Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/73D5674084F911EE836F355C4AD9E6FC.roa
File: 73D5674084F911EE836F355C4AD9E6FC.roa (raw, json)
Hash identifier: AlOqalLwPE0lOzkuL6JIO1rAyF0Eo8XP96ytUJF15Fs=
Subject key identifier: 82:8A:CA:AE:0A:78:D0:CE:1C:7D:21:0D:57:78:16:ED:44:96:D6:F6
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 4975
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/73D5674084F911EE836F355C4AD9E6FC.roa
Signing time: Fri 17 Nov 2023 03:29:02 +0000
ROA not before: Fri 17 Nov 2023 03:28:59 +0000
ROA not after: Tue 12 Nov 2024 03:28:59 +0000
asID: 64267
IP address blocks: 156.227.11.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 18805 (0x4975)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Nov 17 03:28:59 2023 GMT
Not After : Nov 12 03:28:59 2024 GMT
Subject: CN=6556ddfe-57fe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:fe:b4:61:39:04:e7:c3:6f:1d:cc:ac:d2:77:
27:26:1b:dc:c6:e7:74:51:84:7e:8e:89:51:b8:cc:
28:99:48:c2:54:39:a6:8e:72:ec:f7:be:22:a8:35:
7e:c5:6d:9b:6f:a0:96:0f:93:0d:ba:4f:38:cb:7d:
a7:67:c6:c0:7c:f7:19:c4:c6:76:93:86:92:f2:41:
b7:d3:08:b5:10:01:ef:05:bd:b1:f1:fe:07:02:86:
04:8e:c2:27:9d:79:87:f2:84:e0:91:2d:0f:21:7e:
8a:39:1b:6f:5a:e3:0c:bc:ae:f5:93:fc:a1:e4:9b:
a8:68:81:c1:6b:89:a4:54:e5:a1:65:ad:f1:52:7d:
21:a4:6c:be:84:9a:62:24:50:f1:35:98:49:27:ab:
70:65:3a:18:4f:e2:71:30:7a:4a:f6:77:1b:77:8f:
ad:84:1d:97:65:dd:76:78:38:98:8c:36:25:b4:05:
af:44:02:11:52:f0:9e:4c:4f:0f:b5:75:08:19:41:
df:80:5e:18:c8:46:2f:24:53:53:c9:3c:72:f9:a5:
3d:3b:65:db:28:ae:81:a8:15:b7:dd:52:89:43:e1:
5c:b9:22:ad:39:81:3f:99:76:30:1c:85:34:bc:03:
2b:dd:d9:16:03:aa:85:cc:ee:56:99:45:1c:50:b9:
86:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:8A:CA:AE:0A:78:D0:CE:1C:7D:21:0D:57:78:16:ED:44:96:D6:F6
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/73D5674084F911EE836F355C4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.227.11.0/24
Signature Algorithm: sha256WithRSAEncryption
a5:ed:e2:ed:13:88:66:83:2b:a0:e3:7c:f4:e0:c0:9a:e6:db:
13:94:42:a4:e6:b6:44:7c:6f:8f:3b:9d:cc:d0:b0:df:6d:c0:
0f:1e:79:ab:26:ff:cd:38:49:50:c0:c1:4d:f8:76:72:f4:89:
23:ee:0a:d1:19:b9:42:92:0f:28:c1:9e:79:a8:67:fb:16:a9:
8e:29:02:2b:7d:b4:6b:6d:07:e6:d8:d6:ba:44:03:7e:94:39:
42:47:31:2e:f2:b5:bd:82:fa:cf:d1:42:1b:a1:2f:86:6d:21:
8d:4d:10:8b:ae:40:46:31:1c:a4:c8:76:92:6c:b4:14:41:df:
89:fb:83:d3:7d:6a:e7:b8:6c:24:c7:7f:b2:26:9c:ad:11:b0:
63:2d:41:54:6d:2b:e6:61:2f:2a:1b:80:3a:59:aa:a5:15:1d:
ce:e0:5d:f0:09:2b:4c:11:cf:59:d4:93:2a:02:f9:cf:3c:26:
5f:c3:eb:47:fc:75:ca:69:35:9a:89:96:37:45:6b:60:3f:15:
8e:6e:d1:59:13:dc:32:b9:f1:cf:95:a0:1f:80:eb:62:6b:eb:
bc:a1:53:21:8c:45:39:df:9e:92:8d:da:b1:b3:17:aa:1f:de:
8a:a7:d4:dc:7f:e3:ca:e7:06:da:91:ff:d8:a8:12:c9:ce:9f:
2a:db:d0:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 11 15:23:50 2025 by rpki-client