Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/72E9206E4A5C11EF98BFE475762E951A.roa
File: 72E9206E4A5C11EF98BFE475762E951A.roa (raw, json)
Hash identifier: TNxu9XJJBr0OAZk2FyjMpESvDcQqyuWmGumoyjxAJwY=
Subject key identifier: 12:9D:AF:AF:9A:F3:35:4B:48:C5:4A:AC:A1:57:8B:76:8C:C5:5B:BB
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 9FCD
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/72E9206E4A5C11EF98BFE475762E951A.roa
Signing time: Thu 25 Jul 2024 08:04:00 +0000
ROA not before: Thu 25 Jul 2024 08:03:56 +0000
ROA not after: Sat 03 Aug 2024 08:03:56 +0000
asID: 22773
IP address blocks: 156.233.16.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 40909 (0x9fcd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jul 25 08:03:56 2024 GMT
Not After : Aug 3 08:03:56 2024 GMT
Subject: CN=66a206f0-baff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:eb:28:9a:a8:f9:6f:ae:3c:59:4d:69:70:df:
5d:a8:cd:83:00:65:31:93:d6:37:8b:73:7e:76:e8:
78:ca:e7:3b:06:ad:83:cd:ea:61:7d:62:a6:3c:1b:
07:88:14:9b:c2:03:c4:5a:86:2d:32:58:b5:84:75:
20:97:91:92:ec:3e:6e:8b:d4:95:3a:16:69:ea:7c:
53:1c:9a:70:0a:36:5c:a2:61:b9:24:81:c1:09:23:
fc:67:51:ec:eb:9a:53:ca:d2:74:74:9a:87:87:96:
c7:0b:52:9b:59:88:1c:2f:5d:87:8a:2d:db:a3:4f:
8a:dd:5f:44:17:61:28:e5:bd:1c:6d:e7:92:8a:9a:
79:c3:bc:e8:ef:8e:38:95:ec:dc:77:94:20:a6:0c:
76:68:d5:da:60:08:7e:31:47:f0:24:4a:ab:ca:a4:
3e:08:fb:53:70:d7:e6:b4:b0:63:98:a3:f2:e0:f2:
cb:73:c2:07:30:7d:18:c5:c0:38:1d:61:95:d2:b6:
1f:0b:7b:20:84:ce:98:1e:65:df:1c:73:f6:4e:9e:
f9:43:43:ce:bd:4c:7b:22:6d:2f:f0:ec:96:2a:6e:
76:72:52:d7:99:68:02:52:42:72:88:04:db:d2:d8:
12:d4:f9:64:db:b7:d2:c5:a4:15:3f:e0:2a:16:a9:
c1:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:9D:AF:AF:9A:F3:35:4B:48:C5:4A:AC:A1:57:8B:76:8C:C5:5B:BB
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/72E9206E4A5C11EF98BFE475762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.233.16.0/22
Signature Algorithm: sha256WithRSAEncryption
92:e2:f5:cd:e3:13:2e:46:66:2a:1d:05:79:0d:9a:dd:54:a0:
3a:d8:34:db:f3:bc:20:fd:14:b4:5f:11:19:f9:4e:97:db:d4:
b9:d9:e7:95:b9:66:87:a7:41:f2:0b:26:f4:a1:27:3d:43:03:
11:64:34:4f:90:53:bd:bb:f3:f6:7b:ec:a7:ee:c2:b8:28:15:
a7:aa:d9:77:d7:c0:c5:02:72:1c:fb:92:f1:a9:2e:65:61:a0:
e4:ec:a3:0b:ea:12:f0:a4:89:1c:82:c0:d4:8e:02:3e:1d:be:
94:6d:4a:ce:7d:2b:2f:ca:c7:59:e9:02:b0:b5:78:11:a9:c3:
