Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/8E8A9A56435811EF82907BBF762E951A.roa
File: 8E8A9A56435811EF82907BBF762E951A.roa (raw, json)
Hash identifier: vGQqoUHmtwQfHiU4LnDpDBT/QefpfoguRiXVn+aNO5U=
Subject key identifier: C4:DB:5D:21:0A:55:99:B7:72:55:A6:C1:FA:4F:84:EE:7E:A7:5C:2A
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 9CB7
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/8E8A9A56435811EF82907BBF762E951A.roa
Signing time: Tue 16 Jul 2024 09:48:30 +0000
ROA not before: Tue 16 Jul 2024 09:48:27 +0000
ROA not after: Tue 13 Aug 2024 09:48:27 +0000
asID: 55320
IP address blocks: 156.244.23.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 40119 (0x9cb7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jul 16 09:48:27 2024 GMT
Not After : Aug 13 09:48:27 2024 GMT
Subject: CN=669641ee-e8e3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:1f:a2:1f:4a:53:76:06:24:cc:8c:0f:48:f9:
c4:98:c8:60:30:72:d1:68:bf:26:46:eb:0b:b7:47:
37:8c:6f:87:80:cf:5f:22:15:1b:a3:e4:bb:39:0c:
1f:2f:f4:eb:d2:63:c4:b2:12:c1:b3:e9:fc:52:a8:
e1:87:7e:33:04:3d:d0:0d:d4:ea:5f:c1:2f:64:c9:
27:e3:f7:b5:ef:d4:1d:03:53:75:79:2a:57:2e:e9:
d3:cb:5b:f7:bc:7a:ef:f0:2b:4a:d9:18:7f:62:8e:
1d:2d:d6:6f:b1:9d:9f:d8:5e:c7:8d:9d:2c:22:35:
1f:c0:6e:26:fe:85:0d:9c:69:87:37:85:f5:60:75:
ab:c7:3b:55:f1:0e:cf:c2:8f:ed:96:db:18:b9:86:
3b:e5:f6:9a:02:31:83:5d:7f:06:a0:05:87:d5:65:
c7:ba:56:b9:56:45:ea:ec:47:3d:29:d6:d6:57:99:
60:7d:a5:a9:b2:cc:e4:62:9a:49:82:d0:3b:32:95:
7b:bf:48:13:14:18:39:a8:7e:7e:67:80:a7:63:61:
94:eb:67:78:c6:7e:50:23:d4:dd:90:91:ee:98:52:
50:dd:b0:34:b7:8d:fe:fd:83:85:dc:3b:6f:88:8b:
18:bc:63:ba:a2:37:ca:82:e0:54:02:d8:42:88:6a:
39:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:DB:5D:21:0A:55:99:B7:72:55:A6:C1:FA:4F:84:EE:7E:A7:5C:2A
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/8E8A9A56435811EF82907BBF762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.244.23.0/24
Signature Algorithm: sha256WithRSAEncryption
66:ba:fb:51:16:a9:9c:14:c0:14:dd:3a:c9:96:70:aa:13:49:
12:c5:38:e8:62:7e:8f:15:e4:b6:80:3d:19:e2:b2:86:71:55:
17:88:70:59:47:75:22:76:90:b5:49:d1:e5:1d:84:53:28:ab:
16:2c:d0:17:c0:40:33:cf:23:6e:7a:37:06:97:91:a6:fd:1c:
15:50:e9:95:8f:1e:8f:ba:66:5a:4a:bf:14:10:84:de:f2:e2:
57:20:26:e6:3f:60:7c:61:c7:e7:a7:cd:a4:00:af:7b:e9:f9:
ac:30:2d:ec:4f:2d:71:cf:8c:3b:26:7c:70:72:46:77:95:8a:
