Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/D412BE2C0A1411F0B5228355762E951A.roa
File: D412BE2C0A1411F0B5228355762E951A.roa (raw, json)
Hash identifier: L7ErN+MS1n50ZIMcfgN1420AvtEn9RRjlG9hQf86FAo=
Subject key identifier: AE:FC:F3:56:76:9B:39:39:CD:DA:98:A6:BD:85:EA:14:3A:FF:16:C4
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 014832
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/D412BE2C0A1411F0B5228355762E951A.roa
Signing time: Wed 26 Mar 2025 07:35:02 +0000
ROA not before: Wed 26 Mar 2025 07:34:58 +0000
ROA not after: Fri 04 Apr 2025 07:34:58 +0000
asID: 132839
IP address blocks: 156.242.160.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 84018 (0x14832)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Mar 26 07:34:58 2025 GMT
Not After : Apr 4 07:34:58 2025 GMT
Subject: CN=67e3ae26-bcf9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:fd:5f:ac:43:6c:b9:da:fa:96:a9:7a:28:b7:
9a:99:a3:f6:cf:f9:b0:40:bf:e4:b8:38:01:9e:56:
89:a8:19:e1:6d:bd:ff:5a:0c:a3:3a:e2:4b:47:54:
e2:03:12:75:8e:39:c4:89:e4:52:e6:01:a2:83:dc:
57:20:73:a7:40:69:50:a6:b5:fd:64:7f:7d:cc:af:
f8:41:80:70:50:84:70:d0:9d:0d:95:1e:d6:99:57:
9a:d0:dc:04:a2:ca:96:d0:83:27:2f:1b:4e:72:e9:
26:76:d7:9e:56:32:6a:99:a1:68:8c:7e:66:b6:b2:
6c:5d:97:81:61:75:9e:06:d8:e2:44:b8:c6:9a:f7:
66:dc:32:8d:69:d3:b4:5a:c7:d6:44:a0:19:ef:bc:
6f:8a:a5:a7:63:f5:96:de:ac:0a:ca:fd:af:96:8d:
58:44:ed:0d:9b:eb:54:3c:06:e9:60:57:e5:25:f7:
7b:d9:a7:1c:30:bd:27:1f:1e:bd:04:94:ec:40:09:
1a:11:5c:8f:b3:b8:34:5e:f2:30:54:ac:ad:be:29:
73:3e:bc:b6:49:63:d2:77:40:51:2e:f0:52:08:b2:
28:a2:e0:72:df:40:0c:b6:6a:a7:1b:ba:b1:31:ff:
40:35:3f:8c:50:84:9b:43:39:c1:56:32:50:96:b0:
98:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:FC:F3:56:76:9B:39:39:CD:DA:98:A6:BD:85:EA:14:3A:FF:16:C4
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/D412BE2C0A1411F0B5228355762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.242.160.0/19
Signature Algorithm: sha256WithRSAEncryption
88:af:67:5e:fb:54:ce:14:3b:4e:14:ea:0d:ae:d6:64:b9:c2:
67:b0:51:e4:df:60:eb:e0:13:10:5f:9a:47:1a:84:c6:6d:2f:
10:00:67:cf:66:61:64:ad:4c:17:88:3b:5c:16:e5:6b:6c:89:
d4:f3:dd:73:09:8b:cb:b4:6f:55:d6:20:e6:f6:0d:08:81:bd:
0e:30:23:e6:c2:08:68:20:84:36:29:e2:46:94:59:7b:7a:ae:
5c:96:51:e0:04:e6:88:f2:95:2b:a1:70:68:09:3e:8c:ce:da:
2f:8b:07:71:45:c3:8f:35:1f:da:1a:ac:03:5d:ba:e4:9e:c3:
2a:34:5d:02:a1:ad:db:d4:4c:88:73:b0:9c:0e:14:79:09:35:
60:0e:b2:16:62:87:de:35:a4:af:4b:a2:7e:b6:85:4d:f6:75:
a8:4e:1d:8f:ec:a3:3b:5b:fc:2d:ae:7f:40:18:02:cb:e2:a7:
56:ca:81:9c:3c:e7:dd:b1:bd:96:56:63:af:ca:00:30:a3:ad:
09:56:11:c4:f7:37:96:4c:2a:20:a2:6f:38:a7:88:12:a4:13:
83:bd:0f:94:dc:7b:89:b8:2a:ab:27:ec:a3:9a:e2:68:6e:f3:
37:f2:c5:3b:a2:1e:d4:f4:08:88:ab:2e:3b:cb:64:b0:2d:d1:
72:ac:cd:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 11 19:29:28 2025 by rpki-client