Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/5B3D47E6B92511EFA1BD637B762E951A.roa
File: 5B3D47E6B92511EFA1BD637B762E951A.roa (raw, json)
Hash identifier: agPd/kWAGTRB+OMJdkFxYluRHbEVM7NnUHlQKYE4hrw=
Subject key identifier: 3C:29:CA:59:3B:55:56:5E:92:19:16:A6:F3:51:D4:F8:BB:CA:AF:0F
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: E2FF
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/5B3D47E6B92511EFA1BD637B762E951A.roa
Signing time: Fri 13 Dec 2024 07:39:17 +0000
ROA not before: Fri 13 Dec 2024 07:39:13 +0000
ROA not after: Sat 25 Jan 2025 07:39:13 +0000
asID: 44559
IP address blocks: 156.246.166.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 58111 (0xe2ff)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Dec 13 07:39:13 2024 GMT
Not After : Jan 25 07:39:13 2025 GMT
Subject: CN=675be4a5-770f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:f8:66:94:ee:cc:19:51:56:b6:b2:2f:d0:a9:
8d:43:2a:47:37:93:af:b5:08:b4:21:3a:92:01:fd:
be:bf:e7:ba:ce:44:4c:bf:d3:d9:4a:44:82:7e:80:
b1:03:2e:3c:c0:3d:cc:41:0e:97:83:ad:7d:52:81:
77:ba:3e:06:03:56:b1:0f:aa:a1:86:c0:c0:cb:e5:
88:84:9b:ad:c4:c8:91:1f:0b:d3:c8:7c:84:38:47:
2f:36:9d:ed:4a:5a:4f:b0:cb:15:4a:ca:3e:92:43:
c3:41:6b:4e:38:33:06:df:6f:39:95:98:10:01:bc:
30:cf:fa:9c:c9:67:93:fd:4d:b7:cb:a1:60:aa:0f:
88:93:7c:f1:97:6e:ea:02:ed:67:a8:74:c5:45:3d:
e7:f2:43:fe:ed:d2:bb:71:96:5d:28:26:ea:6b:aa:
96:c7:7f:12:7a:c1:ab:5e:66:bf:55:39:01:d2:98:
75:ef:b5:26:7c:af:24:c3:45:37:e8:c7:8d:cb:93:
90:70:9b:00:b5:17:cb:f5:ed:a7:15:03:2b:79:c3:
3b:de:4e:ee:93:10:ec:b7:b5:9e:b9:db:41:d8:12:
94:8d:da:ac:5c:9b:a6:46:a8:74:c4:a0:ed:9f:6b:
9a:96:e4:fc:9f:74:c5:43:c0:7d:8f:51:97:9f:12:
e8:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:29:CA:59:3B:55:56:5E:92:19:16:A6:F3:51:D4:F8:BB:CA:AF:0F
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/5B3D47E6B92511EFA1BD637B762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.246.166.0/23
Signature Algorithm: sha256WithRSAEncryption
6d:38:72:cc:22:b6:8a:0d:38:5e:ed:5e:ff:b2:b8:f2:d6:db:
fa:1e:34:23:00:ce:c5:5f:e3:5a:37:6b:4f:4e:68:09:66:39:
ef:dc:2f:5b:6d:55:ad:3e:bc:77:17:b1:17:0f:8d:b9:77:eb:
4a:8c:d7:ed:59:0d:94:41:b9:1d:77:69:2d:ee:a3:3e:7d:18:
b3:06:03:0e:ea:e6:db:b0:ea:76:14:0f:66:98:7b:0f:36:a8:
1b:54:a3:ad:65:49:5c:67:b5:cb:ea:2c:a2:1b:20:17:e5:cb:
f4:44:03:7d:66:dc:21:db:60:1b:45:21:1f:5e:8c:b3:db:43:
