Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/735ACAA2EDB411EE9AE8E796775412E6.roa
File: 735ACAA2EDB411EE9AE8E796775412E6.roa (raw, json)
Hash identifier: T+d1nD4RsCVTj+8ENTZ/TSNl8SYTlaR2yUBmyAG6VoQ=
Subject key identifier: A0:25:6F:4A:6D:DD:05:BB:9E:6C:5F:2E:EC:E9:DB:84:CE:09:A1:48
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 80F0
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/735ACAA2EDB411EE9AE8E796775412E6.roa
Signing time: Fri 29 Mar 2024 10:09:38 +0000
ROA not before: Fri 29 Mar 2024 10:09:35 +0000
ROA not after: Sat 04 May 2024 10:09:35 +0000
asID: 151796
IP address blocks: 156.248.53.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 33008 (0x80f0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Mar 29 10:09:35 2024 GMT
Not After : May 4 10:09:35 2024 GMT
Subject: CN=66069362-c58f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:57:2f:46:e0:15:2f:09:51:68:b9:da:fd:67:
74:45:e5:ce:5e:c6:91:ab:a7:3d:37:85:45:9a:59:
38:11:73:28:bc:18:42:71:2d:7d:4b:d4:7b:a3:4e:
31:c8:b9:4e:ed:97:86:39:81:c8:f7:75:dc:c5:d0:
6c:70:f1:9a:ce:ed:16:ca:a2:6b:44:ee:c8:db:3c:
e3:a7:18:f3:20:95:df:52:4d:c2:34:1a:61:09:f2:
0a:2c:9b:75:80:ce:da:d2:f3:ef:77:d7:8b:3f:9a:
5d:37:1c:64:9f:52:dd:20:65:0f:05:7d:9a:7e:cc:
81:ef:98:49:3e:e0:88:a3:9f:a7:16:90:9d:37:fd:
a4:ab:15:18:cf:ee:0b:bf:71:72:4b:00:e4:0c:8a:
29:d9:a4:fa:f8:c1:11:7d:fe:65:51:bc:19:a3:c8:
6d:91:6c:8f:ad:5f:e8:49:93:63:e3:a5:90:c8:87:
c6:71:ba:32:c8:bf:ad:17:b3:dc:b2:98:f1:7b:03:
f7:0b:0f:ba:89:12:d0:e6:5f:c1:94:fc:8b:6b:6c:
90:3d:3c:04:31:29:12:66:a6:ee:ff:d3:b6:70:21:
06:64:68:e0:dc:59:5b:86:58:13:3b:80:3c:47:e0:
2f:78:56:57:16:0d:e3:dd:ea:e1:55:84:5b:0f:3a:
53:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:25:6F:4A:6D:DD:05:BB:9E:6C:5F:2E:EC:E9:DB:84:CE:09:A1:48
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/735ACAA2EDB411EE9AE8E796775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.248.53.0/24
Signature Algorithm: sha256WithRSAEncryption
55:dc:0d:3a:2c:65:b1:c1:79:0a:d5:7a:55:43:82:f5:e8:45:
f1:32:7c:d8:99:2e:a7:91:82:ac:07:76:d2:4d:4a:46:ca:f9:
e6:9e:ca:78:94:54:22:bb:61:64:42:82:63:27:c7:21:12:87:
f2:64:be:15:d0:30:08:0b:6e:66:90:a1:fe:b7:1e:a9:e8:d9:
71:9a:bb:8b:b0:9f:a7:04:aa:c6:e9:35:42:e2:2c:bc:81:9b:
0b:81:59:e6:4c:03:0c:c2:06:b3:25:b6:60:4c:c3:37:2d:f7:
43:9a:44:37:96:16:fb:5c:fc:c6:0c:be:f8:9f:e8:d1:5c:64:
0e:14:1c:c3:dd:c8:26:20:c9:86:c2:36:dd:0c:d3:09:06:91:
a9:3c:fd:08:12:a5:13:dc:d8:50:bd:df:b8:27:e0:87:80:db:
11:5d:f3:e4:7a:0b:61:4d:ec:89:fd:d0:f7:de:10:46:38:5a:
d2:24:a9:cc:d3:e1:19:5d:d7:80:27:30:7b:ba:35:74:83:ab:
cc:21:56:12:15:29:d8:78:e8:a2:1d:e6:ad:6a:cc:a8:8a:41:
a8:cc:60:ec:68:69:f3:4d:cb:00:12:80:71:0b:2d:cf:91:f2:
7e:62:72:ea:8c:d3:1e:f9:10:b9:24:c4:c9:4e:3c:74:95:e9:
a9:b6:db:89
-----BEGIN CERTIFICATE-----
MIIFgTCCBGmgAwIBAgIDAIDwMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQVIxMTAvBgNVBAUTKDc5N0Q4OEQ4MTNFMjBGRkY5ODJDQzc0MTlFOTY5
QkFFQTZCRkQ2OUIwHhcNMjQwMzI5MTAwOTM1WhcNMjQwNTA0MTAwOTM1WjAYMRYw
FAYDVQQDEw02NjA2OTM2Mi1jNThmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAt1cvRuAVLwlRaLna/Wd0ReXOXsaRq6c9N4VFmlk4EXMovBhCcS19S9R7
o04xyLlO7ZeGOYHI93XcxdBscPGazu0WyqJrRO7I2zzjpxjzIJXfUk3CNBphCfIK
LJt1gM7a0vPvd9eLP5pdNxxkn1LdIGUPBX2afsyB75hJPuCIo5+nFpCdN/2kqxUY
z+4Lv3FySwDkDIop2aT6+MERff5lUbwZo8htkWyPrV/oSZNj46WQyIfGcboyyL+t
F7PcspjxewP3Cw+6iRLQ5l/BlPyLa2yQPTwEMSkSZqbu/9O2cCEGZGjg3FlbhlgT
O4A8R+AveFZXFg3j3erhVYRbDzpTiQIDAQABo4ICojCCAp4wHQYDVR0OBBYEFKAl
b0pt3QW7nmxfLuzp24TOCaFIMB8GA1UdIwQYMBaAFHl9iNgT4g//mCzHQZ6Wm66m
v9abMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFFQTIyOC9lWDJJ
MkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY3JsMGQGCCsGAQUFBwEBBFgwVjBUBggr
BgEFBQcwAoZIcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYXJp
bi9lWDJJMkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY2VyME8GA1UdIAEB/wRFMEMw
QQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmluaWMu
bmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYBBQUH
MAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJf
cmVwb3NpdG9yeS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFF
QTIyOC83MzVBQ0FBMkVEQjQxMUVFOUFFOEU3OTY3NzU0MTJFNi5yb2EwNQYIKwYB
BQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1s
MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnPg1MA0GCSqGSIb3DQEBCwUA
A4IBAQBV3A06LGWxwXkK1XpVQ4L16EXxMnzYmS6nkYKsB3bSTUpGyvnmnsp4lFQi
u2FkQoJjJ8chEofyZL4V0DAIC25mkKH+tx6p6NlxmruLsJ+nBKrG6TVC4iy8gZsL
gVnmTAMMwgazJbZgTMM3LfdDmkQ3lhb7XPzGDL74n+jRXGQOFBzD3cgmIMmGwjbd
DNMJBpGpPP0IEqUT3NhQvd+4J+CHgNsRXfPkegthTeyJ/dD33hBGOFrSJKnM0+EZ
XdeAJzB7ujV0g6vMIVYSFSnYeOiiHeatasyoikGozGDsaGnzTcsAEoBxCy3PkfJ+
YnLqjNMe+RC5JMTJTjx0lempttuJ
-----END CERTIFICATE-----
Generated at Sun May 5 03:07:07 2024 by rpki-client on console-fra.rpki-client.org