Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/7EB6DCE2544911EEB40E87834AD9E6FC.roa
File: 7EB6DCE2544911EEB40E87834AD9E6FC.roa (raw, json)
Hash identifier: hezJ3LKi+PYW96mnUFk1WoMHwtDej44p2SWSbJRfMME=
Subject key identifier: 78:22:DF:BC:3A:86:38:2D:62:4E:A1:3C:F7:2C:86:08:AD:86:D7:23
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 3A49
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/7EB6DCE2544911EEB40E87834AD9E6FC.roa
Signing time: Sat 16 Sep 2023 04:28:33 +0000
ROA not before: Sun 01 Oct 2023 04:28:30 +0000
ROA not after: Thu 08 Aug 2024 04:28:30 +0000
asID: 133199
IP address blocks: 156.245.11.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 14921 (0x3a49)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Oct 1 04:28:30 2023 GMT
Not After : Aug 8 04:28:30 2024 GMT
Subject: CN=65052ef1-4c03
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:9a:77:ef:12:15:ad:f2:dd:eb:ed:2e:15:4a:
39:7b:67:34:19:4c:1a:b4:f3:85:86:ef:47:50:b3:
c9:4e:ba:37:23:05:55:4f:43:ec:96:d9:84:e6:24:
15:b8:07:98:09:2f:32:35:50:f6:55:01:98:80:df:
c2:e5:64:5b:2b:1c:0d:28:84:42:40:75:a2:75:1c:
0c:f4:41:e6:b8:f2:97:81:f1:9f:3b:41:e8:d1:c1:
27:73:51:d3:51:0e:17:0c:1e:0f:b8:89:95:4e:d5:
90:39:1b:54:93:64:90:37:20:d7:66:43:cf:9d:45:
30:5b:71:e7:8d:7a:b9:d4:b5:cc:2d:be:18:39:08:
97:85:c0:24:cd:a0:53:d8:0e:2f:a2:c0:e9:04:16:
37:95:79:0f:b9:f2:c7:b7:a0:42:0e:83:ae:a1:4a:
e3:74:a4:f2:4e:10:a1:38:76:34:10:e9:54:d6:da:
9f:8f:24:40:8c:08:52:e5:ac:19:fc:68:34:c6:ee:
8a:0d:de:61:34:27:96:b1:06:5c:76:7a:bd:a2:3f:
ed:5c:29:59:7b:47:1b:5e:dd:93:8f:59:aa:bb:ab:
11:b7:26:43:74:d3:1f:fd:b8:d1:6d:ff:36:c2:a6:
2e:ad:75:e4:ee:10:10:32:07:e5:c9:76:17:62:1f:
8f:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:22:DF:BC:3A:86:38:2D:62:4E:A1:3C:F7:2C:86:08:AD:86:D7:23
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/7EB6DCE2544911EEB40E87834AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.245.11.0/24
Signature Algorithm: sha256WithRSAEncryption
63:eb:cc:e9:21:85:ea:28:94:f1:ed:55:23:40:92:35:04:d0:
4c:d0:3b:30:f4:a2:eb:ac:c7:7a:04:8f:07:51:94:86:2d:a0:
06:52:db:2c:2a:ce:c4:13:10:e5:ee:ef:00:c3:1c:1f:84:2c:
2e:63:4c:86:82:72:2b:2c:12:70:2e:81:80:34:5c:e6:92:a1:
0c:6e:cb:22:03:21:0c:8d:7b:0b:5b:fc:f9:af:5c:bb:de:7d:
e1:fb:ca:bb:82:cd:68:ee:c3:11:4b:be:12:c7:4a:2d:a3:44:
b1:5c:8e:81:58:d3:fa:2f:fb:1a:90:56:51:1e:cb:25:97:62:
1a:3d:13:a4:d2:13:9c:5a:a8:5d:b6:de:20:54:51:94:89:74:
62:1b:a5:84:97:d1:98:1d:3f:20:a6:b4:1a:99:a2:c6:a8:be:
39:67:4e:ca:1c:64:cd:b0:61:7d:85:eb:8d:0e:9a:c5:cb:ff:
af:e6:0e:bf:d9:60:3c:77:93:78:a0:b4:f8:c2:99:24:b3:54:
63:89:aa:23:58:a1:d9:0a:cf:90:3e:78:30:13:41:e6:57:33:
94:eb:c9:64:76:01:5f:88:53:2d:c8:89:c0:7d:7b:c7:0a:61:
4e:57:68:d9:ed:0d:01:f8:83:f6:39:a6:b5:35:a4:01:9a:cf:
42:21:25:f9
-----BEGIN CERTIFICATE-----
MIIFgDCCBGigAwIBAgICOkkwDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAwwKRjM2
OEYyRDBBUjExMC8GA1UEBRMoNzk3RDg4RDgxM0UyMEZGRjk4MkNDNzQxOUU5NjlC
QUVBNkJGRDY5QjAeFw0yMzEwMDEwNDI4MzBaFw0yNDA4MDgwNDI4MzBaMBgxFjAU
BgNVBAMTDTY1MDUyZWYxLTRjMDMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQC/mnfvEhWt8t3r7S4VSjl7ZzQZTBq084WG70dQs8lOujcjBVVPQ+yW2YTm
JBW4B5gJLzI1UPZVAZiA38LlZFsrHA0ohEJAdaJ1HAz0Qea48peB8Z87QejRwSdz
UdNRDhcMHg+4iZVO1ZA5G1STZJA3INdmQ8+dRTBbceeNernUtcwtvhg5CJeFwCTN
oFPYDi+iwOkEFjeVeQ+58se3oEIOg66hSuN0pPJOEKE4djQQ6VTW2p+PJECMCFLl
rBn8aDTG7ooN3mE0J5axBlx2er2iP+1cKVl7Rxte3ZOPWaq7qxG3JkN00x/9uNFt
/zbCpi6tdeTuEBAyB+XJdhdiH48PAgMBAAGjggKiMIICnjAdBgNVHQ4EFgQUeCLf
vDqGOC1iTqE89yyGCK2G1yMwHwYDVR0jBBgwFoAUeX2I2BPiD/+YLMdBnpabrqa/
1pswDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjhGMkQwLzkyRjg2RTFDNkUwNTExRThBMUI1ODU0QkY4QUVBMjI4L2VYMkky
QlBpRF8tWUxNZEJucGFicnFhXzFwcy5jcmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hcmlu
L2VYMkkyQlBpRF8tWUxNZEJucGFicnFhXzFwcy5jZXIwTwYDVR0gAQH/BEUwQzBB
BggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5pYy5u
ZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEFBQcw
C4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9y
ZXBvc2l0b3J5L0YzNjhGMkQwLzkyRjg2RTFDNkUwNTExRThBMUI1ODU0QkY4QUVB
MjI4LzdFQjZEQ0UyNTQ0OTExRUVCNDBFODc4MzRBRDlFNkZDLnJvYTA1BggrBgEF
BQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54bWww
HwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBACc9QswDQYJKoZIhvcNAQELBQAD
ggEBAGPrzOkhheoolPHtVSNAkjUE0EzQOzD0ouusx3oEjwdRlIYtoAZS2ywqzsQT
EOXu7wDDHB+ELC5jTIaCcissEnAugYA0XOaSoQxuyyIDIQyNewtb/PmvXLvefeH7
yruCzWjuwxFLvhLHSi2jRLFcjoFY0/ov+xqQVlEeyyWXYho9E6TSE5xaqF223iBU
UZSJdGIbpYSX0ZgdPyCmtBqZosaovjlnTsocZM2wYX2F640OmsXL/6/mDr/ZYDx3
k3igtPjCmSSzVGOJqiNYodkKz5A+eDATQeZXM5TryWR2AV+IUy3IicB9e8cKYU5X
aNntDQH4g/Y5prU1pAGaz0IhJfk=
-----END CERTIFICATE-----
Generated at Sun May 11 14:22:36 2025 by rpki-client