4c:2f:41:a3:ab:26:05:88:8c:44:81:b2:df:e5:ec:54:b4:d1:
52:3d:f3:16:5b:33:a8:e3:77:2b:f8:26:78:3e:6e:84:78:98:
9d:73:8b:70:57:49:c5:d3:cb:3a:47:3a:27:91:8e:fc:c8:3b:
da:e6:36:a8:06:d2:d2:f6:31:53:cf:19:c9:f3:01:e3:a1:27:
8c:83:6f:07:6a:60:c5:f4:1c:01:b6:7a:2f:c6:73:73:65:1b:
08:eb:9a:fe:8b:0f:7c:f6:96:cf:90:d3:66:90:ea:79:6d:96:
57:3f:74:42:d8:c2:ad:ed:41:ec:f6:53:56:f5:e1:4e:49:87:
21:b7:e7:f7
-----BEGIN CERTIFICATE-----
MIIFgTCCBGmgAwIBAgIDAJ/NMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQVIxMTAvBgNVBAUTKDc5N0Q4OEQ4MTNFMjBGRkY5ODJDQzc0MTlFOTY5
QkFFQTZCRkQ2OUIwHhcNMjQwNzI1MDgwMzU2WhcNMjQwODAzMDgwMzU2WjAYMRYw
FAYDVQQDEw02NmEyMDZmMC1iYWZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAqesomqj5b648WU1pcN9dqM2DAGUxk9Y3i3N+duh4yuc7Bq2DzephfWKm
PBsHiBSbwgPEWoYtMli1hHUgl5GS7D5ui9SVOhZp6nxTHJpwCjZcomG5JIHBCSP8
Z1Hs65pTytJ0dJqHh5bHC1KbWYgcL12Hii3bo0+K3V9EF2Eo5b0cbeeSipp5w7zo
7444lezcd5Qgpgx2aNXaYAh+MUfwJEqryqQ+CPtTcNfmtLBjmKPy4PLLc8IHMH0Y
xcA4HWGV0rYfC3sghM6YHmXfHHP2Tp75Q0POvUx7Im0v8OyWKm52clLXmWgCUkJy
iATb0tgS1Plk27fSxaQVP+AqFqnBPQIDAQABo4ICojCCAp4wHQYDVR0OBBYEFBKd
r6+a8zVLSMVKrKFXi3aMxVu7MB8GA1UdIwQYMBaAFHl9iNgT4g//mCzHQZ6Wm66m
v9abMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFFQTIyOC9lWDJJ
MkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY3JsMGQGCCsGAQUFBwEBBFgwVjBUBggr
BgEFBQcwAoZIcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYXJp
bi9lWDJJMkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY2VyME8GA1UdIAEB/wRFMEMw
QQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmluaWMu
bmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYBBQUH
MAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJf
cmVwb3NpdG9yeS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFF
QTIyOC83MkU5MjA2RTRBNUMxMUVGOThCRkU0NzU3NjJFOTUxQS5yb2EwNQYIKwYB
BQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1s
MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCnOkQMA0GCSqGSIb3DQEBCwUA
A4IBAQCS4vXN4xMuRmYqHQV5DZrdVKA62DTb87wg/RS0XxEZ+U6X29S52eeVuWaH
p0HyCyb0oSc9QwMRZDRPkFO9u/P2e+yn7sK4KBWnqtl318DFAnIc+5LxqS5lYaDk
7KML6hLwpIkcgsDUjgI+Hb6UbUrOfSsvysdZ6QKwtXgRqcNML0GjqyYFiIxEgbLf
5exUtNFSPfMWWzOo43cr+CZ4Pm6EeJidc4twV0nF08s6RzonkY78yDva5jaoBtLS
9jFTzxnJ8wHjoSeMg28HamDF9BwBtnovxnNzZRsI65r+iw989pbPkNNmkOp5bZZX
P3RC2MKt7UHs9lNW9eFOSYcht+f3
-----END CERTIFICATE-----
Generated at Sun Aug 4 03:57:24 2024 by rpki-client on console-fra.rpki-client.org