Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/C20154FE544A11EE99AEC0874AD9E6FC.roa
File: C20154FE544A11EE99AEC0874AD9E6FC.roa (raw, json)
Hash identifier: u+MaNhZe4lKdgYCzm5FJyDz5KwJA8y9/xwiSlR4oMbQ=
Subject key identifier: 78:F9:EA:0B:88:CE:AA:97:A7:BE:16:15:E5:C8:4D:16:FA:F0:A1:E2
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 3A5D
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/C20154FE544A11EE99AEC0874AD9E6FC.roa
Signing time: Sat 16 Sep 2023 04:37:36 +0000
ROA not before: Sun 01 Oct 2023 04:37:32 +0000
ROA not after: Thu 08 Aug 2024 04:37:32 +0000
asID: 133199
IP address blocks: 156.245.23.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 14941 (0x3a5d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Oct 1 04:37:32 2023 GMT
Not After : Aug 8 04:37:32 2024 GMT
Subject: CN=6505310f-f71f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:4c:6d:4e:00:c5:ab:94:2a:7f:ef:59:12:ea:
11:f2:6e:3a:55:41:dc:44:38:96:e2:4f:95:57:9b:
8a:3c:57:9d:9c:04:1a:be:45:31:0a:cf:87:4e:8d:
89:d2:bb:a9:8d:9c:99:4a:4e:cd:d2:06:27:1f:25:
de:af:47:61:df:9a:3e:79:69:b2:4b:0c:f0:82:04:
61:d8:96:20:8d:3c:a4:94:67:a2:30:e4:8b:e2:94:
0a:d2:3c:f4:b7:53:7c:60:30:34:de:f7:49:a8:9d:
0d:40:48:c2:35:2f:53:ec:6f:1f:9e:3a:9c:5e:c1:
ca:b4:6e:dc:9e:48:34:36:e3:02:38:c1:b0:ee:53:
9a:1e:e9:01:17:cf:bb:a8:8c:76:fd:f8:32:e3:82:
d8:05:4f:97:e2:17:12:7a:09:da:ae:1d:f3:f4:fe:
7b:ba:50:f8:9e:99:fa:46:61:1a:28:da:04:9e:45:
ed:61:de:44:ad:7f:d5:b5:e3:c5:17:1e:7e:0d:88:
14:00:7a:ac:42:bf:2d:49:49:73:23:10:54:79:ed:
2e:bf:05:d9:36:54:06:51:ad:b5:e3:7d:4c:44:ed:
78:8e:c5:d2:44:34:86:e9:82:91:cd:b7:ae:7c:44:
4f:d2:4f:b4:44:b2:61:b6:2b:51:36:ab:cc:af:f6:
11:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:F9:EA:0B:88:CE:AA:97:A7:BE:16:15:E5:C8:4D:16:FA:F0:A1:E2
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/C20154FE544A11EE99AEC0874AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.245.23.0/24
Signature Algorithm: sha256WithRSAEncryption
21:0d:41:7c:7a:b8:0b:5a:dc:03:62:d7:1d:db:70:9e:84:ff:
0a:03:2d:82:a0:a2:25:1b:aa:0a:6b:ae:96:94:8f:98:98:9f:
61:ea:37:2a:e5:27:8c:f0:da:9f:58:79:7a:89:ed:16:84:08:
52:85:3c:39:6d:7f:01:68:72:e2:65:41:23:de:ab:77:ff:f9:
9e:a7:3e:fa:3a:77:6b:cf:ae:06:83:05:37:b0:3a:f0:8f:58:
fc:e3:fe:1d:10:05:10:46:58:f7:65:c7:4a:07:19:cb:49:78:
fe:c0:67:96:a6:88:eb:f0:82:64:de:93:61:93:48:99:1e:a2:
3b:54:35:de:8a:83:99:03:c6:30:20:6e:11:4b:11:8b:1c:35:
f2:0b:49:27:d8:10:30:93:af:bc:58:db:b7:bd:3a:2f:86:4b:
56:33:ca:04:e3:81:d3:12:8d:e5:19:4e:2d:c6:3d:5c:f7:55:
c7:9f:26:9c:ac:e0:3b:19:83:e1:9a:69:8b:76:98:d2:23:f0:
ab:a1:56:0c:82:cd:fa:5a:2d:36:df:cd:3b:b5:20:f0:fe:c1:
fb:35:b0:be:b7:a7:98:bf:65:85:c3:85:c6:d1:76:40:c0:35:
0c:3f:82:74:86:7b:9d:30:af:54:54:a9:ca:a7:82:6e:59:df:
76:fa:02:7d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 11 14:45:26 2025 by rpki-client