Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/841B0032CE7D11EFB0CC60B4762E951A.roa
File: 841B0032CE7D11EFB0CC60B4762E951A.roa (raw, json)
Hash identifier: LMXjaWIXlBkALNLjSv4wqh0WKnY5Zy1jpmyu/PbdrvU=
Subject key identifier: 81:9A:82:A1:DD:B8:CC:98:65:D1:04:E5:A9:2A:99:BB:CD:65:CC:4C
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01036C
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/841B0032CE7D11EFB0CC60B4762E951A.roa
Signing time: Thu 09 Jan 2025 11:33:15 +0000
ROA not before: Thu 09 Jan 2025 11:33:12 +0000
ROA not after: Sat 01 Feb 2025 11:33:12 +0000
asID: 17561
IP address blocks: 156.236.61.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 66412 (0x1036c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Jan 9 11:33:12 2025 GMT
Not After : Feb 1 11:33:12 2025 GMT
Subject: CN=677fb3fb-f505
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:d6:17:f2:7a:76:89:90:7b:fa:f1:70:ba:3e:
32:c3:ab:61:cb:da:35:4f:da:c8:da:f2:3e:bc:9c:
43:63:4d:19:92:ad:41:04:13:71:75:2c:ee:82:97:
57:08:a1:b9:e0:94:fa:c1:7e:d0:14:59:d5:f1:47:
a6:dd:ce:47:ba:5a:78:1e:33:2e:2c:07:18:0f:ba:
5e:a3:a6:90:7a:26:05:de:c9:4a:5c:bc:7b:3a:db:
42:03:4e:7e:87:b6:66:20:60:dd:bb:d5:59:30:57:
23:39:70:7e:5b:3c:0d:01:87:a1:32:7d:e9:0a:5c:
36:28:12:09:aa:b7:8a:7f:48:cb:ac:14:f5:da:ab:
df:03:54:41:55:95:bd:83:61:56:15:17:9b:90:d1:
98:19:29:6e:c9:cd:9e:df:00:d0:2a:50:50:08:4a:
18:7f:b3:5d:c8:3f:84:4c:5a:86:44:90:ce:c8:f6:
20:9b:a5:8c:95:e0:16:2c:93:0f:4f:f3:e6:93:0f:
b2:6e:d1:07:64:50:2f:18:fb:ea:5b:c6:20:ce:07:
8e:7b:13:59:96:bd:a3:fe:1a:97:4d:29:c1:71:9c:
b8:96:6b:bd:56:00:0a:61:75:28:6a:33:0b:76:84:
ed:33:81:36:16:2e:71:c2:68:d7:70:fa:f1:7c:45:
31:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:9A:82:A1:DD:B8:CC:98:65:D1:04:E5:A9:2A:99:BB:CD:65:CC:4C
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/841B0032CE7D11EFB0CC60B4762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.236.61.0/24
Signature Algorithm: sha256WithRSAEncryption
8e:e9:03:7d:29:9d:6b:d1:6c:a3:19:60:f2:82:ed:e1:a9:31:
f8:a7:70:2c:ac:79:62:92:11:07:5b:61:95:9c:40:91:87:bb:
b2:84:64:d2:81:19:98:95:74:2b:57:e5:5e:8b:01:f5:f7:c8:
42:59:84:c1:e5:e6:b8:57:0d:56:9a:40:dc:8a:9b:96:b9:0f:
9a:f4:4b:25:b1:0a:ae:b9:d4:36:f0:ec:30:9c:7c:00:0c:d1:
da:37:28:94:1f:4a:c7:31:ea:46:5c:76:97:4e:79:08:92:b7:
d8:bf:78:b6:99:82:bd:87:2c:bb:6c:4b:03:51:6d:c8:94:22:
