Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/C2702BA21A9311F0BA78ACF16DB8BCC6.roa
File: C2702BA21A9311F0BA78ACF16DB8BCC6.roa (raw, json)
Hash identifier: axZZKS97seBYHpim0ZKmWnaC3P3wQEayo2cESZhNkMI=
Subject key identifier: 2D:EA:3D:36:62:92:09:45:4E:2F:38:17:4D:CD:E0:2A:D7:35:5B:18
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 014C9F
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/C2702BA21A9311F0BA78ACF16DB8BCC6.roa
Signing time: Wed 16 Apr 2025 07:23:58 +0000
ROA not before: Wed 16 Apr 2025 07:23:52 +0000
ROA not after: Fri 25 Apr 2025 07:23:52 +0000
asID: 138985
IP address blocks: 45.199.187.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 85151 (0x14c9f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Apr 16 07:23:52 2025 GMT
Not After : Apr 25 07:23:52 2025 GMT
Subject: CN=67ff5b0e-0593
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f9:36:94:26:0e:a5:13:2b:c1:86:18:74:be:f4:
38:b7:3a:ee:a5:19:ae:d6:ad:b5:64:15:23:a5:a7:
07:e2:00:3b:87:8b:f4:3b:00:2e:7e:e0:ac:1f:ff:
31:83:98:d0:43:79:17:e7:88:d5:51:9e:17:31:0b:
09:1c:37:88:67:77:e7:24:fc:ad:bd:6a:54:0c:d9:
00:dd:27:3d:df:73:f1:d0:26:2c:94:0a:aa:4e:38:
77:b6:07:88:76:f2:e0:0b:f5:b4:3e:98:e2:84:37:
1f:bc:5b:70:9b:a1:3c:6f:c6:a3:33:97:b0:15:53:
73:23:3f:ca:fa:83:3a:6a:41:4b:f8:8c:91:d2:a3:
9c:51:4f:9c:b6:ba:40:f6:68:31:7c:20:52:04:57:
97:e3:96:01:44:5b:b7:97:7e:49:fa:3c:08:77:91:
0a:84:92:40:4f:72:bc:b7:76:87:92:1d:3d:fa:c4:
af:3e:7b:c7:f9:ae:4c:8d:d8:3c:5d:42:d7:24:29:
1b:e2:97:5a:d2:2f:75:4e:0b:a5:82:51:0e:64:bd:
c6:64:21:9d:f2:5b:4c:f4:f8:73:76:17:66:8b:c4:
fd:a6:cd:81:83:a6:95:ed:54:aa:2b:b9:68:ae:25:
55:8e:96:69:80:2b:e9:00:ad:ec:90:be:49:82:be:
07:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:EA:3D:36:62:92:09:45:4E:2F:38:17:4D:CD:E0:2A:D7:35:5B:18
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/C2702BA21A9311F0BA78ACF16DB8BCC6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.199.187.0/24
Signature Algorithm: sha256WithRSAEncryption
78:b3:a0:99:4f:5d:2a:ec:0c:4e:2e:2b:2e:a2:74:ba:7d:66:
86:9e:18:d5:83:c9:1b:c8:e9:01:7d:35:31:36:35:1e:d5:75:
3a:b4:a3:8d:f7:80:81:5c:bf:43:b3:18:5c:5a:1c:a8:2a:74:
ba:d8:5a:47:cd:db:cd:f4:49:9f:04:16:00:97:59:1f:5d:b2:
4c:6f:e3:50:21:25:fd:d8:f2:62:bf:f6:6a:0d:bc:c9:f6:06:
27:9b:7d:59:d9:0f:4f:ea:a7:11:c0:02:a5:a3:2f:dd:f6:f8:
e5:66:e2:5f:4c:d8:34:33:ce:30:3e:56:91:b7:03:dc:1c:1f:
e8:2b:9e:03:00:2f:03:72:1b:df:20:9e:0c:6f:d0:59:ea:64:
e8:53:bf:a0:de:04:23:e6:ad:97:7b:75:f0:10:ac:75:ba:f9:
37:8d:65:2c:3c:57:9b:9c:c1:e5:cf:38:55:35:2f:df:3e:79:
12:18:08:ce:8e:83:42:6a:54:ca:e6:dc:f7:19:2a:f8:4d:a4:
30:36:8c:2c:b2:be:b4:29:2e:8e:da:57:97:23:e0:01:47:4f:
e3:17:36:22:63:17:64:6d:61:34:87:76:67:be:aa:d7:c6:ad:
e0:46:56:a2:6c:a3:07:30:e0:39:4b:97:df:38:a7:4d:4b:a9:
2f:75:c3:e6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 10:45:50 2025 by rpki-client on console.sobornost.net