Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/8E68819ABA2811EF8A24CC51762E951A.roa
File: 8E68819ABA2811EF8A24CC51762E951A.roa (raw, json)
Hash identifier: WCX6fieqwHluVMYNHEPvUNks1dIlXeTQwaDMPzyuZcc=
Subject key identifier: BE:25:A9:7C:BA:79:01:21:CD:F1:C6:F2:D9:57:B7:83:2A:8E:FC:55
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: E3B4
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/8E68819ABA2811EF8A24CC51762E951A.roa
Signing time: Sat 14 Dec 2024 14:34:42 +0000
ROA not before: Sat 14 Dec 2024 14:34:39 +0000
ROA not after: Mon 20 Jan 2025 14:34:39 +0000
asID: 213993
IP address blocks: 156.253.234.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 58292 (0xe3b4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Dec 14 14:34:39 2024 GMT
Not After : Jan 20 14:34:39 2025 GMT
Subject: CN=675d9782-c3f8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:23:77:10:b8:0f:2e:06:d7:19:67:85:23:00:
06:f2:27:fe:46:5e:bc:0e:93:64:fb:7b:b1:bb:f0:
4c:19:30:01:ac:62:77:db:a7:99:d5:36:4d:0a:92:
2a:9d:13:46:f6:46:89:44:e4:f3:6a:19:e5:57:8e:
d3:c8:0e:ad:9d:6b:c7:32:af:92:f2:db:98:48:4a:
ea:63:41:88:17:7b:1a:91:87:28:d0:6d:5a:2d:d0:
b8:fd:d5:7c:1f:ca:63:70:62:dc:a0:8a:86:79:70:
6c:6b:98:e6:0b:27:1f:03:70:ca:a5:3a:ca:7b:ee:
14:f7:7e:8c:9b:af:f6:a6:79:b1:ff:c4:94:03:40:
b0:79:23:60:be:72:d6:24:7c:f1:8e:b1:9c:a7:b5:
60:bc:72:cc:a8:83:ed:34:92:a1:9a:54:fd:77:4a:
e4:eb:0d:40:fa:1b:d8:a9:86:af:6a:50:f9:a5:8a:
f4:ac:b2:ef:13:2a:50:a5:7b:ba:f0:76:a5:b2:b6:
1e:1a:7b:70:97:e0:1e:13:f3:17:2f:9c:f1:09:57:
ab:a3:72:8b:81:2c:d0:f4:21:5d:50:89:f3:cb:18:
86:60:6a:73:79:0a:05:4d:14:be:71:f4:00:9b:a2:
1a:fd:64:b0:e6:e7:4a:23:c0:50:04:70:35:fb:e2:
20:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:25:A9:7C:BA:79:01:21:CD:F1:C6:F2:D9:57:B7:83:2A:8E:FC:55
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/8E68819ABA2811EF8A24CC51762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.253.234.0/23
Signature Algorithm: sha256WithRSAEncryption
7d:fe:f3:63:ee:9f:39:71:a3:d4:17:e2:42:c6:3b:f4:cb:7b:
00:b1:59:78:b7:42:50:e4:cd:19:99:b9:c8:58:ae:c4:df:06:
68:59:9e:c0:ae:8a:3f:02:3b:d0:ec:6d:5d:ef:d3:48:f1:58:
fd:ca:02:28:e9:81:1d:34:ad:cf:0e:c0:5d:f2:5b:e2:2f:e9:
aa:a9:f5:b2:ea:1f:16:62:93:8c:2c:7a:8b:da:1f:f3:91:9e:
e6:1f:19:20:fa:a7:7f:97:e5:65:c0:0f:0f:35:85:47:67:9b:
e1:9f:7a:21:a9:91:92:e3:b0:76:31:2c:7b:70:db:b0:69:b1:
