Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/30A3C6CAF9FC11ED8645244E4AD9E6FC.roa
File: 30A3C6CAF9FC11ED8645244E4AD9E6FC.roa (raw, json)
Hash identifier: NQCXwh99rG4DgIckiDLAhM+QAFGKtGZwDIQY4cRPbbo=
Subject key identifier: D9:59:18:DA:16:7A:E8:DE:37:EF:5E:E9:09:50:22:D5:89:8E:EB:D1
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 2721
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/30A3C6CAF9FC11ED8645244E4AD9E6FC.roa
Signing time: Wed 24 May 2023 06:28:26 +0000
ROA not before: Wed 24 May 2023 06:28:23 +0000
ROA not after: Tue 21 May 2024 06:28:23 +0000
asID: 26617
IP address blocks: 156.240.60.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 10017 (0x2721)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: May 24 06:28:23 2023 GMT
Not After : May 21 06:28:23 2024 GMT
Subject: CN=646dae8a-f261
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:03:54:67:92:6a:97:60:8d:a8:95:9d:2d:65:
78:85:8b:f0:3c:6d:fa:fd:68:9c:ff:4d:b7:31:37:
7f:32:95:a6:a7:0e:57:4b:f9:dc:41:34:18:99:db:
0b:f9:67:f1:56:fd:b6:bb:14:43:5a:f6:31:9c:7b:
89:75:c2:b1:5e:25:0a:ed:5c:c4:91:47:1f:9a:65:
b9:de:7e:0b:f8:26:8b:f5:b1:d0:8a:f3:68:2d:72:
5b:e6:05:fc:56:60:f5:d0:d8:2a:11:c9:9f:5a:9c:
fd:08:3a:d3:4f:3f:c6:c9:c6:d3:ba:0d:5d:65:47:
8e:4f:b5:da:b6:88:73:31:5d:86:5c:e4:21:65:3b:
42:8e:ef:34:b5:8f:91:46:3d:46:82:d0:b0:a7:01:
6e:8b:68:d4:28:d1:26:4d:6e:68:77:51:50:69:5d:
6e:fe:1e:d5:71:27:67:24:53:52:ea:58:bc:d8:de:
30:26:4b:14:92:e8:e9:1a:30:43:d8:01:44:11:91:
8f:50:3a:0d:89:b3:d2:1d:fb:2c:8f:50:8f:02:dc:
87:25:82:e9:6f:ab:a2:a6:c3:e6:54:bf:28:78:b5:
04:81:2c:57:3d:d0:ec:7c:c3:d4:3a:81:9b:3e:d8:
07:dc:ef:82:03:b1:76:ef:13:83:33:8e:79:0b:f0:
54:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:59:18:DA:16:7A:E8:DE:37:EF:5E:E9:09:50:22:D5:89:8E:EB:D1
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/30A3C6CAF9FC11ED8645244E4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.240.60.0/24
Signature Algorithm: sha256WithRSAEncryption
0e:ed:f7:6a:98:be:4c:bc:8f:16:6a:1f:6b:20:55:22:15:b7:
2e:70:46:6b:8b:c4:f6:68:ff:e5:f5:09:47:67:03:2c:53:b8:
de:b8:6c:cc:65:60:13:f0:a6:04:6a:13:69:e0:ac:83:05:73:
a6:34:93:7a:cf:5a:75:62:16:ff:a2:14:cc:f2:43:a7:a5:14:
37:b9:ce:79:8e:1f:5b:04:43:8e:99:f6:85:34:e6:3c:9b:9e:
eb:54:e9:04:c7:0f:29:52:66:9d:9d:94:c1:ad:c0:47:43:28:
c6:39:0a:55:29:20:21:30:e2:13:1d:0c:71:dc:9f:19:99:b7:
ff:73:63:eb:d3:6b:71:f6:60:c2:22:bc:19:d1:d4:c8:9b:3c:
34:9e:a6:fe:2a:01:73:4f:f3:7c:37:5d:64:bd:2e:2c:c2:fc:
20:4c:f7:76:e5:a0:39:8f:82:47:e7:6c:01:a7:94:f7:8a:9f:
df:6d:ce:2a:0c:82:44:a9:5e:23:39:55:75:f1:2e:92:a3:e6:
36:ac:09:d6:32:19:1d:bf:0b:d6:d6:d7:3b:7e:1b:db:2e:2b:
db:1b:4a:65:85:ae:80:f7:66:d2:5e:3b:e8:49:11:04:e9:f0:
52:a0:53:57:be:b5:2b:97:d2:a0:83:b0:a8:9d:70:55:8f:71:
d4:5c:0d:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 11 21:47:32 2025 by rpki-client