Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/B030D742F5DC11EF980A4C67762E951A.roa
File: B030D742F5DC11EF980A4C67762E951A.roa (raw, json)
Hash identifier: HqQW4wQGSv/5U9mlT0tcUycND1oPSyoVx3NgDInLr2U=
Subject key identifier: F1:9B:CD:FF:28:31:C9:5B:61:84:1D:A4:BC:A4:22:39:B9:C3:36:DB
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 013E1A
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/B030D742F5DC11EF980A4C67762E951A.roa
Signing time: Fri 28 Feb 2025 14:02:47 +0000
ROA not before: Fri 28 Feb 2025 14:02:43 +0000
ROA not after: Fri 04 Apr 2025 14:02:43 +0000
asID: 213599
IP address blocks: 156.229.230.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 81434 (0x13e1a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Feb 28 14:02:43 2025 GMT
Not After : Apr 4 14:02:43 2025 GMT
Subject: CN=67c1c207-0d12
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f5:ac:21:8c:5e:2b:51:41:56:e1:f8:b7:75:c4:
cd:ec:3b:70:3f:7d:b2:d1:b2:dd:61:3d:63:94:c4:
9d:b3:39:f1:4d:94:16:4b:24:fd:0f:02:da:4e:1e:
89:8e:83:e3:83:a8:85:7c:3c:0a:d6:b8:57:f8:4d:
64:49:ad:71:02:47:e2:4d:2c:4a:86:1d:9b:30:da:
95:79:ef:e5:94:d6:3f:b3:70:ae:e8:b4:c6:b9:43:
01:cc:18:93:74:1b:ce:63:0e:04:8b:5f:91:df:5e:
ed:5e:7b:28:7b:2b:08:7d:52:2c:3c:02:74:d8:bf:
31:a6:e6:c4:ac:36:6a:d7:df:dd:84:91:c7:4e:84:
ce:33:ad:f7:7d:f1:23:af:e4:ae:be:b4:c1:4e:e3:
92:f0:b6:c0:f9:33:15:6f:23:2f:f1:a5:23:f4:d2:
fe:47:22:fb:89:22:d4:1f:45:6a:25:74:f9:26:f3:
4b:f6:a8:79:64:3a:f6:5d:dc:2b:68:1d:5c:78:6d:
ce:a8:1e:1f:7a:22:d7:c5:ea:d7:42:96:04:19:01:
e4:2a:b9:92:1c:0a:1b:6c:d2:6a:b9:25:71:a5:bf:
57:5f:c9:11:30:49:22:77:54:81:d6:ac:05:aa:2a:
36:ef:1e:11:fd:15:d3:00:53:1d:a8:ea:81:29:19:
63:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:9B:CD:FF:28:31:C9:5B:61:84:1D:A4:BC:A4:22:39:B9:C3:36:DB
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/B030D742F5DC11EF980A4C67762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.229.230.0/24
Signature Algorithm: sha256WithRSAEncryption
53:7a:26:02:6a:3c:24:7a:02:69:cf:70:d1:1a:75:2a:52:0e:
69:c5:e9:5c:42:ab:ca:00:8a:fa:a4:5b:73:bb:6f:fc:87:63:
8c:21:46:fe:a1:e2:08:50:2e:72:5c:bb:74:bd:ed:3e:d0:f5:
62:f8:98:00:51:b4:82:7b:34:8e:fb:85:cb:ca:ea:fc:20:2a:
a2:23:69:b0:e5:d6:9f:57:85:70:cf:49:98:49:15:dc:77:fa:
ed:28:4e:c8:61:e7:14:de:24:7a:12:dc:1f:41:d3:ee:e9:cd:
42:bf:1c:1c:e0:fe:dd:65:d4:dd:18:e9:39:20:57:d1:10:d3:
70:c3:33:8d:25:89:9e:6c:e3:86:31:ba:31:75:d7:8c:33:2d:
ce:93:0e:ba:4f:0a:3c:0d:49:03:7b:8c:62:c2:cd:c5:d5:22:
13:1c:95:0a:ee:1f:1b:25:34:13:5b:42:7e:43:50:bc:c8:4f:
65:30:3d:55:c6:6d:a0:6a:d7:14:b5:d5:2a:6c:ec:b6:96:c4:
3b:57:0c:d7:09:83:6f:44:81:1d:00:f1:29:3a:15:90:ea:d4:
a3:35:7f:38:fe:99:1e:cb:02:76:72:c9:d3:39:d5:c9:b3:01:
68:9f:44:16:4e:33:73:79:c1:67:dc:a8:30:88:dc:5b:a9:40:
84:1c:2a:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 09:30:47 2025 by rpki-client