21:87:df:cd:5f:18:f0:f3:e6:b7:23:33:3b:9c:3e:ad:f5:83:
0b:2e:be:bf:59:7b:97:fe:04:f8:7a:87:41:2f:c1:81:d5:e5:
02:f2:6d:19:9c:c9:98:11:d5:70:4a:a9:a9:cc:2e:bb:a5:89:
56:55:a9:3f:e7:90:c5:70:9e:a0:96:a8:64:5c:13:87:80:44:
61:64:d5:96:8b:7f:9d:74:57:02:f2:a3:ea:e8:82:e6:7f:55:
e1:f6:5b:44:69:11:d6:03:07:f8:a2:15:eb:77:7a:6c:d8:08:
7a:7a:af:48:4f:4c:2c:6f:06:54:c9:1d:d2:7f:39:b2:bc:34:
b5:1d:1c:0c
-----BEGIN CERTIFICATE-----
MIIFgTCCBGmgAwIBAgIDAOO0MA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQVIxMTAvBgNVBAUTKDc5N0Q4OEQ4MTNFMjBGRkY5ODJDQzc0MTlFOTY5
QkFFQTZCRkQ2OUIwHhcNMjQxMjE0MTQzNDM5WhcNMjUwMTIwMTQzNDM5WjAYMRYw
FAYDVQQDEw02NzVkOTc4Mi1jM2Y4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAzyN3ELgPLgbXGWeFIwAG8if+Rl68DpNk+3uxu/BMGTABrGJ326eZ1TZN
CpIqnRNG9kaJROTzahnlV47TyA6tnWvHMq+S8tuYSErqY0GIF3sakYco0G1aLdC4
/dV8H8pjcGLcoIqGeXBsa5jmCycfA3DKpTrKe+4U936Mm6/2pnmx/8SUA0CweSNg
vnLWJHzxjrGcp7VgvHLMqIPtNJKhmlT9d0rk6w1A+hvYqYavalD5pYr0rLLvEypQ
pXu68HalsrYeGntwl+AeE/MXL5zxCVero3KLgSzQ9CFdUInzyxiGYGpzeQoFTRS+
cfQAm6Ia/WSw5udKI8BQBHA1++IgQwIDAQABo4ICojCCAp4wHQYDVR0OBBYEFL4l
qXy6eQEhzfHG8tlXt4MqjvxVMB8GA1UdIwQYMBaAFHl9iNgT4g//mCzHQZ6Wm66m
v9abMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFFQTIyOC9lWDJJ
MkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY3JsMGQGCCsGAQUFBwEBBFgwVjBUBggr
BgEFBQcwAoZIcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYXJp
bi9lWDJJMkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY2VyME8GA1UdIAEB/wRFMEMw
QQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmluaWMu
bmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYBBQUH
MAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJf
cmVwb3NpdG9yeS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFF
QTIyOC84RTY4ODE5QUJBMjgxMUVGOEEyNENDNTE3NjJFOTUxQS5yb2EwNQYIKwYB
BQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1s
MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBnP3qMA0GCSqGSIb3DQEBCwUA
A4IBAQB9/vNj7p85caPUF+JCxjv0y3sAsVl4t0JQ5M0ZmbnIWK7E3wZoWZ7Aroo/
AjvQ7G1d79NI8Vj9ygIo6YEdNK3PDsBd8lviL+mqqfWy6h8WYpOMLHqL2h/zkZ7m
Hxkg+qd/l+VlwA8PNYVHZ5vhn3ohqZGS47B2MSx7cNuwabEhh9/NXxjw8+a3IzM7
nD6t9YMLLr6/WXuX/gT4eodBL8GB1eUC8m0ZnMmYEdVwSqmpzC67pYlWVak/55DF
cJ6glqhkXBOHgERhZNWWi3+ddFcC8qPq6ILmf1Xh9ltEaRHWAwf4ohXrd3ps2Ah6
eq9IT0wsbwZUyR3SfzmyvDS1HRwM
-----END CERTIFICATE-----
Generated at Wed Feb 5 09:54:45 2025 by rpki-client