Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/D16C1D52B35F11EDB7814CACF1222468.roa
File: D16C1D52B35F11EDB7814CACF1222468.roa (raw, json)
Hash identifier: JDif5X9RbiVlQl5TUL7OaGjH14DpvhlMzPOH5P7lTYE=
Subject key identifier: 0A:E3:3C:44:48:19:75:20:1A:E0:AA:89:EC:AE:86:33:08:49:79:DE
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 1C15
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/D16C1D52B35F11EDB7814CACF1222468.roa
Signing time: Thu 23 Feb 2023 09:52:44 +0000
ROA not before: Thu 23 Feb 2023 09:52:40 +0000
ROA not after: Mon 23 Oct 2023 09:52:40 +0000
asID: 133199
IP address blocks: 156.245.21.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7189 (0x1c15)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Feb 23 09:52:40 2023 GMT
Not After : Oct 23 09:52:40 2023 GMT
Subject: CN=63f7376c-9538
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:54:73:75:7d:1c:9a:22:e3:56:56:b3:93:fc:
da:53:e8:c2:5a:db:1b:f2:08:e2:8e:04:20:17:e1:
e1:48:02:63:a4:6c:a4:c0:9a:af:c2:89:da:16:8f:
73:74:e0:53:b7:ed:97:1b:42:fc:01:e4:14:af:49:
87:41:79:2a:2c:d4:60:4d:a1:c2:ab:e9:36:10:bd:
2e:90:89:75:3d:0d:5b:e3:bc:7f:c0:f1:db:2f:4d:
6c:72:42:7c:25:80:bd:9a:b4:d9:44:b2:99:c9:59:
13:c5:a8:e9:74:e6:c4:8d:64:d4:2b:72:ba:56:f7:
c7:4d:8d:32:8f:50:6a:03:6b:9b:80:bb:87:46:94:
de:23:59:8d:65:65:47:e4:dc:92:dd:5f:14:78:b0:
21:d8:3b:9a:1a:3e:08:80:12:2c:1a:42:9e:3d:a0:
bd:dc:01:11:8f:63:76:69:bc:44:c2:72:68:9e:5a:
eb:0a:38:a1:46:7c:cf:b4:ec:cb:0b:5c:68:8c:62:
3e:45:1f:10:b2:46:65:a5:a0:6d:5c:65:d7:06:25:
b9:5f:d7:24:f7:d9:65:de:7f:99:1b:29:d3:8b:15:
8b:63:6e:3b:12:d1:50:35:95:a2:a6:b9:c6:68:66:
37:b8:59:58:7a:ee:1a:3b:ed:cc:ed:06:52:88:a4:
e7:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:E3:3C:44:48:19:75:20:1A:E0:AA:89:EC:AE:86:33:08:49:79:DE
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/D16C1D52B35F11EDB7814CACF1222468.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.245.21.0/24
Signature Algorithm: sha256WithRSAEncryption
b1:7c:c6:9d:76:80:a9:ca:be:0a:6a:8b:54:69:a6:f2:61:3a:
e3:82:b0:a6:8c:54:bf:1b:b3:ad:88:9b:62:fe:4a:a8:eb:f1:
f6:1c:08:bd:94:e1:48:72:da:f2:7e:15:6d:a6:24:b1:4d:c9:
4e:f0:9e:d4:b2:a2:21:fe:1f:18:6b:8b:5a:07:32:d7:e8:f6:
55:67:91:13:39:54:13:bd:7d:61:36:78:ef:5f:c7:32:6a:4c:
31:bf:01:2c:83:96:4c:53:1f:4b:59:ea:f9:2a:0e:cc:3f:64:
45:5f:0a:cc:85:0b:86:e3:58:a9:4b:76:28:42:2b:16:70:f0:
3a:89:f8:21:6e:8a:e6:03:88:56:a2:fe:5b:fd:80:6a:58:52:
b4:d5:65:ef:91:2d:42:11:7b:9f:b6:87:b6:51:d4:2b:71:c6:
b2:5c:78:b0:bb:3f:ac:bd:7a:ff:e1:1e:7b:89:24:2e:93:55:
29:d0:de:6a:41:e5:7a:12:b2:20:ed:d5:08:df:63:9c:eb:ee:
66:0f:fe:ca:c9:e8:80:28:a0:bb:34:04:16:83:35:88:90:82:
fc:7f:8e:f5:0f:ee:d3:60:80:6c:bb:b4:b5:c1:2b:6e:81:2f:
b2:b5:c0:ab:5a:5d:2d:5c:b9:93:32:6c:ff:82:a5:e1:db:d4:
e0:56:fa:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 11 16:05:04 2025 by rpki-client