Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/4C5BD0C0440F11EF947F149C762E951A.roa
File: 4C5BD0C0440F11EF947F149C762E951A.roa (raw, json)
Hash identifier: /9GGJrgSpGuF4CaTUiNsfdrG3I+JK/ypDsssRs55bTM=
Subject key identifier: 7C:BE:B2:3E:BE:F3:98:5D:31:7D:03:1A:38:D7:95:B0:F6:C5:40:C0
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 9CEA
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/4C5BD0C0440F11EF947F149C762E951A.roa
Signing time: Wed 17 Jul 2024 07:36:37 +0000
ROA not before: Wed 17 Jul 2024 07:36:33 +0000
ROA not after: Sat 27 Jul 2024 07:36:33 +0000
asID: 22773
IP address blocks: 156.249.4.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 40170 (0x9cea)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jul 17 07:36:33 2024 GMT
Not After : Jul 27 07:36:33 2024 GMT
Subject: CN=66977485-2b63
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:dd:31:92:b7:9d:b3:60:88:72:f6:b3:46:d5:
83:dc:c5:31:9d:8e:42:3c:e0:ed:64:cc:c2:fd:ed:
f1:fd:f9:13:b9:98:cf:32:09:a2:7e:b3:a1:3a:79:
4b:95:24:40:01:58:7c:af:8d:a7:47:42:b8:a8:71:
de:3d:a1:08:8b:4c:0b:a4:92:e3:64:65:55:a3:bf:
5f:e0:3f:f0:19:88:5a:ed:89:9a:7c:bd:fa:40:67:
32:9f:15:44:75:4f:0d:94:fd:43:87:a5:da:8d:43:
6b:fa:da:21:e4:3e:87:88:f0:82:6c:46:32:57:cd:
91:0d:74:5e:62:22:ba:82:58:7c:d5:24:1c:df:0f:
6e:63:0a:06:b0:df:01:05:a9:38:4c:c8:13:04:0d:
f2:54:f3:c0:44:92:e6:36:a5:68:4a:cc:77:b3:96:
51:5c:9e:c5:92:1c:08:39:8f:70:66:7e:bb:57:7f:
83:35:0b:18:50:5b:5a:fe:ec:65:61:96:2a:0b:c9:
66:6b:ca:a5:17:92:09:86:95:b1:f3:04:83:ec:9d:
b9:a2:b3:b3:3c:77:38:11:c7:65:40:a5:01:c5:a8:
b2:49:66:f4:70:10:10:63:55:63:db:c2:3b:bc:7c:
67:52:ed:8a:65:0f:54:21:e1:37:82:d4:c4:08:79:
13:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:BE:B2:3E:BE:F3:98:5D:31:7D:03:1A:38:D7:95:B0:F6:C5:40:C0
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/4C5BD0C0440F11EF947F149C762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.249.4.0/22
Signature Algorithm: sha256WithRSAEncryption
63:1a:e7:b5:c9:f9:ad:2a:35:d0:54:a8:30:d4:9b:e2:90:c2:
87:56:d4:f1:25:97:82:ab:1e:2a:38:50:43:34:e3:d5:0d:3a:
2b:d3:20:53:5d:88:45:54:49:cc:15:79:2e:c7:13:55:5c:98:
55:38:03:04:9f:72:fd:b1:b2:1b:06:a5:16:a4:25:cd:d4:04:
78:22:98:a0:13:b2:f6:ff:b0:d1:f6:0a:26:a6:9f:a1:45:01:
7c:1f:2d:82:76:c2:e7:00:c0:b8:60:bf:75:72:e2:00:82:ad:
16:70:d3:75:82:37:21:bf:60:51:ec:cf:13:68:5f:dc:84:57:
89:c5:e7:ee:bf:d9:fd:c4:1e:9c:b7:a3:76:e5:3a:2b:c7:21:
23:7d:90:80:9d:8e:f3:8a:24:fe:f3:09:65:c1:ab:a5:bc:cc:
f4:83:8e:fa:b6:0e:ab:17:80:3b:85:ca:94:43:c6:0f:1a:a3:
b7:1e:12:09:d4:67:0f:3f:9b:24:e9:ac:1d:02:b2:f5:a6:d7:
58:c3:2d:5d:5a:17:f4:c8:0e:84:81:55:f2:ae:7e:53:e6:4e:
9c:5e:44:e0:5b:59:34:49:b1:ad:56:ab:09:06:7e:94:45:07:
7c:d1:c2:26:fb:2f:f1:a9:f8:c8:80:9d:13:2c:a5:1a:84:e5:
0e:0d:83:6f
-----BEGIN CERTIFICATE-----
MIIFgTCCBGmgAwIBAgIDAJzqMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQVIxMTAvBgNVBAUTKDc5N0Q4OEQ4MTNFMjBGRkY5ODJDQzc0MTlFOTY5
QkFFQTZCRkQ2OUIwHhcNMjQwNzE3MDczNjMzWhcNMjQwNzI3MDczNjMzWjAYMRYw
FAYDVQQDEw02Njk3NzQ4NS0yYjYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAwt0xkreds2CIcvazRtWD3MUxnY5CPODtZMzC/e3x/fkTuZjPMgmifrOh
OnlLlSRAAVh8r42nR0K4qHHePaEIi0wLpJLjZGVVo79f4D/wGYha7YmafL36QGcy
nxVEdU8NlP1Dh6XajUNr+toh5D6HiPCCbEYyV82RDXReYiK6glh81SQc3w9uYwoG
sN8BBak4TMgTBA3yVPPARJLmNqVoSsx3s5ZRXJ7FkhwIOY9wZn67V3+DNQsYUFta
/uxlYZYqC8lma8qlF5IJhpWx8wSD7J25orOzPHc4EcdlQKUBxaiySWb0cBAQY1Vj
28I7vHxnUu2KZQ9UIeE3gtTECHkTwQIDAQABo4ICojCCAp4wHQYDVR0OBBYEFHy+
sj6+85hdMX0DGjjXlbD2xUDAMB8GA1UdIwQYMBaAFHl9iNgT4g//mCzHQZ6Wm66m
v9abMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFFQTIyOC9lWDJJ
MkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY3JsMGQGCCsGAQUFBwEBBFgwVjBUBggr
BgEFBQcwAoZIcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYXJp
bi9lWDJJMkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY2VyME8GA1UdIAEB/wRFMEMw
QQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmluaWMu
bmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYBBQUH
MAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJf
cmVwb3NpdG9yeS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFF
QTIyOC80QzVCRDBDMDQ0MEYxMUVGOTQ3RjE0OUM3NjJFOTUxQS5yb2EwNQYIKwYB
BQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1s
MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCnPkEMA0GCSqGSIb3DQEBCwUA
A4IBAQBjGue1yfmtKjXQVKgw1JvikMKHVtTxJZeCqx4qOFBDNOPVDTor0yBTXYhF
VEnMFXkuxxNVXJhVOAMEn3L9sbIbBqUWpCXN1AR4IpigE7L2/7DR9gompp+hRQF8
Hy2CdsLnAMC4YL91cuIAgq0WcNN1gjchv2BR7M8TaF/chFeJxefuv9n9xB6ct6N2
5TorxyEjfZCAnY7ziiT+8wllwaulvMz0g476tg6rF4A7hcqUQ8YPGqO3HhIJ1GcP
P5sk6awdArL1ptdYwy1dWhf0yA6EgVXyrn5T5k6cXkTgW1k0SbGtVqsJBn6URQd8
0cIm+y/xqfjIgJ0TLKUahOUODYNv
-----END CERTIFICATE-----
Generated at Sun Jul 28 03:03:26 2024 by rpki-client on console-ams.rpki-client.org