Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/E4CC3DE81A8F11F0BC491BD96DB8BCC6.roa
File: E4CC3DE81A8F11F0BC491BD96DB8BCC6.roa (raw, json)
Hash identifier: unv9bvgndJTLNQkzgEmKCIOUwM8JqKGLH8jlTJCmlfs=
Subject key identifier: 46:F9:ED:23:86:6D:E7:7A:58:86:5A:F2:A3:AD:99:F8:3D:DF:40:04
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 014C91
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/E4CC3DE81A8F11F0BC491BD96DB8BCC6.roa
Signing time: Wed 16 Apr 2025 06:56:17 +0000
ROA not before: Wed 16 Apr 2025 06:56:13 +0000
ROA not after: Thu 24 Apr 2025 06:56:13 +0000
asID: 212238
IP address blocks: 156.235.53.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 85137 (0x14c91)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Apr 16 06:56:13 2025 GMT
Not After : Apr 24 06:56:13 2025 GMT
Subject: CN=67ff5491-34b5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:11:7d:60:d6:47:ec:e7:d7:57:5c:88:6d:a3:
c4:66:57:8a:2d:fe:2d:46:2a:d2:30:4d:af:09:cb:
37:cd:e5:d8:ed:04:50:10:6b:89:e7:fc:7a:9b:cc:
07:65:fb:dc:d6:c1:9d:5f:ba:7b:3a:49:39:99:00:
10:ea:1a:4f:d9:93:49:de:28:90:85:0f:72:99:1b:
4d:3f:df:7d:0c:c3:41:3c:8f:c3:51:13:33:a5:2e:
14:d7:0e:54:27:89:e8:ce:f1:6c:91:4d:08:29:b9:
50:1d:26:fc:fa:dc:0f:58:f9:1c:48:d0:f8:a5:5b:
1c:dc:d1:68:1a:3d:36:36:e9:5f:b6:60:fa:4a:fa:
79:61:8d:57:c8:64:a7:a9:cc:1a:7f:dc:8b:c6:64:
90:6e:9c:f7:a5:9c:3d:7e:6d:6c:96:35:0a:a8:ac:
ee:ce:db:c8:e0:5c:43:90:39:17:f3:23:df:36:16:
3c:34:ad:70:ce:1c:13:ea:60:ed:1f:23:7a:8e:1c:
b2:5e:1a:de:56:05:97:cd:87:ae:ec:95:9d:27:ca:
fc:49:5a:3d:fe:6d:40:e5:1f:1d:62:54:63:b5:3a:
6d:f3:03:82:14:d8:1d:1f:d6:4a:0c:08:94:fb:93:
6b:05:90:27:7e:a0:59:9b:bc:da:62:5c:f3:3d:62:
f5:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:F9:ED:23:86:6D:E7:7A:58:86:5A:F2:A3:AD:99:F8:3D:DF:40:04
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/E4CC3DE81A8F11F0BC491BD96DB8BCC6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.235.53.0/24
Signature Algorithm: sha256WithRSAEncryption
0a:b9:79:12:81:c0:58:ff:1c:5d:bc:bd:27:bc:51:53:46:cb:
f2:ef:3d:1f:70:d1:4e:08:66:83:8a:1e:47:96:04:ed:e0:5b:
74:9a:47:93:7c:43:40:76:9f:fc:1d:a8:aa:90:6a:27:f5:3a:
5a:5e:f9:6e:b7:b4:3a:3f:2a:25:41:42:b0:3b:d7:38:32:75:
cf:2b:1a:68:e2:03:b6:17:f6:c6:ac:f1:1b:41:fb:f6:e8:c1:
74:5c:09:50:36:f3:2d:62:e8:8c:bc:df:dc:3d:b2:58:d2:46:
6a:b2:6d:39:28:c3:9e:70:9b:c3:ae:33:fd:64:b4:86:68:e6:
6c:12:18:c2:28:54:1a:f3:1e:f0:9d:97:0c:d5:2e:03:87:6b:
65:53:0a:91:65:a9:1e:bf:64:6f:e3:51:57:70:d0:64:e4:0b:
81:5d:5f:46:ea:a6:d8:f3:9a:43:e2:da:bd:76:89:df:43:97:
1c:0e:cb:97:31:1e:4b:cf:7d:37:09:69:f7:7e:79:ef:65:60:
1a:e6:0c:40:e5:ed:da:a0:d8:9b:08:f1:98:1b:56:c5:58:4e:
4d:53:fc:7e:6c:f8:b7:b8:82:e8:8f:41:8f:23:27:e8:28:70:
7c:22:09:17:c3:af:31:ce:a1:fa:85:bd:c4:0e:4d:1a:70:0f:
18:83:cd:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 24 18:11:50 2025 by rpki-client on console.sobornost.net