54:03:55:ec:32:40:ea:90:de:43:20:5f:bd:d5:50:65:95:d0:
2d:6a:68:27:f8:a3:e5:02:e7:54:54:e9:4d:9b:11:78:c4:9b:
85:1c:c4:ed:69:09:44:91:8a:82:b4:67:1c:ab:a0:d9:a0:e8:
91:e0:36:74:05:0d:e3:05:3a:34:98:b7:59:c8:73:3b:48:77:
cd:b6:c8:5b:d5:5b:7c:9a:d3:93:8a:c2:d2:b5:06:13:86:ea:
f6:ed:e8:a9:24:77:38:7b:cf:8a:7c:e5:7b:ba:92:6e:26:59:
ac:49:4b:92:ef:21:3b:c2:d5:ce:6f:cc:21:ee:62:5d:94:f8:
6c:e0:9a:3b
-----BEGIN CERTIFICATE-----
MIIFgTCCBGmgAwIBAgIDAQNsMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQVIxMTAvBgNVBAUTKDc5N0Q4OEQ4MTNFMjBGRkY5ODJDQzc0MTlFOTY5
QkFFQTZCRkQ2OUIwHhcNMjUwMTA5MTEzMzEyWhcNMjUwMjAxMTEzMzEyWjAYMRYw
FAYDVQQDEw02NzdmYjNmYi1mNTA1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAt9YX8np2iZB7+vFwuj4yw6thy9o1T9rI2vI+vJxDY00Zkq1BBBNxdSzu
gpdXCKG54JT6wX7QFFnV8Uem3c5Hulp4HjMuLAcYD7peo6aQeiYF3slKXLx7OttC
A05+h7ZmIGDdu9VZMFcjOXB+WzwNAYehMn3pClw2KBIJqreKf0jLrBT12qvfA1RB
VZW9g2FWFRebkNGYGSluyc2e3wDQKlBQCEoYf7NdyD+ETFqGRJDOyPYgm6WMleAW
LJMPT/Pmkw+ybtEHZFAvGPvqW8YgzgeOexNZlr2j/hqXTSnBcZy4lmu9VgAKYXUo
ajMLdoTtM4E2Fi5xwmjXcPrxfEUx8wIDAQABo4ICojCCAp4wHQYDVR0OBBYEFIGa
gqHduMyYZdEE5akqmbvNZcxMMB8GA1UdIwQYMBaAFHl9iNgT4g//mCzHQZ6Wm66m
v9abMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFFQTIyOC9lWDJJ
MkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY3JsMGQGCCsGAQUFBwEBBFgwVjBUBggr
BgEFBQcwAoZIcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYXJp
bi9lWDJJMkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY2VyME8GA1UdIAEB/wRFMEMw
QQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmluaWMu
bmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYBBQUH
MAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJf
cmVwb3NpdG9yeS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFF
QTIyOC84NDFCMDAzMkNFN0QxMUVGQjBDQzYwQjQ3NjJFOTUxQS5yb2EwNQYIKwYB
BQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1s
MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnOw9MA0GCSqGSIb3DQEBCwUA
A4IBAQCO6QN9KZ1r0WyjGWDygu3hqTH4p3AsrHlikhEHW2GVnECRh7uyhGTSgRmY
lXQrV+VeiwH198hCWYTB5ea4Vw1WmkDcipuWuQ+a9EslsQquudQ28OwwnHwADNHa
NyiUH0rHMepGXHaXTnkIkrfYv3i2mYK9hyy7bEsDUW3IlCJUA1XsMkDqkN5DIF+9
1VBlldAtamgn+KPlAudUVOlNmxF4xJuFHMTtaQlEkYqCtGccq6DZoOiR4DZ0BQ3j
BTo0mLdZyHM7SHfNtshb1Vt8mtOTisLStQYThur27eipJHc4e8+KfOV7upJuJlms
SUuS7yE7wtXOb8wh7mJdlPhs4Jo7
-----END CERTIFICATE-----
Generated at Wed Feb 5 09:45:24 2025 by rpki-client