Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/278C853CF8D711EF8F56E4AB762E951A.roa
File: 278C853CF8D711EF8F56E4AB762E951A.roa (raw, json)
Hash identifier: +V/rvFd49n7+7XNq0WGnfxBgg1oDmg/fL8vR/nlaQtc=
Subject key identifier: E8:35:F2:53:9B:0B:1A:FE:65:E3:D7:22:C0:90:28:55:33:9A:D5:39
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 0142DD
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/278C853CF8D711EF8F56E4AB762E951A.roa
Signing time: Tue 04 Mar 2025 09:00:44 +0000
ROA not before: Tue 04 Mar 2025 09:00:39 +0000
ROA not after: Fri 04 Apr 2025 09:00:39 +0000
asID: 200373
IP address blocks: 156.228.176.0/24 maxlen: 24
156.228.184.0/24 maxlen: 24
156.228.185.0/24 maxlen: 24
156.228.189.0/24 maxlen: 24
156.253.164.0/24 maxlen: 24
156.253.165.0/24 maxlen: 24
156.253.166.0/24 maxlen: 24
156.253.167.0/24 maxlen: 24
156.253.168.0/24 maxlen: 24
156.253.169.0/24 maxlen: 24
156.253.170.0/24 maxlen: 24
156.253.171.0/24 maxlen: 24
156.253.172.0/24 maxlen: 24
156.253.173.0/24 maxlen: 24
156.253.174.0/24 maxlen: 24
156.253.175.0/24 maxlen: 24
156.253.176.0/24 maxlen: 24
156.253.177.0/24 maxlen: 24
156.253.178.0/24 maxlen: 24
156.253.179.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 82653 (0x142dd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Mar 4 09:00:39 2025 GMT
Not After : Apr 4 09:00:39 2025 GMT
Subject: CN=67c6c13c-e38e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:89:ad:f6:e5:af:1d:c7:1a:4a:76:f1:62:8a:
00:06:d5:88:54:7f:74:e3:7d:e3:fb:10:86:67:bc:
ec:61:95:60:e6:d0:06:6d:25:8f:bc:72:58:02:84:
20:6f:7c:f4:cb:1f:8d:4b:fb:e9:99:3d:a3:82:56:
4e:87:79:52:29:9e:f8:70:25:f8:55:d2:c7:d3:0d:
e0:21:a4:eb:34:6b:75:18:89:f8:03:e6:22:54:c1:
ac:da:44:48:51:ec:40:d7:05:55:28:cc:af:e5:82:
df:b0:62:e0:5d:ed:48:94:6a:83:6a:46:10:98:2d:
ce:a7:37:36:f5:ff:70:6c:e4:10:8c:bb:5d:8b:fd:
08:dd:32:27:45:ef:61:af:bb:40:aa:aa:8e:2c:f5:
cc:a4:ac:01:f0:88:34:a2:2f:f8:1f:9a:9c:52:1a:
a0:e1:cf:17:2d:3c:3b:cc:51:75:e6:b9:87:c3:1c:
1b:cd:6e:73:d0:a7:3e:20:1d:85:ed:24:b4:57:69:
56:52:9a:a2:ef:46:ed:0a:a3:67:bc:71:32:f8:1d:
b1:83:e8:c0:13:9d:81:6c:2b:d7:65:ca:6b:ed:09:
cf:5f:35:a9:da:48:a0:33:9a:e8:f4:b9:13:64:24:
8e:2e:6e:90:e6:36:c1:78:bb:ac:e5:bb:9c:5b:52:
89:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:35:F2:53:9B:0B:1A:FE:65:E3:D7:22:C0:90:28:55:33:9A:D5:39
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/278C853CF8D711EF8F56E4AB762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.228.176.0/24
156.228.184.0/23
156.228.189.0/24
156.253.164.0-156.253.179.255
Signature Algorithm: sha256WithRSAEncryption
64:82:5c:67:25:fc:16:b2:5a:de:ab:92:24:94:13:a1:c3:1f:
3e:99:c5:7f:b4:d7:8c:7e:65:ac:1c:c1:26:e3:8c:25:6c:30:
a0:f7:ae:16:29:cb:49:49:85:9e:c7:72:7b:45:db:6f:17:9c:
67:d9:93:d8:54:db:54:41:26:66:19:7e:55:cc:a0:9d:64:58:
3e:c8:b2:6b:44:05:fd:2a:12:e9:b1:7f:13:98:f7:63:68:a0:
bd:2e:e3:ed:7a:23:7e:da:8a:0f:35:35:8a:48:5f:b3:97:6d:
ae:48:07:dd:4b:8c:f1:d1:16:d9:4c:10:89:7a:fd:8c:19:87:
23:7c:3f:2c:be:0e:61:ed:76:9c:10:d4:5e:95:aa:64:61:d6:
2c:79:64:7d:4f:25:4c:b0:06:87:a8:ec:b9:42:65:c9:6c:e8:
86:e7:f6:37:a1:0e:47:13:2d:0f:9c:f6:62:b0:52:31:b0:66:
43:a5:4b:52:b1:03:2a:91:a1:1c:32:0b:ff:ae:40:99:ea:79:
dc:4e:16:c5:15:c3:85:6f:6f:dd:21:87:85:8d:ff:5d:77:49:
4b:5c:b9:06:96:9d:f5:20:ac:46:c4:0d:a0:de:37:15:fa:5a:
b2:6f:8b:bc:e5:a0:42:8a:03:d0:9b:41:0f:ff:c7:bf:21:16:
50:88:ed:32
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Sat Apr 5 08:11:40 2025 by rpki-client