Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/5029EA5610DE11F0BFE793A0762E951A.roa
File: 5029EA5610DE11F0BFE793A0762E951A.roa (raw, json)
Hash identifier: GVuhs19NJQvQblcI043nrsrKTiBa6ZZ3JWCf02NJtRQ=
Subject key identifier: 57:A0:F8:46:52:D1:3F:92:73:44:E1:50:4D:8A:E5:E4:93:6A:40:EA
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 0149FD
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/5029EA5610DE11F0BFE793A0762E951A.roa
Signing time: Thu 03 Apr 2025 22:52:26 +0000
ROA not before: Fri 04 Apr 2025 22:52:22 +0000
ROA not after: Fri 25 Apr 2025 22:52:22 +0000
asID: 214016
IP address blocks: 156.225.42.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 84477 (0x149fd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Apr 4 22:52:22 2025 GMT
Not After : Apr 25 22:52:22 2025 GMT
Subject: CN=67ef112a-430f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:df:12:cf:73:fd:86:c8:1c:fb:ba:da:92:10:
a7:63:dd:94:f9:4f:44:57:eb:b9:d4:7a:8a:5c:da:
23:20:fc:eb:9a:b4:d8:c5:78:79:1b:de:58:87:72:
3e:fc:95:c8:11:26:c3:f7:d9:7c:78:70:03:8e:46:
0d:fb:2b:cc:6b:d1:c9:34:5c:1c:02:22:97:3e:58:
b5:c9:19:e4:33:c9:16:db:af:4e:3d:69:34:a2:01:
99:87:ad:8e:9c:dc:47:bf:19:94:80:66:3b:3f:ee:
d7:d7:30:6f:68:8a:60:34:8e:a7:17:a3:3f:f7:a3:
40:d1:14:a7:c7:b2:ef:a5:d2:62:c6:29:85:51:52:
09:c2:cd:52:c5:ec:df:e1:d8:de:be:c8:5d:a6:6d:
01:04:71:42:8b:7e:87:5f:62:a6:72:01:8f:45:c6:
ec:a7:3f:69:51:a2:de:bc:f6:ab:58:14:a3:38:2b:
be:8d:1a:22:05:30:30:1a:11:e1:79:fc:72:5f:f8:
bc:3b:21:4d:a5:5e:ab:06:44:e0:22:68:c3:0b:03:
94:d5:b0:18:d3:ed:bd:7a:92:ac:17:d6:12:01:ba:
48:e8:75:78:42:46:c9:ff:d8:69:96:89:28:56:e8:
3b:84:89:0c:4d:1d:95:e5:62:3a:23:72:4f:b6:30:
07:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:A0:F8:46:52:D1:3F:92:73:44:E1:50:4D:8A:E5:E4:93:6A:40:EA
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/5029EA5610DE11F0BFE793A0762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.225.42.0/24
Signature Algorithm: sha256WithRSAEncryption
51:9e:df:af:d1:07:c3:d2:9b:f8:49:76:6a:c3:b4:40:7c:5c:
71:89:53:b5:47:50:29:de:cf:7c:03:04:0b:3c:d7:14:3d:a2:
3d:51:43:e9:bf:21:3b:71:8a:50:ee:72:d1:e3:63:c4:30:a1:
43:c5:0a:89:a3:f0:77:47:58:83:15:6d:57:4c:05:20:48:6b:
7c:b3:cb:a6:0b:87:9f:c7:76:c2:79:bc:2d:c5:33:f4:6f:de:
48:12:fe:90:91:f4:73:fe:47:55:a1:c5:49:dd:e4:ea:3b:14:
b2:f8:0b:ff:3b:8c:88:bc:0e:17:e9:03:1f:2b:0f:a4:d3:fb:
