Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/4DDA018684F911EEA041DA5B4AD9E6FC.roa
File: 4DDA018684F911EEA041DA5B4AD9E6FC.roa (raw, json)
Hash identifier: bMwzIHyuhlOfDDsPNck0s5H/KIYspkKzsvd+CpsmtaI=
Subject key identifier: 7B:CD:08:1E:57:B7:C1:31:25:1B:E5:3C:CC:F3:98:DF:4A:BF:0D:7D
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 4973
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/4DDA018684F911EEA041DA5B4AD9E6FC.roa
Signing time: Fri 17 Nov 2023 03:27:58 +0000
ROA not before: Fri 17 Nov 2023 03:27:55 +0000
ROA not after: Tue 12 Nov 2024 03:27:55 +0000
asID: 64267
IP address blocks: 156.227.8.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 18803 (0x4973)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Nov 17 03:27:55 2023 GMT
Not After : Nov 12 03:27:55 2024 GMT
Subject: CN=6556ddbe-9730
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:5a:2b:da:52:bc:32:91:60:c9:bc:51:6f:f7:
6c:60:a6:8b:43:b6:0c:03:ac:e7:74:eb:4f:f7:88:
c2:b9:dd:49:38:c8:7a:f0:7d:d3:e1:a2:94:08:94:
46:a7:49:a7:6a:bb:ea:b0:59:86:7e:10:f6:7a:95:
f6:2d:7f:d1:26:f4:c0:a4:64:9f:dc:a6:b8:1a:8c:
f6:cc:8e:56:8a:d3:b1:79:6a:5f:b6:30:5d:8c:d8:
d3:ab:c1:4c:4e:50:9a:77:60:9a:16:4d:ea:30:be:
06:67:8c:b8:85:9e:b1:d4:fe:d9:5e:3d:62:6c:9d:
66:a4:fb:9c:4b:cb:3b:f8:1d:a3:99:11:d3:8f:bb:
5d:3a:32:90:c1:67:46:3a:e5:ca:ec:01:1b:08:dc:
18:56:6f:c0:31:89:84:51:63:10:c3:7b:ff:49:db:
56:e4:95:15:73:16:33:78:0c:bd:b7:53:ec:91:0b:
86:d3:c8:74:2b:97:01:58:7b:dd:a8:ab:23:3c:21:
ec:d2:fe:66:e2:3f:e7:95:1f:96:b4:79:63:14:79:
61:1d:cc:52:98:3d:b4:2a:7e:c0:b9:6f:e2:01:4a:
e0:46:0a:8b:ce:a0:07:30:f3:f7:14:c8:c0:e7:46:
0f:22:b3:41:79:b1:59:49:32:35:40:85:aa:49:8b:
6b:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:CD:08:1E:57:B7:C1:31:25:1B:E5:3C:CC:F3:98:DF:4A:BF:0D:7D
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/4DDA018684F911EEA041DA5B4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.227.8.0/24
Signature Algorithm: sha256WithRSAEncryption
04:da:b5:b1:63:3a:fa:1c:f9:4f:e8:5b:b3:34:f1:27:d8:f4:
bf:df:c8:b1:bb:70:69:5b:19:8b:4d:0f:d4:60:0a:87:37:5d:
88:7c:8a:96:68:8d:39:f7:1a:94:8e:f2:e2:5e:19:98:8f:b6:
f5:a1:79:ee:a9:a2:de:d5:9a:a1:64:59:0c:52:3e:bb:97:7d:
b8:30:4c:46:e4:21:3f:8a:49:64:7a:f4:2d:d4:33:98:7a:79:
75:a7:ea:ee:75:3b:56:7e:06:bb:54:86:78:3a:04:2c:d2:c0:
e6:25:fd:c3:b5:e2:4f:4e:9c:0b:1f:1d:4c:74:65:fe:b9:38:
a7:65:1d:c4:4f:94:1d:19:24:22:fb:52:e8:ee:30:4e:6e:c3:
7c:a3:b6:5f:fa:d3:5c:07:9f:e1:01:47:0a:e1:fe:5c:6f:d9:
da:9c:5e:e6:a6:20:5f:3c:96:6e:28:cc:3e:15:e7:3b:2d:86:
0a:b6:d0:64:f4:c8:28:2f:ff:25:31:7c:3f:85:d7:9d:57:c2:
6d:da:28:c9:66:d4:65:5b:a4:c6:25:65:40:a8:0e:3a:86:0d:
ac:b2:b0:42:68:17:a8:74:6e:7d:32:30:af:8f:36:3f:f7:36:
74:eb:41:44:b4:f0:56:d4:40:bb:49:2d:2d:1b:2c:62:de:d3:
2c:63:73:b7
-----BEGIN CERTIFICATE-----
MIIFgDCCBGigAwIBAgICSXMwDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAwwKRjM2
OEYyRDBBUjExMC8GA1UEBRMoNzk3RDg4RDgxM0UyMEZGRjk4MkNDNzQxOUU5NjlC
QUVBNkJGRDY5QjAeFw0yMzExMTcwMzI3NTVaFw0yNDExMTIwMzI3NTVaMBgxFjAU
BgNVBAMTDTY1NTZkZGJlLTk3MzAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQDiWivaUrwykWDJvFFv92xgpotDtgwDrOd060/3iMK53Uk4yHrwfdPhopQI
lEanSadqu+qwWYZ+EPZ6lfYtf9Em9MCkZJ/cprgajPbMjlaK07F5al+2MF2M2NOr
wUxOUJp3YJoWTeowvgZnjLiFnrHU/tlePWJsnWak+5xLyzv4HaOZEdOPu106MpDB
Z0Y65crsARsI3BhWb8AxiYRRYxDDe/9J21bklRVzFjN4DL23U+yRC4bTyHQrlwFY
e92oqyM8IezS/mbiP+eVH5a0eWMUeWEdzFKYPbQqfsC5b+IBSuBGCovOoAcw8/cU
yMDnRg8is0F5sVlJMjVAhapJi2sfAgMBAAGjggKiMIICnjAdBgNVHQ4EFgQUe80I
Hle3wTElG+U8zPOY30q/DX0wHwYDVR0jBBgwFoAUeX2I2BPiD/+YLMdBnpabrqa/
1pswDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjhGMkQwLzkyRjg2RTFDNkUwNTExRThBMUI1ODU0QkY4QUVBMjI4L2VYMkky
QlBpRF8tWUxNZEJucGFicnFhXzFwcy5jcmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hcmlu
L2VYMkkyQlBpRF8tWUxNZEJucGFicnFhXzFwcy5jZXIwTwYDVR0gAQH/BEUwQzBB
BggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5pYy5u
ZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEFBQcw
C4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9y
ZXBvc2l0b3J5L0YzNjhGMkQwLzkyRjg2RTFDNkUwNTExRThBMUI1ODU0QkY4QUVB
MjI4LzREREEwMTg2ODRGOTExRUVBMDQxREE1QjRBRDlFNkZDLnJvYTA1BggrBgEF
BQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54bWww
HwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBACc4wgwDQYJKoZIhvcNAQELBQAD
ggEBAATatbFjOvoc+U/oW7M08SfY9L/fyLG7cGlbGYtND9RgCoc3XYh8ipZojTn3
GpSO8uJeGZiPtvWhee6pot7VmqFkWQxSPruXfbgwTEbkIT+KSWR69C3UM5h6eXWn
6u51O1Z+BrtUhng6BCzSwOYl/cO14k9OnAsfHUx0Zf65OKdlHcRPlB0ZJCL7Uuju
ME5uw3yjtl/601wHn+EBRwrh/lxv2dqcXuamIF88lm4ozD4V5zsthgq20GT0yCgv
/yUxfD+F151Xwm3aKMlm1GVbpMYlZUCoDjqGDayysEJoF6h0bn0yMK+PNj/3NnTr
QUS08FbUQLtJLS0bLGLe0yxjc7c=
-----END CERTIFICATE-----
Generated at Sun May 11 15:12:57 2025 by rpki-client