Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/C480B92C1A9B11F0B5BDC2266EB8BCC6.roa
File: C480B92C1A9B11F0B5BDC2266EB8BCC6.roa (raw, json)
Hash identifier: XqQvNRd1shGKFnvxq5f1FBeePTsxqqEJr8K8J1vm2vk=
Subject key identifier: 51:80:75:3A:76:9F:51:7A:2B:1D:23:C4:9E:28:8A:19:3D:F5:43:22
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 014CB2
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/C480B92C1A9B11F0B5BDC2266EB8BCC6.roa
Signing time: Wed 16 Apr 2025 08:21:17 +0000
ROA not before: Wed 16 Apr 2025 08:21:10 +0000
ROA not after: Fri 25 Apr 2025 08:21:10 +0000
asID: 141372
IP address blocks: 156.238.82.0/24 maxlen: 24
156.238.83.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 85170 (0x14cb2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Apr 16 08:21:10 2025 GMT
Not After : Apr 25 08:21:10 2025 GMT
Subject: CN=67ff687d-971a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:09:6a:1e:7f:b1:f3:5d:ed:3f:37:2a:42:88:
d6:c9:cb:a6:ea:af:8f:29:3a:f2:b6:4d:84:67:9d:
74:b2:ca:cd:e3:bd:e3:76:5c:ef:f3:c0:63:1a:39:
39:0b:97:a4:a6:7b:81:52:1c:91:20:1b:d3:66:df:
6b:6d:3f:9d:e5:98:bd:20:b6:de:67:18:fe:ee:26:
98:cf:98:70:7c:ae:d1:70:27:71:8b:76:83:61:3a:
41:61:ea:23:25:36:d2:c2:05:1d:76:2d:f3:a0:7b:
86:3f:56:7b:87:3f:3d:8e:be:d8:56:94:f7:60:d8:
cd:e1:fa:41:e6:2a:42:7c:94:4e:03:c2:b9:33:b8:
f4:1b:61:c8:2b:0f:84:c0:25:b9:2f:44:9c:27:07:
a1:ca:77:14:20:f8:d6:a2:43:cc:d8:b6:59:d3:53:
7b:29:03:ac:3a:86:8f:57:0a:b0:87:79:73:4e:81:
05:c0:33:c0:56:51:78:a3:49:76:81:75:c2:b0:fe:
14:11:7c:24:1e:d6:23:ef:de:5e:ad:b4:f2:1b:f8:
52:10:b5:ba:72:a8:08:b2:18:29:d6:04:0b:4d:a0:
a2:ec:3b:ae:6a:81:ca:d5:10:03:e0:33:a4:5c:13:
1c:8e:58:b6:17:6b:07:58:e9:1c:ef:db:41:de:49:
e9:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:80:75:3A:76:9F:51:7A:2B:1D:23:C4:9E:28:8A:19:3D:F5:43:22
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/C480B92C1A9B11F0B5BDC2266EB8BCC6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.238.82.0/23
Signature Algorithm: sha256WithRSAEncryption
34:a9:6d:8c:7c:4e:48:23:3f:5c:48:f6:f4:11:ed:31:74:5b:
c0:fd:9e:ea:99:a6:43:9f:f3:ca:ff:d2:ed:57:d5:39:73:8a:
b3:a7:fc:aa:59:70:5c:87:1a:27:85:68:70:3c:7c:6e:06:fc:
19:a5:c4:25:f3:8b:08:0c:51:93:da:0a:d4:06:18:6d:97:df:
22:27:65:ca:f6:b8:01:5b:88:f2:d9:b8:67:53:19:2d:71:1f:
7a:b6:dc:98:e7:2b:8c:c3:e8:c7:49:30:6d:43:aa:60:ed:f3:
51:dc:5c:ee:93:c2:56:d7:cf:dc:9d:2a:7e:a9:02:e1:23:bf:
ba:48:7f:5d:0d:90:d6:a8:11:7d:b4:37:ac:f0:35:d4:f7:76:
65:54:e3:7b:1e:2a:18:4b:d7:26:fb:53:26:62:8a:4e:de:5d:
7b:2b:19:38:6c:78:e3:bf:11:4f:c9:7c:6b:34:01:01:83:1e:
2e:f0:5c:7d:87:20:c3:ac:b1:f9:f2:f9:d8:38:ba:ae:48:fb:
6c:35:4c:37:7f:32:49:70:60:67:c8:a3:91:14:ab:5e:2c:47:
6a:54:f1:8f:24:29:df:ca:a6:a7:3b:94:4c:13:18:a7:cf:e4:
bf:7c:49:22:be:78:0b:7b:5e:de:fc:66:67:22:26:d1:23:3e:
84:86:d5:97
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 10:45:50 2025 by rpki-client on console.sobornost.net