Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/3308A46A1A9A11F085CC551D6EB8BCC6.roa
File: 3308A46A1A9A11F085CC551D6EB8BCC6.roa (raw, json)
Hash identifier: ZbTywXr1ejTFlRt3o+FFfbUMLoUh9zOAzMeN/H62slU=
Subject key identifier: 82:C2:BF:E7:73:78:CC:60:9F:44:B4:59:89:9A:3B:65:D6:57:80:F8
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 014CAD
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/3308A46A1A9A11F085CC551D6EB8BCC6.roa
Signing time: Wed 16 Apr 2025 08:10:04 +0000
ROA not before: Wed 16 Apr 2025 08:09:59 +0000
ROA not after: Fri 25 Apr 2025 08:09:59 +0000
asID: 206283
IP address blocks: 156.238.85.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 85165 (0x14cad)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Apr 16 08:09:59 2025 GMT
Not After : Apr 25 08:09:59 2025 GMT
Subject: CN=67ff65db-2329
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:3d:23:f6:f6:63:9a:9b:81:90:eb:4f:5e:3f:
0a:41:27:a8:17:9c:6c:ed:3d:49:e0:5f:04:b4:f2:
7e:64:36:ee:a4:60:db:da:3c:2d:4a:e8:e6:f1:b3:
c2:4c:28:e6:86:e2:1d:2b:95:88:62:ba:0d:e0:b8:
a2:ad:fd:8b:e8:12:a0:6f:76:93:96:1e:5d:37:98:
94:33:de:10:f2:d3:9a:96:61:42:dd:6e:2b:c6:72:
b5:18:e4:2b:24:ed:4a:7d:2e:50:25:e3:90:32:75:
17:a7:c6:c5:5b:c9:02:3a:4a:90:96:1e:9b:13:94:
e5:56:46:b0:93:86:3e:fd:c8:a2:73:02:ab:63:25:
7c:d4:ba:c8:70:87:9a:e9:cb:17:a1:26:3a:0e:71:
57:a3:28:30:00:d9:ff:7b:5a:a8:35:76:37:ed:ad:
93:b3:7d:15:5b:43:ce:24:59:a5:7b:85:81:1e:cb:
2c:99:c3:b0:98:3b:c1:64:28:10:c0:c1:8b:47:0d:
93:80:34:66:93:4e:71:5c:a5:e9:69:00:65:3c:e5:
47:26:d9:74:e7:bc:1d:4c:5f:fa:5c:cb:07:6f:84:
25:c6:fd:07:b3:9a:dc:0a:e7:9d:f3:e7:e5:af:cc:
60:47:07:44:b0:05:48:0f:da:5c:b4:60:8f:1a:66:
ce:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:C2:BF:E7:73:78:CC:60:9F:44:B4:59:89:9A:3B:65:D6:57:80:F8
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/3308A46A1A9A11F085CC551D6EB8BCC6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.238.85.0/24
Signature Algorithm: sha256WithRSAEncryption
53:27:af:12:f0:7e:d3:20:a4:f0:ec:b2:cb:d1:e2:20:db:9c:
1a:21:49:35:df:d3:0b:e7:67:2e:0f:ce:ba:85:db:13:ff:8d:
ad:2f:20:2b:c8:95:0d:10:bd:14:22:a4:11:bf:71:ca:32:88:
5c:0c:c4:f3:d8:6f:20:4a:03:59:cd:8e:3a:45:1f:24:6c:e8:
0c:8b:c2:9e:b9:07:48:b3:a3:6e:7d:d4:ee:d4:55:bd:37:97:
f0:f2:d1:e6:1f:68:79:5b:8e:97:f3:ad:3c:2d:25:a3:91:94:
cb:fe:cd:9f:3c:fb:cc:5e:ea:b8:65:ed:c2:f6:95:b1:83:49:
06:1f:92:54:54:4b:cf:17:3c:dc:97:76:10:79:43:72:a0:16:
1b:ef:34:2b:3f:24:3f:17:be:62:4c:49:96:a7:fb:bc:fb:da:
ab:04:d8:8d:f5:9e:b1:05:ea:53:77:62:37:a5:4b:88:98:fb:
49:76:a1:20:1c:0f:51:a0:14:9b:e9:a5:bd:4f:98:2a:5b:6c:
05:87:7b:32:57:d8:29:2f:76:3d:59:59:95:82:82:69:93:11:
8b:6f:a0:52:bc:9f:f6:e8:2c:46:d6:ff:78:3c:10:2b:3a:26:
e8:24:e4:36:d3:c1:47:bc:82:d3:82:56:b9:7f:ec:4f:be:5f:
31:67:ba:43
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 10:45:50 2025 by rpki-client on console.sobornost.net