Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/7E61C5EC023311F091000D9C762E951A.roa
File: 7E61C5EC023311F091000D9C762E951A.roa (raw, json)
Hash identifier: XRs7++bXV83z0+dwRArshZDV4pDS4JW3z2qMgxRHjJs=
Subject key identifier: 5E:08:2A:53:1F:40:EB:9F:D3:B0:05:0F:A2:65:01:8E:5E:95:58:2E
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 014651
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/7E61C5EC023311F091000D9C762E951A.roa
Signing time: Sun 16 Mar 2025 06:54:23 +0000
ROA not before: Sun 16 Mar 2025 06:54:20 +0000
ROA not after: Wed 02 Apr 2025 06:54:20 +0000
asID: 39600
IP address blocks: 156.237.108.0/24 maxlen: 24
156.237.109.0/24 maxlen: 24
156.237.111.0/24 maxlen: 24
156.237.117.0/24 maxlen: 24
156.237.120.0/24 maxlen: 24
156.237.121.0/24 maxlen: 24
156.237.122.0/24 maxlen: 24
156.237.123.0/24 maxlen: 24
156.237.124.0/24 maxlen: 24
156.237.125.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 83537 (0x14651)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Mar 16 06:54:20 2025 GMT
Not After : Apr 2 06:54:20 2025 GMT
Subject: CN=67d6759f-2917
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:8b:21:42:c9:44:ea:fe:15:47:31:a0:8e:3b:
5b:93:22:2d:92:27:f3:6c:76:9c:92:43:7a:4c:5a:
34:1c:3f:83:f3:79:c0:8a:86:e0:41:16:b3:f5:ce:
fb:4b:d8:99:6c:f9:c4:17:7b:df:11:6f:3b:ea:cc:
57:ad:cb:5d:3e:13:78:15:a7:aa:f3:04:9f:ec:fd:
68:0b:b1:34:12:43:98:3b:ee:0a:f2:a0:34:96:96:
72:61:28:19:06:87:b4:27:85:b6:53:c7:4b:5d:23:
b0:94:ab:39:1c:0a:06:c7:03:81:28:03:01:a4:45:
15:c8:2f:17:8b:70:2c:4e:1b:4f:d5:06:ca:1f:f4:
c2:89:62:a9:28:38:46:a8:12:5e:93:93:8c:38:ef:
8b:58:0e:27:21:d4:bb:bd:56:36:6f:92:e8:10:c4:
bb:b3:35:90:01:3b:b3:5f:96:6c:c0:8f:74:a4:a6:
a7:2a:4a:e4:b2:c1:42:ed:e4:91:be:a6:7c:67:b6:
13:02:49:1b:c7:5e:44:6a:2a:71:33:03:67:63:47:
a9:16:59:72:09:ba:80:ab:5a:0a:cb:65:92:2c:95:
14:ca:5d:25:f0:fd:b9:df:06:3c:0f:63:5d:41:5b:
c8:c6:77:0e:4f:bf:37:2d:eb:ad:d2:e8:3a:91:fd:
02:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:08:2A:53:1F:40:EB:9F:D3:B0:05:0F:A2:65:01:8E:5E:95:58:2E
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/7E61C5EC023311F091000D9C762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.237.108.0/23
156.237.111.0/24
156.237.117.0/24
156.237.120.0-156.237.125.255
Signature Algorithm: sha256WithRSAEncryption
5d:6a:2f:6d:76:80:21:1b:83:10:22:f4:45:6d:3b:9d:cd:98:
35:00:b3:cd:b2:67:6e:1d:bc:75:f6:4c:33:2a:26:f5:07:41:
94:60:a7:86:46:93:fa:c0:0b:a3:3f:0a:8c:57:6d:23:c4:b7:
e6:c5:6b:9a:c3:e7:a4:2f:27:ea:8a:8d:74:53:ed:28:d0:0c:
a6:b2:ec:2c:b8:f8:83:8c:8a:a6:48:ec:49:4d:f5:8a:b0:a8:
9f:5c:bc:ec:05:c3:1e:78:a5:49:db:79:d5:72:cf:3a:16:3a:
7c:87:4a:31:e2:9e:fb:65:ac:3c:b5:b8:78:9d:7b:c7:36:54:
8f:aa:d6:86:1e:4f:44:0d:96:1a:ef:1c:3e:d1:7f:9d:5a:8b:
f4:c1:ed:74:22:46:8d:0a:e5:b0:11:f8:04:aa:99:63:a3:6d:
8d:ce:86:5c:03:46:30:51:f1:90:af:b9:85:4c:5c:80:a1:c8:
67:aa:fd:0c:c2:5a:da:b7:5b:04:89:a1:c3:3b:70:e1:62:8b:
64:1e:b8:d3:ff:0c:cc:f3:9d:83:df:d7:4d:73:5a:f0:66:f0:
8f:ca:26:a7:14:e9:70:25:78:db:90:b9:c9:cd:3b:a1:bb:cf:
8a:c9:46:ec:af:98:5f:6f:fb:f0:8d:bd:17:4d:67:11:2e:cc:
f5:15:bb:62
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Sun Apr 6 17:56:25 2025 by rpki-client