Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/702C43DCF5DE11EFA5B14671762E951A.roa
File: 702C43DCF5DE11EFA5B14671762E951A.roa (raw, json)
Hash identifier: E9PhWzzyz9HjozAYJP3p8V9uKC7e0fqhWgMUd8JSqAY=
Subject key identifier: 66:A8:DE:CB:86:EF:90:34:BE:45:5D:29:01:E0:C5:E1:2F:D6:60:C9
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 013E32
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/702C43DCF5DE11EFA5B14671762E951A.roa
Signing time: Fri 28 Feb 2025 14:15:18 +0000
ROA not before: Fri 28 Feb 2025 14:15:15 +0000
ROA not after: Fri 04 Apr 2025 14:15:15 +0000
asID: 200019
IP address blocks: 156.229.228.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 81458 (0x13e32)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Feb 28 14:15:15 2025 GMT
Not After : Apr 4 14:15:15 2025 GMT
Subject: CN=67c1c4f6-597b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:7c:a1:00:18:f9:b0:73:3f:f4:4f:07:c1:51:
dc:19:3a:f4:17:98:3d:6f:15:f6:26:16:b8:76:42:
11:dd:ac:7a:fb:b2:2a:71:7e:a9:28:7e:cb:f0:e2:
0d:16:30:4e:ba:59:39:c9:90:cb:47:2d:ca:7c:ac:
a1:72:0a:3e:5a:a7:75:49:a2:65:5a:9b:4d:fc:77:
b1:07:08:d1:81:2a:ae:a9:17:d7:d2:6c:12:95:e9:
80:db:24:78:fa:0e:22:32:bb:1b:28:9f:e9:d0:69:
28:37:be:47:e5:8c:20:63:f2:4d:17:81:a2:d6:5f:
6c:a7:86:b7:f1:11:13:fc:8b:19:50:fc:f3:f1:b8:
d1:89:a4:06:1c:ab:1c:17:14:d5:12:07:7e:d9:59:
b0:a0:9b:ab:89:7d:5a:55:f0:d8:b6:dd:35:b3:e5:
43:79:c5:bd:1d:da:34:f5:94:3e:a3:ae:fe:4d:34:
67:88:00:a2:d4:64:07:bb:a6:41:6c:84:26:43:cf:
25:52:bc:ee:90:bc:15:b8:b5:5b:f5:5f:cc:56:a6:
ae:0b:4b:3e:fa:15:66:6a:ee:a3:0f:46:73:23:19:
5a:8e:1f:0e:d8:b7:54:7f:ab:c6:d2:e8:d7:29:b3:
b2:c8:9d:98:c6:21:9d:1d:23:3f:06:18:7c:ce:6c:
d2:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:A8:DE:CB:86:EF:90:34:BE:45:5D:29:01:E0:C5:E1:2F:D6:60:C9
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/702C43DCF5DE11EFA5B14671762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.229.228.0/24
Signature Algorithm: sha256WithRSAEncryption
55:93:8b:e9:7c:4a:b9:c1:3c:4b:90:bf:de:25:bf:64:d0:36:
0d:d5:f8:29:f5:4a:0c:b4:33:2e:fe:ed:6e:27:26:fa:cd:a0:
96:41:2e:19:44:55:cd:ce:28:70:3a:55:2c:4f:70:67:26:6a:
30:06:10:8a:d8:e1:10:52:76:0e:35:bd:f3:1f:f9:33:ab:c3:
68:10:2e:e8:d5:14:2c:34:e4:18:b8:9b:53:5b:f4:0c:c1:ba:
95:b4:31:78:b1:6c:a4:41:35:4c:89:dc:15:12:f5:3c:29:01:
2c:49:2a:bd:0c:62:12:7c:76:03:6b:02:13:3d:f6:c9:9c:41:
e2:0a:83:78:a0:4d:6f:82:00:d4:4d:85:90:57:95:b3:cf:3b:
6d:68:62:8e:85:bb:79:90:ac:92:c6:98:6a:e7:ee:8a:01:44:
d3:92:27:a4:bd:4b:70:f3:1b:b6:e1:6a:97:b6:29:dc:c7:28:
33:c8:48:dd:d5:ac:ab:7a:3c:a5:b2:3e:8b:cd:e8:19:94:dc:
91:c9:1b:3c:7d:f6:88:b6:3a:ca:14:bf:37:f8:dd:09:38:68:
51:ea:5c:48:44:83:0e:3c:9d:ae:59:94:62:5d:59:3f:46:58:
e3:4a:52:90:56:ef:c7:cb:be:fc:1d:31:0e:9e:51:33:04:ab:
71:a6:5f:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 09:30:55 2025 by rpki-client