Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/16B0A438F90F11EDA492A27D4AD9E6FC.roa
File: 16B0A438F90F11EDA492A27D4AD9E6FC.roa (raw, json)
Hash identifier: hwQzK7eIJrpdsj+XTy8ozvpBW3JuWeOO6l4rPWR1dko=
Subject key identifier: C4:B3:3C:CC:8B:B6:AC:51:20:AD:25:D7:F1:66:F6:E7:80:12:DC:B6
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 2658
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/16B0A438F90F11EDA492A27D4AD9E6FC.roa
Signing time: Tue 23 May 2023 02:11:12 +0000
ROA not before: Tue 23 May 2023 02:11:08 +0000
ROA not after: Sat 13 Apr 2024 02:11:08 +0000
asID: 64267
IP address blocks: 156.248.102.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 9816 (0x2658)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: May 23 02:11:08 2023 GMT
Not After : Apr 13 02:11:08 2024 GMT
Subject: CN=646c20c0-a7af
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:11:46:75:db:fc:87:c7:1a:f5:b4:9f:2a:f6:
76:e9:58:3a:00:90:c9:02:e0:1f:9f:44:93:9c:db:
af:53:ad:93:0e:6d:96:92:1c:90:4d:e5:ca:28:1d:
c2:db:4f:57:e8:50:f3:b5:5d:96:a1:a7:da:ee:65:
13:a1:26:5d:35:69:fd:5a:02:d5:27:62:84:5b:cb:
ca:67:dd:43:87:66:68:cd:62:98:14:29:09:82:1c:
e1:9b:72:44:a9:d9:00:48:60:b7:38:8d:b0:1b:42:
29:78:0f:e1:a5:82:d4:68:c5:82:38:d1:7d:0a:9b:
f2:7e:5a:f1:96:43:3f:32:7d:b8:dc:84:ca:db:60:
94:f5:70:2b:17:52:2a:45:60:79:78:5f:57:87:ad:
27:bf:2b:57:e7:2d:fb:0d:9b:ef:24:90:9b:cd:ca:
8d:1e:89:3f:47:5a:26:af:bc:57:a4:0a:4b:5b:94:
a1:07:50:16:f8:5a:7d:86:67:24:81:80:fd:22:33:
d5:92:de:bc:28:d6:45:97:82:fe:8e:9a:6c:25:a2:
1d:29:ab:b8:6e:00:77:a5:55:4d:61:bf:66:b2:bf:
3a:9c:41:f9:9b:0c:4f:15:d0:2c:2a:cf:bf:91:a3:
81:a2:93:6d:02:3a:fd:54:06:3e:db:e4:72:e5:bf:
3c:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:B3:3C:CC:8B:B6:AC:51:20:AD:25:D7:F1:66:F6:E7:80:12:DC:B6
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/16B0A438F90F11EDA492A27D4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.248.102.0/24
Signature Algorithm: sha256WithRSAEncryption
32:ee:4c:e8:b1:24:b5:d0:54:16:76:ad:ca:36:d8:bb:22:71:
f9:c8:5f:79:fe:e7:7b:16:60:3d:09:53:4a:ad:80:98:ab:e8:
56:bf:eb:5d:ed:ce:c7:49:70:a2:2c:39:7a:57:68:27:d7:f4:
01:84:86:dd:65:41:1f:3b:df:56:ff:cb:fe:9c:cb:42:84:fe:
06:87:ab:a6:80:37:10:9e:ee:0e:94:47:1e:8c:f5:e4:03:ca:
c2:b8:56:71:c5:f0:2c:71:78:be:1d:64:c9:88:d2:3e:20:50:
c5:79:10:da:95:d9:d2:e8:ec:21:3d:ca:88:d6:c7:dc:c2:9b:
30:0f:6d:2a:3d:4a:6b:08:b1:55:e1:f4:95:7a:24:68:e2:83:
f6:25:37:a1:e6:a3:21:83:5b:c0:d6:26:9c:c5:ad:02:d6:27:
c2:d7:70:92:11:6e:d6:ac:63:ca:51:66:67:0e:11:7a:93:e9:
24:28:ea:59:6b:b3:17:68:1a:9d:f0:d2:d3:5a:5d:ab:8b:fa:
d9:27:c2:8d:ad:6d:6c:9d:44:e4:50:d8:43:b2:9a:7c:b4:37:
5b:3c:03:fd:92:2e:d5:33:4f:54:62:80:0c:d8:b1:cd:89:a1:
19:4c:a5:31:c2:ef:7a:17:3d:0c:0f:72:d1:46:37:1e:26:3a:
77:54:90:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 11 14:52:32 2025 by rpki-client