15:56:d7:db:7c:32:f5:73:92:2e:37:fd:75:70:7d:4e:76:c5:
df:3f:d8:ab:e3:98:e3:61:03:1b:f2:2c:06:1e:67:89:ed:5a:
d9:a0:49:07:95:26:23:09:98:01:c6:2a:61:55:ca:47:17:43:
aa:7c:81:01:55:80:51:ed:c9:20:c0:5b:47:df:47:19:70:e2:
44:16:b9:18:e6:df:d3:64:11:53:79:e0:a1:56:18:3d:a7:99:
fb:b6:52:b9:a1:e5:f6:1c:4b:0f:35:39:4a:f9:f5:be:12:b1:
d4:85:cb:8a:1d:9a:2f:d0:10:9b:25:c3:93:64:5b:75:42:60:
a5:ac:78:4d
-----BEGIN CERTIFICATE-----
MIIFgTCCBGmgAwIBAgIDAUn9MA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQVIxMTAvBgNVBAUTKDc5N0Q4OEQ4MTNFMjBGRkY5ODJDQzc0MTlFOTY5
QkFFQTZCRkQ2OUIwHhcNMjUwNDA0MjI1MjIyWhcNMjUwNDI1MjI1MjIyWjAYMRYw
FAYDVQQDEw02N2VmMTEyYS00MzBmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAuN8Sz3P9hsgc+7rakhCnY92U+U9EV+u51HqKXNojIPzrmrTYxXh5G95Y
h3I+/JXIESbD99l8eHADjkYN+yvMa9HJNFwcAiKXPli1yRnkM8kW269OPWk0ogGZ
h62OnNxHvxmUgGY7P+7X1zBvaIpgNI6nF6M/96NA0RSnx7LvpdJiximFUVIJws1S
xezf4djevshdpm0BBHFCi36HX2KmcgGPRcbspz9pUaLevParWBSjOCu+jRoiBTAw
GhHhefxyX/i8OyFNpV6rBkTgImjDCwOU1bAY0+29epKsF9YSAbpI6HV4QkbJ/9hp
lokoVug7hIkMTR2V5WI6I3JPtjAH/QIDAQABo4ICojCCAp4wHQYDVR0OBBYEFFeg
+EZS0T+Sc0ThUE2K5eSTakDqMB8GA1UdIwQYMBaAFHl9iNgT4g//mCzHQZ6Wm66m
v9abMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFFQTIyOC9lWDJJ
MkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY3JsMGQGCCsGAQUFBwEBBFgwVjBUBggr
BgEFBQcwAoZIcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYXJp
bi9lWDJJMkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY2VyME8GA1UdIAEB/wRFMEMw
QQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmluaWMu
bmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYBBQUH
MAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJf
cmVwb3NpdG9yeS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFF
QTIyOC81MDI5RUE1NjEwREUxMUYwQkZFNzkzQTA3NjJFOTUxQS5yb2EwNQYIKwYB
BQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1s
MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnOEqMA0GCSqGSIb3DQEBCwUA
A4IBAQBRnt+v0QfD0pv4SXZqw7RAfFxxiVO1R1Ap3s98AwQLPNcUPaI9UUPpvyE7
cYpQ7nLR42PEMKFDxQqJo/B3R1iDFW1XTAUgSGt8s8umC4efx3bCebwtxTP0b95I
Ev6QkfRz/kdVocVJ3eTqOxSy+Av/O4yIvA4X6QMfKw+k0/sVVtfbfDL1c5IuN/11
cH1OdsXfP9ir45jjYQMb8iwGHmeJ7VrZoEkHlSYjCZgBxiphVcpHF0OqfIEBVYBR
7ckgwFtH30cZcOJEFrkY5t/TZBFTeeChVhg9p5n7tlK5oeX2HEsPNTlK+fW+ErHU
hcuKHZov0BCbJcOTZFt1QmClrHhN
-----END CERTIFICATE-----
Generated at Sat Apr 26 06:25:04 2025 by rpki-client on console.sobornost.net