Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/FA69A4A4B92511EFAAC9A77F762E951A.roa
File: FA69A4A4B92511EFAAC9A77F762E951A.roa (raw, json)
Hash identifier: 5tfk0tS5z1l6NG55ZvCokIj/zwDb0psVCmY2aJ2c0tE=
Subject key identifier: 14:94:E5:07:67:D5:80:9B:DB:94:17:DA:E2:18:91:63:06:16:1F:FF
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: E307
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/FA69A4A4B92511EFAAC9A77F762E951A.roa
Signing time: Fri 13 Dec 2024 07:43:44 +0000
ROA not before: Fri 13 Dec 2024 07:43:40 +0000
ROA not after: Sat 25 Jan 2025 07:43:40 +0000
asID: 44559
IP address blocks: 156.246.192.0/18 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 58119 (0xe307)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Dec 13 07:43:40 2024 GMT
Not After : Jan 25 07:43:40 2025 GMT
Subject: CN=675be5b0-38b8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:fb:14:ae:03:7f:e3:96:25:77:87:90:2c:e5:
25:19:e4:30:51:d4:79:82:ea:b4:d7:c1:89:25:6e:
0b:5b:1e:fa:10:f2:e0:e4:54:9b:91:98:41:83:cd:
fa:3b:3d:f0:a4:a9:90:cd:c1:e2:ae:68:1b:d1:1f:
92:31:c9:c0:d4:bd:3e:d3:91:63:0e:0a:1d:94:8c:
da:58:06:cd:05:8b:37:4a:81:8a:12:74:9b:93:fc:
7d:57:e1:74:58:94:dd:ab:e6:46:08:76:ed:b6:c3:
7a:84:1b:cc:1d:f2:6a:24:86:73:9c:94:43:65:09:
1c:18:63:00:77:46:ef:c3:dd:98:48:6f:1f:7e:76:
1e:25:1b:66:72:7b:a5:06:c8:d3:54:76:6b:d1:94:
d2:16:c3:1e:63:31:f1:c0:2e:8c:2a:78:8e:38:c5:
a3:74:06:95:e1:cf:5d:0c:c3:4b:a8:17:fa:63:e9:
ee:c0:af:60:b5:9d:63:81:7b:db:59:05:1d:9a:e1:
61:68:d3:20:01:d5:08:07:de:2e:f1:a7:ce:23:8a:
c9:a0:c1:b5:55:0e:b3:68:26:e3:d3:98:2b:8e:27:
13:32:9c:3a:c1:8f:b0:7e:bb:c6:ac:31:43:e8:74:
f7:fc:50:ad:90:ee:e3:e4:7a:fe:23:8e:4a:85:77:
4e:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:94:E5:07:67:D5:80:9B:DB:94:17:DA:E2:18:91:63:06:16:1F:FF
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/FA69A4A4B92511EFAAC9A77F762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.246.192.0/18
Signature Algorithm: sha256WithRSAEncryption
75:41:2c:61:f0:a2:8e:e1:a5:dd:d4:94:cc:a9:aa:ca:85:ce:
7d:92:e5:c1:2e:b1:eb:1e:20:2f:6e:16:60:80:5c:77:37:9b:
5e:ca:13:bc:d4:5b:73:41:bf:8e:9a:36:22:60:60:71:83:a3:
38:c5:15:4b:88:9e:c6:0b:aa:73:6a:bc:d3:91:6d:5d:c9:92:
71:ea:64:f1:79:37:16:e5:99:46:ba:7c:57:dc:6a:1b:f4:68:
4e:09:72:78:c8:10:2d:a3:21:92:91:e2:36:bc:af:f9:d6:31:
8b:c0:3a:b7:d9:25:65:08:22:70:c4:d5:dc:d0:a6:54:bc:ee:
22:a2:2c:09:ac:03:4a:74:21:6b:4c:46:bc:69:83:ce:94:e4:
e7:1c:97:06:b3:68:34:b7:4e:c7:67:7a:8d:70:0d:83:10:ef:
e2:3b:72:46:8b:33:4f:3c:90:07:26:43:df:72:73:47:3a:07:
7b:92:bc:40:1b:41:c9:18:c8:3e:ad:d2:ed:43:5c:88:c5:a1:
50:42:20:e2:c4:8d:90:02:04:b6:8a:f1:87:74:9f:56:2a:29:
d5:c3:a3:39:df:44:27:99:0a:84:f1:34:3f:1d:c4:36:e8:a4:
72:5c:df:36:1d:01:45:8c:33:00:14:c6:66:90:59:71:41:c4:
e1:c8:e2:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 09:42:21 2025 by rpki-client