Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/98BA3618FD7411EF9ED34459762E951A.roa
File: 98BA3618FD7411EF9ED34459762E951A.roa (raw, json)
Hash identifier: uUTEezRYJncUZOnC/SLs4T5w2X133/dduEOlBFYlIz4=
Subject key identifier: 5E:6D:7A:33:CA:98:04:E3:B9:48:A1:74:3B:DE:32:02:C4:F4:77:7A
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 014494
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/98BA3618FD7411EF9ED34459762E951A.roa
Signing time: Mon 10 Mar 2025 05:57:49 +0000
ROA not before: Mon 10 Mar 2025 05:57:45 +0000
ROA not after: Sun 30 Mar 2025 05:57:45 +0000
asID: 395839
IP address blocks: 156.229.27.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 83092 (0x14494)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Mar 10 05:57:45 2025 GMT
Not After : Mar 30 05:57:45 2025 GMT
Subject: CN=67ce7f5d-3838
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:9f:42:d9:db:65:6a:b6:6e:8a:7b:c2:dd:1d:
b1:92:f8:48:a1:42:83:7d:b7:bc:d6:dd:31:25:33:
1e:32:aa:3e:31:f7:61:ca:96:e3:b4:bd:6a:dd:8f:
53:bd:89:5c:ab:f1:81:8d:c8:01:3e:24:37:5e:ca:
50:b0:0e:0a:6a:9c:32:44:fe:24:73:2d:f5:92:f3:
e6:c8:c6:74:32:0d:46:78:b9:0f:91:3c:e6:29:03:
e5:57:c8:1a:b3:9d:73:25:49:99:07:a4:eb:42:aa:
74:0f:52:17:57:e2:89:b2:11:9f:97:5c:c4:78:67:
0f:cc:67:bb:be:9a:cd:17:b3:8a:6e:f9:2d:5b:a7:
c1:36:68:e9:12:49:a2:1b:6e:70:ae:58:0b:3d:a8:
78:4a:86:01:2f:51:31:4a:d5:70:d2:00:5f:df:51:
d7:c0:9c:7c:ca:1e:1d:4c:ad:89:71:50:46:4a:c4:
26:30:bc:05:33:27:fd:10:18:d9:35:28:a0:c6:59:
86:2a:5d:5f:61:98:4d:1c:79:67:23:f2:28:55:af:
e7:87:9d:1f:8a:19:b9:57:19:75:9e:4b:74:a7:29:
b4:54:7a:33:98:87:97:dd:fe:db:2f:80:a9:d0:c6:
95:9b:f5:f8:f1:e6:c3:51:07:2c:76:ae:c2:4d:b2:
c0:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:6D:7A:33:CA:98:04:E3:B9:48:A1:74:3B:DE:32:02:C4:F4:77:7A
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/98BA3618FD7411EF9ED34459762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.229.27.0/24
Signature Algorithm: sha256WithRSAEncryption
6a:c9:a5:13:98:14:e0:4a:0c:fb:e9:8f:21:a0:b4:0a:a4:cb:
2b:12:5a:5d:a4:ea:ad:f4:5e:2d:72:c3:f4:71:f7:91:55:93:
11:f1:5f:e3:e8:19:e2:60:c9:6e:7d:2b:75:69:e0:aa:8f:43:
10:cb:93:df:37:40:59:58:80:a7:f2:45:2b:f0:45:76:d8:8d:
ec:d7:95:0e:31:a3:2d:bc:70:32:d4:08:4e:c4:45:62:d3:88:
ea:24:28:e2:31:90:52:f7:27:86:89:c3:60:4b:be:9a:1e:8d:
7f:00:57:42:2c:cc:81:0d:e1:04:0a:53:e7:78:8d:e5:58:97:
be:cd:8f:bd:84:f6:c6:47:ba:33:b6:1a:6e:11:cf:68:43:71:
6e:1b:6d:34:dd:32:3a:22:6e:c0:47:3b:2f:ed:fc:62:65:4e:
96:b3:ea:a0:4c:98:de:09:78:c3:71:e8:da:64:88:8e:44:9c:
56:a4:c0:ff:b8:57:3b:6b:5e:75:e9:7a:08:f7:9a:2a:e5:71:
64:fc:0b:cf:ab:4f:8a:7d:ab:a0:6d:dc:b5:e9:4b:a3:39:f0:
48:ac:b5:3f:9b:c9:7a:ad:99:2d:a2:eb:ce:6a:4e:4d:08:e0:
36:92:90:12:d6:ab:6d:89:7f:91:d6:42:47:f0:d7:c3:e1:16:
80:f4:99:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 9 07:06:58 2025 by rpki-client