Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/01291AACF8C511EF914234B2762E951A.roa
File: 01291AACF8C511EF914234B2762E951A.roa (raw, json)
Hash identifier: 30S0txNVuIvPM9cD42m1Hez024hW24Cc0jX17v+bPwo=
Subject key identifier: CD:27:F3:85:E4:E2:8F:4E:13:07:E7:94:B5:76:FC:C9:79:8A:89:76
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 0142A7
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/01291AACF8C511EF914234B2762E951A.roa
Signing time: Tue 04 Mar 2025 06:50:48 +0000
ROA not before: Tue 04 Mar 2025 06:50:45 +0000
ROA not after: Fri 04 Apr 2025 06:50:45 +0000
asID: 200373
IP address blocks: 156.228.86.0/24 maxlen: 24
156.228.87.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 82599 (0x142a7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Mar 4 06:50:45 2025 GMT
Not After : Apr 4 06:50:45 2025 GMT
Subject: CN=67c6a2c8-dff6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:b7:40:02:ea:da:4f:7b:24:21:73:31:ff:bf:
2c:6e:ab:0c:8f:f8:28:46:2a:86:64:95:39:7a:db:
92:b8:d0:42:e7:62:1d:d7:6c:02:71:7f:e0:76:96:
60:f2:3b:0f:20:49:ff:a2:82:62:f8:ea:6c:62:00:
49:eb:94:f5:ab:cf:8a:76:7b:db:d9:95:aa:7d:54:
9e:8c:3c:f8:c4:f3:46:ca:12:ce:cd:64:0e:82:0d:
23:ff:4b:94:8c:7b:f4:71:98:62:0f:9d:3d:bb:f8:
e1:5b:54:dd:ec:cc:bd:39:db:c3:b4:38:d8:82:e2:
d6:42:21:5d:36:a0:4d:c7:04:71:58:99:24:17:80:
75:bd:5f:75:c2:be:02:c0:53:e2:5b:f5:b1:fb:63:
1b:f6:7e:84:8a:a1:23:f9:10:3d:06:e7:ee:fd:bd:
fd:82:de:75:59:53:a6:df:35:cc:f1:ff:6a:dd:f6:
31:3c:fc:87:e6:d1:17:e0:0d:47:c3:6f:38:2b:6b:
e1:3e:c0:35:b6:54:9d:cc:3e:fc:1c:16:3a:26:0e:
02:0b:cd:cc:7d:8c:3f:03:c2:9c:ea:04:14:04:29:
a5:0b:4e:c6:94:23:c8:72:af:5b:94:e6:75:f2:d9:
f4:59:3b:3c:d5:65:8f:c0:ae:d1:6e:df:19:d4:6b:
82:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:27:F3:85:E4:E2:8F:4E:13:07:E7:94:B5:76:FC:C9:79:8A:89:76
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/01291AACF8C511EF914234B2762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.228.86.0/23
Signature Algorithm: sha256WithRSAEncryption
37:90:1a:ba:ba:2d:c9:56:59:65:6a:23:09:78:1b:77:45:5a:
29:18:f1:95:e1:6f:aa:da:d5:80:9d:1e:23:57:c1:4d:e9:cb:
29:4e:ed:92:80:31:5f:40:2e:80:e5:74:e4:36:8c:44:83:ff:
8b:db:f6:fd:5a:e4:dc:59:17:e1:43:d1:e0:29:18:70:e9:d2:
80:83:17:3d:08:05:60:94:6f:a7:25:c2:20:d9:d8:f7:6f:52:
c4:fb:b4:b8:a8:84:e4:78:99:bc:fb:50:1d:36:b0:fb:ff:62:
8f:22:37:3f:2d:da:d5:5d:53:d3:88:ad:60:a0:5f:fe:ea:61:
55:ab:48:37:ea:cc:88:d8:7a:06:f8:75:50:e9:6e:3a:95:d8:
64:4c:6b:d0:4d:f6:57:d7:c8:be:bf:ee:fb:00:84:f4:f0:e0:
1d:b9:62:7c:e4:bd:7d:27:94:00:da:a9:a0:ce:9d:94:8a:80:
43:2c:ee:2f:32:31:df:91:79:cf:15:0e:3b:cc:d3:07:df:ee:
61:7a:c4:30:64:3d:29:fb:ed:47:4f:2c:69:3a:81:d9:66:c2:
a2:78:19:85:ed:31:16:ac:82:83:16:5b:36:41:ed:e4:e1:2d:
6d:a9:82:75:46:4a:23:f1:57:37:93:d4:05:bc:04:c6:e0:94:
56:cc:9d:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 08:02:01 2025 by rpki-client