Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/600B6C4ECCDA11EFB2BB4BBC762E951A.roa
File: 600B6C4ECCDA11EFB2BB4BBC762E951A.roa (raw, json)
Hash identifier: X4lUxQSnGCbQxR+epbuR8TciBvDOn/gpE3GaFK0zdeM=
Subject key identifier: 59:4C:21:C2:CB:9A:E1:72:C2:4D:45:21:DA:0B:03:EB:F9:9D:53:2B
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: FB4A
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/600B6C4ECCDA11EFB2BB4BBC762E951A.roa
Signing time: Tue 07 Jan 2025 09:32:56 +0000
ROA not before: Tue 07 Jan 2025 09:32:52 +0000
ROA not after: Sat 18 Jan 2025 09:32:52 +0000
asID: 137547
IP address blocks: 156.245.200.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 64330 (0xfb4a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Jan 7 09:32:52 2025 GMT
Not After : Jan 18 09:32:52 2025 GMT
Subject: CN=677cf4c8-e2b6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:4a:25:35:1f:a8:c7:a4:4c:16:dc:72:04:9c:
ba:72:6c:aa:5d:af:83:57:35:05:00:cd:a5:29:d7:
e4:d8:31:e3:e4:17:e0:e2:71:47:6f:42:90:52:dc:
51:4f:47:c6:01:e2:8a:89:b9:4a:5b:2f:82:ca:8d:
17:37:1d:86:f7:0d:91:7c:44:90:e0:f1:47:84:e2:
e5:c6:d8:b6:cd:e6:6a:93:78:85:a1:32:c2:1d:b0:
d8:7f:e1:3c:a1:23:0a:17:56:74:98:f0:09:dd:e1:
a7:f6:6d:b2:ce:76:b4:45:d5:33:a5:67:5d:38:7d:
a2:85:47:28:93:ac:10:4f:c7:9c:b7:bb:f3:52:91:
0b:ad:11:ec:88:0a:5f:63:8f:b1:08:7d:9f:3d:94:
60:4e:cc:58:fd:33:0f:3c:38:71:4c:2c:f2:9e:00:
7b:c3:97:2b:fd:33:ff:02:13:6f:36:86:ff:c0:7b:
41:49:86:f5:17:27:02:7d:03:bc:1b:de:a1:55:24:
20:bd:45:84:a8:fa:28:5f:9b:e1:ef:75:a2:33:7d:
b8:57:02:9f:98:7f:16:28:d2:03:8b:30:3f:86:c1:
8f:36:c0:c1:3a:d3:d3:20:55:96:2d:ec:1a:de:df:
11:82:ad:60:2d:1c:8b:c8:ff:51:ea:4b:8b:04:2e:
45:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:4C:21:C2:CB:9A:E1:72:C2:4D:45:21:DA:0B:03:EB:F9:9D:53:2B
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/600B6C4ECCDA11EFB2BB4BBC762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.245.200.0/22
Signature Algorithm: sha256WithRSAEncryption
a8:20:83:f5:eb:d3:13:fc:88:56:e9:dc:83:84:21:2f:b5:43:
2d:00:a3:93:bf:73:2f:72:92:07:23:41:3a:2d:91:bc:6c:05:
48:c0:2d:a1:c4:89:9c:ae:7f:b5:5b:db:47:29:2c:ff:9a:f0:
94:9c:a0:d2:5a:32:5b:a6:9c:36:8e:38:fd:d6:31:8d:98:07:
39:13:9d:56:0c:10:d4:0b:b5:b8:ea:57:47:25:4b:b3:7b:0a:
28:3e:59:53:5e:8a:a9:c9:14:1c:ee:bd:f7:27:7c:bd:8f:ff:
9e:9a:3f:0c:0a:69:25:38:ec:73:ed:a6:b9:0c:e5:6c:4e:ff:
29:5c:ca:7d:29:25:9d:dc:1c:57:06:bc:21:c4:26:3d:0d:17:
77:30:7c:3e:5f:55:8a:ee:fa:fb:a3:1f:e9:6c:c9:c3:b8:f7:
e6:28:03:70:b7:38:9c:c3:5c:59:9f:b1:6f:ca:46:aa:06:f4:
21:a8:ac:3e:04:2b:47:db:24:64:42:62:96:e5:d8:fe:b4:ee:
3f:31:5a:1a:99:56:93:50:60:80:14:43:f5:ba:24:bc:9d:de:
91:0e:e0:f1:51:e7:70:2d:ae:25:44:88:7e:50:74:2d:c1:bd:
1e:10:e3:f4:15:96:53:18:9f:8f:0b:68:22:41:d5:01:61:3c:
ce:1d:03:fc
-----BEGIN CERTIFICATE-----
MIIFgTCCBGmgAwIBAgIDAPtKMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQVIxMTAvBgNVBAUTKDc5N0Q4OEQ4MTNFMjBGRkY5ODJDQzc0MTlFOTY5
QkFFQTZCRkQ2OUIwHhcNMjUwMTA3MDkzMjUyWhcNMjUwMTE4MDkzMjUyWjAYMRYw
FAYDVQQDEw02NzdjZjRjOC1lMmI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEA1EolNR+ox6RMFtxyBJy6cmyqXa+DVzUFAM2lKdfk2DHj5Bfg4nFHb0KQ
UtxRT0fGAeKKiblKWy+Cyo0XNx2G9w2RfESQ4PFHhOLlxti2zeZqk3iFoTLCHbDY
f+E8oSMKF1Z0mPAJ3eGn9m2yzna0RdUzpWddOH2ihUcok6wQT8ect7vzUpELrRHs
iApfY4+xCH2fPZRgTsxY/TMPPDhxTCzyngB7w5cr/TP/AhNvNob/wHtBSYb1FycC
fQO8G96hVSQgvUWEqPooX5vh73WiM324VwKfmH8WKNIDizA/hsGPNsDBOtPTIFWW
Lewa3t8Rgq1gLRyLyP9R6kuLBC5FRQIDAQABo4ICojCCAp4wHQYDVR0OBBYEFFlM
IcLLmuFywk1FIdoLA+v5nVMrMB8GA1UdIwQYMBaAFHl9iNgT4g//mCzHQZ6Wm66m
v9abMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFFQTIyOC9lWDJJ
MkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY3JsMGQGCCsGAQUFBwEBBFgwVjBUBggr
BgEFBQcwAoZIcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYXJp
bi9lWDJJMkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY2VyME8GA1UdIAEB/wRFMEMw
QQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmluaWMu
bmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYBBQUH
MAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJf
cmVwb3NpdG9yeS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFF
QTIyOC82MDBCNkM0RUNDREExMUVGQjJCQjRCQkM3NjJFOTUxQS5yb2EwNQYIKwYB
BQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1s
MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCnPXIMA0GCSqGSIb3DQEBCwUA
A4IBAQCoIIP169MT/IhW6dyDhCEvtUMtAKOTv3MvcpIHI0E6LZG8bAVIwC2hxImc
rn+1W9tHKSz/mvCUnKDSWjJbppw2jjj91jGNmAc5E51WDBDUC7W46ldHJUuzewoo
PllTXoqpyRQc7r33J3y9j/+emj8MCmklOOxz7aa5DOVsTv8pXMp9KSWd3BxXBrwh
xCY9DRd3MHw+X1WK7vr7ox/pbMnDuPfmKANwtzicw1xZn7FvykaqBvQhqKw+BCtH
2yRkQmKW5dj+tO4/MVoamVaTUGCAFEP1uiS8nd6RDuDxUedwLa4lRIh+UHQtwb0e
EOP0FZZTGJ+PC2giQdUBYTzOHQP8
-----END CERTIFICATE-----
Generated at Wed Feb 5 09:48:55 2025 by rpki-client