Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/7FF7F064F83511EFB81F4D60762E951A.roa
File: 7FF7F064F83511EFB81F4D60762E951A.roa (raw, json)
Hash identifier: HNzEqB8mEncTLrbx5FihQ4MnATv4tIgKuOCCqhF3UsA=
Subject key identifier: 46:78:14:8D:66:47:F1:53:8B:DC:DC:92:F8:2B:D7:04:93:0F:FB:09
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 0141AA
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/7FF7F064F83511EFB81F4D60762E951A.roa
Signing time: Mon 03 Mar 2025 13:43:33 +0000
ROA not before: Mon 03 Mar 2025 13:43:30 +0000
ROA not after: Fri 04 Apr 2025 13:43:30 +0000
asID: 395793
IP address blocks: 45.192.165.0/24 maxlen: 24
45.192.166.0/24 maxlen: 24
45.192.227.0/24 maxlen: 24
45.192.228.0/22 maxlen: 24
45.192.232.0/22 maxlen: 24
45.192.236.0/22 maxlen: 24
45.192.244.0/24 maxlen: 24
45.195.133.0/24 maxlen: 24
45.201.28.0/24 maxlen: 24
45.201.29.0/24 maxlen: 24
45.201.30.0/24 maxlen: 24
45.201.31.0/24 maxlen: 24
45.201.32.0/24 maxlen: 24
45.204.147.0/24 maxlen: 24
45.204.148.0/24 maxlen: 24
45.204.149.0/24 maxlen: 24
45.204.150.0/24 maxlen: 24
45.204.151.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 82346 (0x141aa)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Mar 3 13:43:30 2025 GMT
Not After : Apr 4 13:43:30 2025 GMT
Subject: CN=67c5b205-e7d3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:86:c2:fc:01:5f:80:27:4b:b6:38:be:5b:2a:
89:6c:b5:4b:b2:d4:99:88:51:7b:e6:71:37:ea:ab:
45:66:f2:9e:6b:c7:7b:c8:32:44:bd:87:33:aa:e4:
4c:81:6e:5e:93:0a:66:d3:bc:6f:69:2c:30:b4:81:
1e:84:7d:9a:dc:ec:c8:a6:c5:84:d5:79:dc:c3:96:
a9:89:83:56:e1:66:de:de:4b:59:c0:e7:53:ef:58:
db:bc:b6:f9:55:8d:55:d9:f2:62:c5:56:04:1d:c9:
bc:bd:b0:00:b0:20:37:02:4c:2b:46:81:f8:2c:be:
b8:cc:9b:34:05:16:cb:58:6d:e7:be:d5:88:ce:59:
39:3b:65:92:57:25:bf:b6:04:6c:b1:94:76:b4:65:
44:52:a3:a5:70:b5:a0:b5:da:04:31:ad:a5:6b:82:
e7:c6:e4:7a:c3:17:c2:b4:0b:55:5a:61:b4:5b:f4:
a0:35:89:f3:1a:86:e2:ef:e6:1b:10:0f:41:25:a5:
fa:0f:00:4b:40:c1:2f:5b:cd:94:10:09:0b:d1:44:
0f:50:87:95:b3:4e:ea:2e:f4:61:ee:80:ad:a7:a8:
a3:e6:b5:4a:6c:75:aa:d8:30:bd:ac:f9:c1:fb:ad:
7e:ee:90:25:95:55:ac:af:ce:bf:a4:ce:94:f3:55:
ae:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:78:14:8D:66:47:F1:53:8B:DC:DC:92:F8:2B:D7:04:93:0F:FB:09
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/7FF7F064F83511EFB81F4D60762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.192.165.0-45.192.166.255
45.192.227.0-45.192.239.255
45.192.244.0/24
45.195.133.0/24
45.201.28.0-45.201.32.255
45.204.147.0-45.204.151.255
Signature Algorithm: sha256WithRSAEncryption
1e:30:28:bb:83:80:c3:00:81:9a:22:bc:36:f8:83:67:f0:84:
47:de:30:fb:56:c3:66:7b:fe:83:91:15:dc:d5:5d:3b:38:8d:
e8:49:4d:79:58:45:e1:d1:1d:d8:33:d7:4b:f5:46:7d:06:14:
30:31:3b:57:c0:f5:3b:f8:08:14:17:14:cf:f6:40:f3:2e:2f:
7b:14:ae:34:0c:2b:6a:60:e0:9d:19:d3:5a:f1:99:53:04:e4:
f3:8d:3f:2c:82:6b:b5:a7:e8:13:5d:7e:90:3f:4c:c6:a1:3a:
af:77:de:18:a5:cc:60:95:49:e8:24:e2:f9:76:f1:fa:8e:2c:
fe:26:06:b2:54:66:d6:9f:2c:19:96:98:70:5f:f9:54:14:1f:
3d:ff:1c:b7:12:0a:bb:44:04:83:4e:79:54:ca:0e:3a:7d:ab:
e0:ba:f2:ce:26:2d:c3:98:a1:49:a5:0d:07:fa:ac:e1:ed:26:
d5:45:07:9b:40:5b:eb:d9:2b:4e:4b:8b:d6:2e:de:fc:a6:9b:
aa:52:e9:cf:1f:ef:eb:02:07:20:ec:76:2b:59:00:6f:62:7b:
9c:69:3b:a1:41:8a:79:88:01:a7:88:ab:8b:c6:04:eb:f8:5d:
52:ca:f3:4d:fd:45:29:6c:68:a0:92:29:7d:d4:03:d9:7f:58:
2f:84:23:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 09:14:37 2025 by rpki-client