15:98:58:31:e1:98:18:00:fa:66:5a:e1:6a:69:57:dd:51:e5:
b8:b1:5a:74:62:22:bc:61:f0:fa:de:31:72:95:0b:a7:77:ca:
97:9b:8a:1c:73:5d:fc:b7:65:d6:c9:c5:d7:be:cd:16:20:7c:
d6:59:cf:be:9a:28:f7:93:e1:ec:1b:41:88:ed:c6:2a:80:eb:
1c:c7:0e:39:af:a0:c7:fc:4a:b7:e8:c3:e0:18:6e:e8:b3:ca:
15:e6:27:66:d3:ce:b6:73:0f:87:3f:76:90:f3:82:7c:19:30:
bb:3e:2f:77:54:e8:bc:a3:f2:0d:92:9b:60:6a:4e:f1:09:22:
b8:68:5d:bb
-----BEGIN CERTIFICATE-----
MIIFgTCCBGmgAwIBAgIDAJy3MA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQVIxMTAvBgNVBAUTKDc5N0Q4OEQ4MTNFMjBGRkY5ODJDQzc0MTlFOTY5
QkFFQTZCRkQ2OUIwHhcNMjQwNzE2MDk0ODI3WhcNMjQwODEzMDk0ODI3WjAYMRYw
FAYDVQQDEw02Njk2NDFlZS1lOGUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAwB+iH0pTdgYkzIwPSPnEmMhgMHLRaL8mRusLt0c3jG+HgM9fIhUbo+S7
OQwfL/Tr0mPEshLBs+n8Uqjhh34zBD3QDdTqX8EvZMkn4/e179QdA1N1eSpXLunT
y1v3vHrv8CtK2Rh/Yo4dLdZvsZ2f2F7HjZ0sIjUfwG4m/oUNnGmHN4X1YHWrxztV
8Q7Pwo/tltsYuYY75faaAjGDXX8GoAWH1WXHula5VkXq7Ec9KdbWV5lgfaWpsszk
YppJgtA7MpV7v0gTFBg5qH5+Z4CnY2GU62d4xn5QI9TdkJHumFJQ3bA0t43+/YOF
3DtviIsYvGO6ojfKguBUAthCiGo5GwIDAQABo4ICojCCAp4wHQYDVR0OBBYEFMTb
XSEKVZm3clWmwfpPhO5+p1wqMB8GA1UdIwQYMBaAFHl9iNgT4g//mCzHQZ6Wm66m
v9abMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFFQTIyOC9lWDJJ
MkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY3JsMGQGCCsGAQUFBwEBBFgwVjBUBggr
BgEFBQcwAoZIcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYXJp
bi9lWDJJMkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY2VyME8GA1UdIAEB/wRFMEMw
QQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmluaWMu
bmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYBBQUH
MAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJf
cmVwb3NpdG9yeS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFF
QTIyOC84RThBOUE1NjQzNTgxMUVGODI5MDdCQkY3NjJFOTUxQS5yb2EwNQYIKwYB
BQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1s
MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnPQXMA0GCSqGSIb3DQEBCwUA
A4IBAQBmuvtRFqmcFMAU3TrJlnCqE0kSxTjoYn6PFeS2gD0Z4rKGcVUXiHBZR3Ui
dpC1SdHlHYRTKKsWLNAXwEAzzyNuejcGl5Gm/RwVUOmVjx6PumZaSr8UEITe8uJX
ICbmP2B8Ycfnp82kAK976fmsMC3sTy1xz4w7JnxwckZ3lYoVmFgx4ZgYAPpmWuFq
aVfdUeW4sVp0YiK8YfD63jFylQund8qXm4occ138t2XWycXXvs0WIHzWWc++mij3
k+HsG0GI7cYqgOscxw45r6DH/Eq36MPgGG7os8oV5idm0862cw+HP3aQ84J8GTC7
Pi93VOi8o/INkptgak7xCSK4aF27
-----END CERTIFICATE-----
Generated at Wed Aug 14 05:05:46 2024 by rpki-client on console-ams.rpki-client.org