Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/F9302F72CD8E11EF9D2EFB44762E951A.roa
File: F9302F72CD8E11EF9D2EFB44762E951A.roa (raw, json)
Hash identifier: 8HFjwI++bkvBduLTBzpLcR2jwMLZJZQe7Z6mmdUqLb4=
Subject key identifier: F6:94:B5:5D:C4:D2:1F:88:72:43:99:08:24:19:B0:FC:E5:76:F3:96
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 010055
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/F9302F72CD8E11EF9D2EFB44762E951A.roa
Signing time: Wed 08 Jan 2025 07:05:42 +0000
ROA not before: Wed 08 Jan 2025 07:05:38 +0000
ROA not after: Mon 20 Jan 2025 07:05:38 +0000
asID: 395793
IP address blocks: 156.228.15.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 65621 (0x10055)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Jan 8 07:05:38 2025 GMT
Not After : Jan 20 07:05:38 2025 GMT
Subject: CN=677e23c6-258a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:e1:a8:09:ee:c3:08:51:f7:fc:bf:8d:09:15:
ca:ba:58:70:7d:8d:a0:54:02:18:2c:0c:ec:0f:b4:
98:85:bb:ed:47:a8:26:11:58:7a:d3:c3:14:02:7a:
c8:22:a6:65:91:8b:3f:8c:a0:3b:af:65:2a:d8:bb:
93:f1:70:cd:b0:28:ef:47:bd:e8:78:42:79:dc:71:
2e:8b:22:74:e5:bd:72:dd:15:24:e7:ff:fc:fb:e1:
fe:d0:53:64:17:a4:a6:92:a9:43:cf:30:5f:eb:a8:
69:92:e8:a5:10:29:7f:b2:4a:2f:4d:99:0c:54:af:
55:b3:32:30:c6:3e:1b:ef:ff:d8:66:ba:a6:b3:67:
53:f0:57:af:f4:fb:37:ae:50:52:2f:a8:1c:6d:af:
ad:b8:db:b8:19:3c:58:5e:78:36:6f:06:6d:71:01:
54:1b:94:23:b1:f2:45:bf:29:fd:a6:75:04:7c:7d:
d9:09:9d:9b:5a:b1:04:19:52:2a:81:6f:5f:27:10:
9a:bb:a0:ff:fe:f2:46:f5:30:00:f8:f1:7f:20:b7:
ed:10:b6:e8:41:94:2d:94:b7:8e:9b:05:c0:ee:41:
27:05:f1:f6:74:6c:64:cf:50:9e:c5:f5:5c:d6:bd:
ae:dd:98:c4:07:18:7a:05:de:62:03:82:5a:db:52:
9e:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:94:B5:5D:C4:D2:1F:88:72:43:99:08:24:19:B0:FC:E5:76:F3:96
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/F9302F72CD8E11EF9D2EFB44762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.228.15.0/24
Signature Algorithm: sha256WithRSAEncryption
6a:09:56:3a:d0:77:b2:91:a3:e3:d7:66:f1:96:a1:24:25:c4:
e5:4a:4e:ac:63:fc:5a:67:3f:76:a7:aa:4e:1e:cf:19:15:48:
e9:bc:1a:9d:af:75:42:3b:86:86:1c:c4:03:10:2a:28:d4:99:
56:01:3f:cb:68:e5:85:f2:8f:45:44:0d:d1:2d:d6:e7:a6:8d:
16:4d:74:31:61:d2:a6:98:d4:ee:5a:c3:99:12:5a:5c:91:57:
02:7d:c0:2b:4e:73:16:59:17:4a:25:9a:d4:b5:9a:53:8e:c6:
48:ac:dc:74:f9:36:a8:c5:c7:b8:f9:1f:ce:7b:5b:b1:b8:9f:
f9:e9:61:1f:0d:69:ff:0d:2f:0c:17:35:d1:62:74:80:49:5a:
4d:29:ef:90:bc:d8:a3:93:bd:23:23:c0:c7:ae:a7:16:8e:29:
e5:17:c1:d3:57:61:b3:f0:36:3e:4a:de:81:11:b2:0b:5b:2f:
4f:a0:d3:cd:25:b0:39:54:3d:84:96:a7:45:0d:17:56:ef:ce:
68:5e:19:44:f8:6f:2a:94:0c:32:38:d0:7a:3f:9e:3a:d9:e4:
03:43:2d:ce:2a:67:b8:41:bd:f4:03:97:96:b7:10:bc:b5:16:
ed:dc:8e:45:1f:bc:ae:f8:f5:5b:c6:af:cf:cc:b6:66:4e:44:
17:65:8c:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 09:38:42 2025 by rpki-client