Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/18E333A853C611EE8DB7F0564AD9E6FC.roa
File: 18E333A853C611EE8DB7F0564AD9E6FC.roa (raw, json)
Hash identifier: h9KWRIsdT6PfMdlt7t3/BHOAUNljZbI9IhbYAFdZcrE=
Subject key identifier: 03:7E:24:84:80:4E:33:78:19:B5:CC:68:7B:1B:A8:72:5A:1F:C1:62
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 39B0
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/18E333A853C611EE8DB7F0564AD9E6FC.roa
Signing time: Fri 15 Sep 2023 12:47:58 +0000
ROA not before: Fri 15 Sep 2023 12:47:55 +0000
ROA not after: Sat 28 Oct 2023 12:47:55 +0000
asID: 9009
IP address blocks: 156.236.11.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 14768 (0x39b0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Sep 15 12:47:55 2023 GMT
Not After : Oct 28 12:47:55 2023 GMT
Subject: CN=6504527e-cf92
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:fe:2f:94:b8:7b:39:a7:5b:7c:f0:33:5d:41:
1b:43:1d:83:f9:55:02:f3:04:a0:f3:a0:db:9c:0c:
11:99:5a:40:5a:b7:7c:55:8c:5e:bc:90:92:c3:5e:
ee:d1:8d:a3:82:83:0c:ae:dc:b3:77:08:10:49:dd:
27:94:cd:51:5c:bf:21:1c:7e:a0:e4:33:04:4d:e5:
c5:19:83:d8:9e:33:12:2c:5b:fc:b4:37:40:0f:62:
19:81:a2:63:78:3f:d6:0b:21:5d:62:af:95:0e:44:
cc:6d:1a:6e:f9:81:0d:ff:7f:99:c4:2d:56:31:07:
a2:ae:7a:ae:46:75:0e:07:03:32:38:75:ec:5a:2e:
fb:1a:63:a8:80:30:4f:9b:18:07:1d:23:0b:48:86:
3e:83:bd:ac:c5:a0:c6:36:64:fd:2b:5d:de:91:22:
bc:3d:05:9c:5d:ba:59:97:3c:cf:7b:e4:4d:a3:b9:
9e:3e:e0:f5:5a:da:af:03:e5:d4:66:c6:49:11:ec:
61:49:04:47:c4:5e:ec:d9:a2:23:84:6e:e3:66:77:
3c:48:0e:25:30:47:80:c9:47:4c:6e:7c:4f:e1:ec:
94:d9:3a:c2:a8:19:bf:9e:84:a4:54:34:1d:3a:95:
44:8a:b0:9a:03:4d:40:fa:8d:f4:99:c2:67:47:f6:
96:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:7E:24:84:80:4E:33:78:19:B5:CC:68:7B:1B:A8:72:5A:1F:C1:62
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/18E333A853C611EE8DB7F0564AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.236.11.0/24
Signature Algorithm: sha256WithRSAEncryption
32:af:00:47:75:34:09:6f:bf:90:f7:8d:4a:3b:91:c9:74:84:
99:87:26:7b:46:29:fb:79:ae:8f:b7:68:72:f5:8e:6c:f4:db:
7a:7f:dc:39:65:d2:eb:e9:83:c6:07:50:8d:8f:72:b1:12:67:
70:6c:1a:51:7d:ab:1e:e5:08:3d:77:d0:2c:7f:24:8b:64:df:
0b:b4:73:81:53:0d:7d:b9:18:94:a4:2f:18:74:c4:0d:eb:d5:
df:6b:ab:1e:0f:f7:5a:d8:9c:af:9d:9c:90:32:76:ec:de:3d:
b7:ea:fb:85:d5:2e:69:a2:3b:62:99:a5:e5:66:22:27:26:86:
62:5a:de:aa:93:c8:40:1c:1d:5c:61:14:a5:f9:cd:09:09:a9:
d2:54:36:2d:ff:62:c4:2e:de:21:85:7d:75:cb:0c:59:26:a2:
e7:0f:df:b6:0f:ef:ee:c3:5c:b8:46:fc:ea:78:45:f0:a0:f5:
e2:06:a4:f1:37:03:c8:92:d3:ee:e8:bb:a4:83:c7:96:e9:77:
de:c4:34:3f:00:2c:6a:27:0c:ea:03:a6:6f:ef:5f:a9:82:57:
21:e4:4d:30:b5:3f:1d:ac:e3:be:83:30:e5:51:29:95:82:cd:
e8:e2:c5:56:96:7d:d5:43:15:8e:98:d9:26:3e:bb:b6:58:2e:
a3:7e:59:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 9 11:11:11 2025 by rpki-client