1b:eb:9f:7f:5a:cc:49:34:fb:9a:c5:7a:0f:cf:6e:f1:05:17:
1f:c9:2e:b7:31:da:f7:e6:cb:cd:35:b7:39:4a:17:c7:53:22:
21:2e:f2:3e:b5:63:ae:ca:24:1e:f9:80:d6:94:c1:d1:3e:21:
e9:97:72:b0:2d:8f:d1:2d:30:5a:32:85:ae:bd:28:9e:ed:d2:
96:79:61:d5:8c:fa:79:1c:0d:97:e0:30:22:41:a4:18:be:f9:
38:82:aa:07:b5:36:3e:65:68:d6:6f:63:ba:46:31:f7:76:0b:
57:14:4c:15:66:0b:4b:db:d6:50:5c:16:4d:bb:d9:9e:42:86:
89:16:f0:4c
-----BEGIN CERTIFICATE-----
MIIFgTCCBGmgAwIBAgIDAOL/MA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQVIxMTAvBgNVBAUTKDc5N0Q4OEQ4MTNFMjBGRkY5ODJDQzc0MTlFOTY5
QkFFQTZCRkQ2OUIwHhcNMjQxMjEzMDczOTEzWhcNMjUwMTI1MDczOTEzWjAYMRYw
FAYDVQQDEw02NzViZTRhNS03NzBmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEA1/hmlO7MGVFWtrIv0KmNQypHN5OvtQi0ITqSAf2+v+e6zkRMv9PZSkSC
foCxAy48wD3MQQ6Xg619UoF3uj4GA1axD6qhhsDAy+WIhJutxMiRHwvTyHyEOEcv
Np3tSlpPsMsVSso+kkPDQWtOODMG3285lZgQAbwwz/qcyWeT/U23y6Fgqg+Ik3zx
l27qAu1nqHTFRT3n8kP+7dK7cZZdKCbqa6qWx38SesGrXma/VTkB0ph177UmfK8k
w0U36MeNy5OQcJsAtRfL9e2nFQMrecM73k7ukxDst7WeudtB2BKUjdqsXJumRqh0
xKDtn2ualuT8n3TFQ8B9j1GXnxLo/QIDAQABo4ICojCCAp4wHQYDVR0OBBYEFDwp
ylk7VVZekhkWpvNR1Pi7yq8PMB8GA1UdIwQYMBaAFHl9iNgT4g//mCzHQZ6Wm66m
v9abMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFFQTIyOC9lWDJJ
MkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY3JsMGQGCCsGAQUFBwEBBFgwVjBUBggr
BgEFBQcwAoZIcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYXJp
bi9lWDJJMkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY2VyME8GA1UdIAEB/wRFMEMw
QQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmluaWMu
bmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYBBQUH
MAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJf
cmVwb3NpdG9yeS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFF
QTIyOC81QjNENDdFNkI5MjUxMUVGQTFCRDYzN0I3NjJFOTUxQS5yb2EwNQYIKwYB
BQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1s
MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBnPamMA0GCSqGSIb3DQEBCwUA
A4IBAQBtOHLMIraKDThe7V7/srjy1tv6HjQjAM7FX+NaN2tPTmgJZjnv3C9bbVWt
Prx3F7EXD425d+tKjNftWQ2UQbkdd2kt7qM+fRizBgMO6ubbsOp2FA9mmHsPNqgb
VKOtZUlcZ7XL6iyiGyAX5cv0RAN9Ztwh22AbRSEfXoyz20Mb659/WsxJNPuaxXoP
z27xBRcfyS63Mdr35svNNbc5ShfHUyIhLvI+tWOuyiQe+YDWlMHRPiHpl3KwLY/R
LTBaMoWuvSie7dKWeWHVjPp5HA2X4DAiQaQYvvk4gqoHtTY+ZWjWb2O6RjH3dgtX
FEwVZgtL29ZQXBZNu9meQoaJFvBM
-----END CERTIFICATE-----
Generated at Wed Feb 5 10:00:15 2025 by rpki-client