Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/FFC5E92C544911EE87CF5A854AD9E6FC.roa
File: FFC5E92C544911EE87CF5A854AD9E6FC.roa (raw, json)
Hash identifier: FnoJW6KfzsHljUtShv8+FdnqG0Qma8zje+Tz7JQ2Ssc=
Subject key identifier: 22:AF:69:CB:3B:76:E4:38:29:42:3F:C1:CC:51:13:26:E7:66:6B:02
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 3A51
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/FFC5E92C544911EE87CF5A854AD9E6FC.roa
Signing time: Sat 16 Sep 2023 04:32:10 +0000
ROA not before: Sun 01 Oct 2023 04:32:06 +0000
ROA not after: Thu 08 Aug 2024 04:32:06 +0000
asID: 133199
IP address blocks: 156.245.14.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 14929 (0x3a51)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Oct 1 04:32:06 2023 GMT
Not After : Aug 8 04:32:06 2024 GMT
Subject: CN=65052fc9-88a2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:71:bd:d1:f5:09:93:56:58:47:79:f8:d0:ca:
eb:a6:a0:8b:b1:7a:48:84:e7:dc:7d:50:a1:1a:ef:
23:e1:25:32:63:28:36:ea:de:5a:a2:32:d0:6a:a5:
9b:e7:31:a8:97:3c:79:4b:e2:ea:bc:9c:bf:69:1f:
3a:31:ec:55:79:04:7d:41:ef:55:60:d9:9a:eb:e0:
e2:85:3e:41:2c:55:13:28:01:98:02:15:bd:c4:2a:
62:0c:b1:3c:54:ff:0a:f8:2f:8e:ca:a1:cb:18:90:
d4:5b:f1:17:88:d4:c8:e0:15:dc:25:1d:c4:2f:b9:
46:78:c1:98:9c:8d:d0:c5:da:e5:a8:56:f8:a7:b8:
77:05:a5:a0:e8:02:4e:e7:f7:83:2e:ee:98:1a:81:
e5:8a:0c:d5:99:b0:84:9e:50:02:43:64:2d:8b:8b:
91:eb:1e:3f:3a:70:c2:36:f6:84:1b:ae:d3:4b:09:
b2:ca:75:18:b4:9d:c5:08:a9:6d:9c:71:13:40:f7:
6c:08:4e:11:d0:06:31:c5:54:af:6c:4b:0e:5b:fc:
e3:e6:4b:1f:2c:de:87:2a:64:04:01:06:7c:16:7e:
f0:e3:63:60:e3:d9:fb:a4:0b:a4:10:b6:7a:5b:4c:
a5:bb:e1:84:67:33:6e:54:88:88:c1:97:9e:ab:c0:
c8:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:AF:69:CB:3B:76:E4:38:29:42:3F:C1:CC:51:13:26:E7:66:6B:02
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/FFC5E92C544911EE87CF5A854AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.245.14.0/24
Signature Algorithm: sha256WithRSAEncryption
95:8f:d4:de:f3:17:fb:0e:cd:29:f3:dd:81:1b:6f:a2:22:44:
87:69:9a:6a:71:3b:be:d1:e5:f6:fb:73:8e:0b:05:c4:4e:d9:
8f:29:84:56:7e:85:15:6b:ff:a5:80:47:aa:94:3c:c2:fd:03:
96:e9:bd:fe:a6:b6:82:d1:a3:b2:bf:58:f5:0d:ed:e5:9b:e2:
ee:a2:41:25:04:df:65:37:1d:7a:55:d2:e3:cf:f5:70:a1:39:
04:b1:53:c9:f6:41:ae:c4:c9:66:0e:97:a3:b5:da:5f:60:cb:
2d:22:a0:2a:52:6e:38:ad:9c:97:82:74:a7:7a:f2:10:30:3a:
8d:25:3a:a8:e9:0e:e3:f5:5c:26:6e:b1:32:45:ef:61:d5:36:
7a:d3:3c:3f:13:3c:3d:b9:7d:8b:aa:51:b9:68:a1:86:5e:9e:
6d:e0:68:6d:e0:66:7b:77:e8:84:6f:0d:e9:04:7c:63:26:4c:
a0:43:1d:09:88:a7:6e:19:97:ae:32:ea:0e:96:20:2a:98:ea:
c7:32:5e:17:ab:28:7f:37:f7:09:27:cc:9e:ba:2d:82:54:f4:
27:b7:ed:85:0a:b4:32:e4:3f:44:f8:63:2e:c6:f6:ca:f9:f5:
d4:14:9b:18:7a:1c:9f:01:bb:4f:3a:ed:0c:bd:15:f6:f0:e1:
dc:71:c8:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 11 13:38:33 2025 by rpki-client