Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/5E629CA8057611F0ACB1E59D762E951A.roa
File: 5E629CA8057611F0ACB1E59D762E951A.roa (raw, json)
Hash identifier: jvKkgFwyEf6UGQ1/iR9E4IX/cOByWXy2TegrKHZZTUk=
Subject key identifier: 7E:75:CF:37:82:75:CC:E2:A2:86:2D:A1:1E:59:A8:43:45:B6:FD:4D
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 014720
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/5E629CA8057611F0ACB1E59D762E951A.roa
Signing time: Thu 20 Mar 2025 10:30:40 +0000
ROA not before: Thu 20 Mar 2025 10:30:36 +0000
ROA not after: Wed 09 Apr 2025 10:30:36 +0000
asID: 18013
IP address blocks: 156.241.139.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 83744 (0x14720)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Mar 20 10:30:36 2025 GMT
Not After : Apr 9 10:30:36 2025 GMT
Subject: CN=67dbee50-c0f6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:6a:b8:3a:1c:29:78:2b:3f:76:e8:39:d0:67:
2f:5e:5e:7b:21:26:b0:c0:27:2a:b6:0b:65:93:40:
a5:92:9b:2b:2d:19:32:99:6a:19:a8:34:1b:71:a4:
87:0b:5a:98:8e:dc:f2:c8:b4:dd:42:76:1b:ec:80:
c7:60:85:19:6c:94:0a:14:dd:9c:81:db:7f:2f:63:
0a:dc:42:9f:ac:0c:43:b5:cc:4e:88:bf:2c:c7:f7:
5d:b0:cf:07:fc:36:29:29:29:d7:56:5c:5c:3f:ad:
63:ca:83:c6:42:7e:8a:4c:7b:c2:6b:93:5b:f3:bc:
4a:e8:f2:73:4d:0c:68:5a:23:37:98:5c:1e:29:a3:
0d:64:9e:61:f1:ff:8c:91:03:51:e9:b6:bc:c1:fe:
4c:39:89:0e:66:3f:97:0e:54:b8:26:e9:1c:b8:42:
dd:24:b4:ae:14:60:e9:70:6b:81:53:e9:30:eb:87:
71:95:e4:be:3e:90:c9:81:a2:4f:10:cd:47:e7:87:
f5:ba:bc:bd:e4:d6:78:84:19:de:46:bf:bd:ac:1c:
66:9e:c7:2b:ac:8f:e8:4e:11:0c:5d:09:8e:b0:b7:
5c:36:d6:92:a1:fb:41:48:5d:8a:58:0c:1a:92:9d:
e3:64:3c:88:3d:07:40:52:33:d8:99:b8:4f:94:b4:
36:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:75:CF:37:82:75:CC:E2:A2:86:2D:A1:1E:59:A8:43:45:B6:FD:4D
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/5E629CA8057611F0ACB1E59D762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.241.139.0/24
Signature Algorithm: sha256WithRSAEncryption
65:77:40:d8:d9:7b:5a:67:9a:49:c5:06:14:7e:b6:34:49:47:
72:3b:cf:7f:bb:ca:f5:d6:b4:dc:53:d8:02:bf:f8:ee:8e:28:
42:6e:51:a9:1c:45:c7:1f:b9:dd:a4:60:76:db:3b:8e:14:a4:
d1:ec:18:70:d9:64:50:22:26:b6:a2:f8:ea:6e:bd:3c:45:7b:
3a:cc:d6:18:71:05:64:9f:2c:14:84:7e:33:92:4a:9f:a4:68:
36:cf:a3:f7:29:ee:f4:f8:d2:b3:06:f4:d7:c7:a7:cb:90:af:
55:d9:5c:63:14:64:f9:ef:2e:21:66:0c:08:32:c1:d1:37:27:
a6:d0:a6:d1:b0:42:12:60:e3:86:6b:0d:da:f2:67:f4:7c:70:
db:17:ed:6e:7b:e5:66:f8:fc:68:31:d7:eb:f0:5e:6d:90:ee:
f2:4c:d2:57:c5:de:35:42:7c:2d:dc:2f:31:cd:c5:ba:15:a4:
df:25:e9:b9:59:87:4a:06:ba:94:b0:85:85:02:7e:3f:2f:23:
fe:2a:ef:e2:d7:2a:cd:44:3e:54:79:95:b4:d2:a1:a6:cd:1b:
fc:0a:e4:74:c1:7f:2f:63:58:3e:57:b6:72:20:91:9f:3e:73:
17:66:a8:5c:c0:68:7f:23:3a:6a:5f:ca:09:c7:90:e2:3f:67:
93:ab:e8:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 11 03:08:22 2025 by rpki-client