:39:ca:dc:c3:c9:9b:59:f6:
58:c0:0d:58:27:fd:f5:b7:e4:72:91:e1:77:65:a6:f1:9d:6d:
90:3c:54:3a:71:71:2c:5d:43:3b:46:76:46:2b:ce:11:e2:98:
db:44:10:e8:1e:6a:89:9b:5a:8d:ce:7e:af:c6:47:85:97:7f:
cf:42:57:aa:77:8b:46:f9:28:8b:4b:51:7c:fe:ad:24:ca:82:
23:d4:94:a1:00:24:c6:19:10:0d:78:b2:a6:78:c3:d9:66:1e:
76:1c:3a:a7:96:c1:9d:3d:bd:ff:24:68:4e:37:e2:f7:73:6b:
f9:a3:31:a1:16:fd:be:e6:a2:8a:ca:3c:09:eb:19:af:8f:02:
1c:7e:36:e9:7a:87:0c:f6:91:3f:24:40:28:0f:b1:8d:60:b5:
cb:7d:73:55:8d:f3:bf:94:03:4c:e7:16:ab:ba:b7:e3:85:a3:
68:fd:88:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:22:31 2023 by rpki-client on console-fra.rpki-client.org