Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/2CE79154C6C611EFB40F4B8F762E951A.roa
File: 2CE79154C6C611EFB40F4B8F762E951A.roa (raw, json)
Hash identifier: 44aLpW4NACADMo5tPZ9BY2eAJqeALRxSG45yX5EyL0g=
Subject key identifier: C2:27:8A:28:53:EB:14:6A:AD:02:86:57:57:FB:D7:29:4B:CB:EE:54
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: F257
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/2CE79154C6C611EFB40F4B8F762E951A.roa
Signing time: Mon 30 Dec 2024 15:53:13 +0000
ROA not before: Mon 30 Dec 2024 15:53:09 +0000
ROA not after: Tue 04 Feb 2025 15:53:09 +0000
asID: 138415
IP address blocks: 156.234.0.0/16 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 62039 (0xf257)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Dec 30 15:53:09 2024 GMT
Not After : Feb 4 15:53:09 2025 GMT
Subject: CN=6772c1e9-7177
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:97:36:30:2a:7b:77:cc:b2:a8:6b:86:4f:30:
07:1d:51:4e:52:48:84:5f:1d:1c:be:c0:1c:a1:b9:
7c:f8:7a:5c:9f:78:d4:78:92:35:37:7d:90:72:e6:
1a:2c:39:25:de:a2:5e:b4:8e:02:f6:62:9c:76:db:
56:7a:3d:46:79:ff:29:4b:ae:7f:e9:99:a8:96:f2:
9b:97:32:5c:ef:7a:b1:96:07:e4:b4:1e:9c:a5:78:
f4:44:8d:28:05:61:87:ca:6c:16:ce:4c:e4:e7:b7:
f7:4f:94:7d:60:49:ae:e6:70:db:b9:63:91:72:60:
7e:70:d7:0e:9e:bc:f4:01:6a:90:2c:5b:a9:69:e2:
e0:18:4e:4e:08:39:47:bb:7a:be:31:a4:40:6c:46:
31:d8:08:8f:aa:d9:cb:0c:ab:20:f4:6e:cd:89:d6:
a1:fb:51:98:8f:7f:04:f4:eb:56:72:13:7d:fa:21:
49:6e:58:5b:8d:2a:94:e1:49:bf:18:48:bd:d0:47:
02:97:fb:0c:4c:f0:34:68:1a:14:7f:9d:6b:ad:75:
66:e8:c0:9a:59:e3:dd:a8:fa:bd:3a:b8:7e:23:63:
0e:cf:e6:b5:4f:da:92:77:35:fc:61:d2:8d:fc:1a:
72:6f:8b:77:ed:28:b6:a9:28:05:f2:c5:59:67:99:
01:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:27:8A:28:53:EB:14:6A:AD:02:86:57:57:FB:D7:29:4B:CB:EE:54
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/2CE79154C6C611EFB40F4B8F762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.234.0.0/16
Signature Algorithm: sha256WithRSAEncryption
61:a8:2d:0f:b7:03:a3:80:d2:75:0a:fe:1d:e4:41:0a:8a:2e:
46:55:15:63:13:cf:c0:55:ab:b1:d2:d5:25:16:14:44:32:05:
4e:a3:09:90:81:86:85:3e:74:02:8d:17:de:41:97:20:24:d5:
dd:b2:a0:ed:47:2e:08:c3:0c:6c:55:27:88:8c:c8:82:14:d4:
d3:7a:41:7c:bb:03:26:bc:7a:d2:57:cb:75:43:dd:58:b4:72:
9e:3d:c4:b4:71:35:1a:2d:3a:0c:8b:83:90:48:5b:29:ca:3e:
0d:b5:f3:10:1f:5f:63:c9:1d:5f:9d:8e:9f:5b:f8:09:03:af:
5c:d6:e3:44:75:a3:79:cf:60:e0:b8:30:ba:84:57:9e:22:47:
8a:9b:3a:08:00:fd:11:f7:26:dd:33:e5:cc:06:00:43:d5:33:
17:70:96:4b:73:5e:d6:6c:d8:81:13:dd:7f:f6:22:37:fc:aa:
ec:a6:e9:97:11:52:5e:8c:44:40:a7:df:f2:40:58:6e:3d:4c:
01:12:bb:41:23:bd:24:e8:8e:a9:07:05:17:44:12:40:e4:c6:
79:22:85:46:cd:ca:f4:06:ee:53:30:b7:62:ff:27:bc:12:fd:
76:2a:d7:e8:20:e6:2d:98:a7:5e:ae:fb:9c:ab:2c:fe:c8:fd:
7f:a5:47:d1
-----BEGIN CERTIFICATE-----
MIIFgDCCBGigAwIBAgIDAPJXMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQVIxMTAvBgNVBAUTKDc5N0Q4OEQ4MTNFMjBGRkY5ODJDQzc0MTlFOTY5
QkFFQTZCRkQ2OUIwHhcNMjQxMjMwMTU1MzA5WhcNMjUwMjA0MTU1MzA5WjAYMRYw
FAYDVQQDEw02NzcyYzFlOS03MTc3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAxpc2MCp7d8yyqGuGTzAHHVFOUkiEXx0cvsAcobl8+Hpcn3jUeJI1N32Q
cuYaLDkl3qJetI4C9mKcdttWej1Gef8pS65/6ZmolvKblzJc73qxlgfktB6cpXj0
RI0oBWGHymwWzkzk57f3T5R9YEmu5nDbuWORcmB+cNcOnrz0AWqQLFupaeLgGE5O
CDlHu3q+MaRAbEYx2AiPqtnLDKsg9G7Nidah+1GYj38E9OtWchN9+iFJblhbjSqU
4Um/GEi90EcCl/sMTPA0aBoUf51rrXVm6MCaWePdqPq9Orh+I2MOz+a1T9qSdzX8
YdKN/Bpyb4t37Si2qSgF8sVZZ5kBKwIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFMIn
iihT6xRqrQKGV1f71ylLy+5UMB8GA1UdIwQYMBaAFHl9iNgT4g//mCzHQZ6Wm66m
v9abMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFFQTIyOC9lWDJJ
MkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY3JsMGQGCCsGAQUFBwEBBFgwVjBUBggr
BgEFBQcwAoZIcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYXJp
bi9lWDJJMkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY2VyME8GA1UdIAEB/wRFMEMw
QQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmluaWMu
bmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYBBQUH
MAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJf
cmVwb3NpdG9yeS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFF
QTIyOC8yQ0U3OTE1NEM2QzYxMUVGQjQwRjRCOEY3NjJFOTUxQS5yb2EwNQYIKwYB
BQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1s
MB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAFAwMAnOowDQYJKoZIhvcNAQELBQAD
ggEBAGGoLQ+3A6OA0nUK/h3kQQqKLkZVFWMTz8BVq7HS1SUWFEQyBU6jCZCBhoU+
dAKNF95BlyAk1d2yoO1HLgjDDGxVJ4iMyIIU1NN6QXy7Aya8etJXy3VD3Vi0cp49
xLRxNRotOgyLg5BIWynKPg218xAfX2PJHV+djp9b+AkDr1zW40R1o3nPYOC4MLqE
V54iR4qbOggA/RH3Jt0z5cwGAEPVMxdwlktzXtZs2IET3X/2Ijf8quym6ZcRUl6M
RECn3/JAWG49TAESu0EjvSTojqkHBRdEEkDkxnkihUbNyvQG7lMwt2L/J7wS/XYq
1+gg5i2Yp16u+5yrLP7I/X+lR9E=
-----END CERTIFICATE-----
Generated at Wed Feb 5 09:44:41 2025 by rpki-client