Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/964B9A70404111EF9E75FD8D762E951A.roa
File: 964B9A70404111EF9E75FD8D762E951A.roa (raw, json)
Hash identifier: 4XEqBzvWYQ6neZ6l7JsMLPPkyc16Z++9Ilho6Vl1/Mo=
Subject key identifier: 56:74:68:DA:0A:B5:17:BC:F6:8A:C9:E4:76:AE:29:0F:15:4C:8D:FE
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 9BD9
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/964B9A70404111EF9E75FD8D762E951A.roa
Signing time: Fri 12 Jul 2024 11:26:31 +0000
ROA not before: Fri 12 Jul 2024 11:26:28 +0000
ROA not after: Tue 13 Aug 2024 11:26:28 +0000
asID: 138915
IP address blocks: 156.244.27.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 39897 (0x9bd9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jul 12 11:26:28 2024 GMT
Not After : Aug 13 11:26:28 2024 GMT
Subject: CN=669112e7-0d43
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:d7:5c:01:77:ec:0d:ff:8a:7e:ec:5f:4a:15:
4b:ea:91:8e:6c:76:97:dc:02:94:19:03:5e:d4:f5:
f4:70:b1:cb:0f:1a:56:7b:75:ef:2f:0a:98:f9:62:
3c:f0:cb:fd:9e:f1:c8:ff:ab:12:ec:7b:1b:a4:53:
ed:07:fd:d2:1d:89:b0:b6:35:6f:d9:87:96:b7:50:
af:ba:db:20:29:9f:69:9c:c2:55:60:00:af:5d:c2:
f3:a4:c2:be:29:3e:11:25:3a:c4:52:cd:10:26:2f:
6c:c0:84:08:92:4f:90:ff:35:d3:bc:dd:ac:ef:3b:
e1:2e:c0:37:27:1c:7d:3b:54:3e:9c:1d:a4:ef:d3:
25:69:bd:0c:5f:15:6d:3d:53:43:71:ac:59:c1:54:
e0:bf:d9:f3:c8:57:6f:27:a5:7b:16:f3:7f:77:9b:
c7:3e:af:4a:ff:d6:40:a4:30:99:0b:6e:32:9e:9d:
29:7d:73:18:d4:c2:61:7e:d8:5c:97:1e:e1:16:d1:
cd:1a:8b:17:fb:30:86:e8:fa:ed:8a:5d:52:df:bc:
a1:0e:64:d1:98:5f:f9:e9:be:47:e6:eb:3f:fc:54:
6b:db:b8:4b:a9:20:be:d1:6a:0a:6e:e8:11:d4:75:
4f:db:79:0b:ee:79:45:1d:9d:d6:c0:cd:07:54:54:
be:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:74:68:DA:0A:B5:17:BC:F6:8A:C9:E4:76:AE:29:0F:15:4C:8D:FE
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/964B9A70404111EF9E75FD8D762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.244.27.0/24
Signature Algorithm: sha256WithRSAEncryption
3d:df:35:88:15:cb:ad:5e:cb:51:66:9e:97:4b:e1:df:5c:03:
dd:2e:10:b3:fd:62:fc:1a:76:24:c3:72:b0:62:3e:80:4b:d9:
c0:42:ee:24:4b:04:bf:d8:44:69:5c:10:9f:c5:b0:ad:7f:6b:
69:1f:23:5c:91:76:90:3d:01:77:27:70:22:4f:d4:a7:cd:4b:
27:e0:37:ef:f3:57:1e:2c:4f:b7:80:f6:d0:a8:32:78:29:fc:
9b:b4:af:09:55:34:89:b3:6e:6f:40:ec:30:9c:83:c0:5d:c1:
da:dc:53:ae:8e:15:b7:f2:d1:f2:d8:fb:76:50:81:9a:f1:23:
9f:3c:22:5d:43:ea:e7:79:04:79:84:27:62:75:1e:67:bb:e9:
09:af:ae:a7:0f:50:a3:ae:0b:94:d5:06:a2:11:3b:08:52:f1:
52:0d:fb:94:46:8f:fd:aa:b5:b9:b6:62:42:ca:04:2a:1c:a1:
b5:11:44:4b:b7:c0:3e:cb:80:69:ca:75:eb:a1:e4:7c:59:66:
1a:48:c6:56:79:3a:13:02:0d:c4:c9:43:69:6c:24:e3:ec:72:
82:6c:84:55:9c:86:a5:f8:20:96:5c:02:ea:a8:85:08:9f:36:
40:f8:7c:5b:3c:73:aa:46:6f:3b:9a:75:9c:39:4a:b9:9a:86:
13:3f:d3:02
-----BEGIN CERTIFICATE-----
MIIFgTCCBGmgAwIBAgIDAJvZMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQVIxMTAvBgNVBAUTKDc5N0Q4OEQ4MTNFMjBGRkY5ODJDQzc0MTlFOTY5
QkFFQTZCRkQ2OUIwHhcNMjQwNzEyMTEyNjI4WhcNMjQwODEzMTEyNjI4WjAYMRYw
FAYDVQQDEw02NjkxMTJlNy0wZDQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAsNdcAXfsDf+KfuxfShVL6pGObHaX3AKUGQNe1PX0cLHLDxpWe3XvLwqY
+WI88Mv9nvHI/6sS7HsbpFPtB/3SHYmwtjVv2YeWt1CvutsgKZ9pnMJVYACvXcLz
pMK+KT4RJTrEUs0QJi9swIQIkk+Q/zXTvN2s7zvhLsA3Jxx9O1Q+nB2k79Mlab0M
XxVtPVNDcaxZwVTgv9nzyFdvJ6V7FvN/d5vHPq9K/9ZApDCZC24ynp0pfXMY1MJh
fthclx7hFtHNGosX+zCG6Prtil1S37yhDmTRmF/56b5H5us//FRr27hLqSC+0WoK
bugR1HVP23kL7nlFHZ3WwM0HVFS+bwIDAQABo4ICojCCAp4wHQYDVR0OBBYEFFZ0
aNoKtRe89orJ5HauKQ8VTI3+MB8GA1UdIwQYMBaAFHl9iNgT4g//mCzHQZ6Wm66m
v9abMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFFQTIyOC9lWDJJ
MkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY3JsMGQGCCsGAQUFBwEBBFgwVjBUBggr
BgEFBQcwAoZIcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYXJp
bi9lWDJJMkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY2VyME8GA1UdIAEB/wRFMEMw
QQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmluaWMu
bmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYBBQUH
MAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJf
cmVwb3NpdG9yeS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFF
QTIyOC85NjRCOUE3MDQwNDExMUVGOUU3NUZEOEQ3NjJFOTUxQS5yb2EwNQYIKwYB
BQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1s
MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnPQbMA0GCSqGSIb3DQEBCwUA
A4IBAQA93zWIFcutXstRZp6XS+HfXAPdLhCz/WL8GnYkw3KwYj6AS9nAQu4kSwS/
2ERpXBCfxbCtf2tpHyNckXaQPQF3J3AiT9SnzUsn4Dfv81ceLE+3gPbQqDJ4Kfyb
tK8JVTSJs25vQOwwnIPAXcHa3FOujhW38tHy2Pt2UIGa8SOfPCJdQ+rneQR5hCdi
dR5nu+kJr66nD1CjrguU1QaiETsIUvFSDfuURo/9qrW5tmJCygQqHKG1EURLt8A+
y4BpynXroeR8WWYaSMZWeToTAg3EyUNpbCTj7HKCbIRVnIal+CCWXALqqIUInzZA
+HxbPHOqRm87mnWcOUq5moYTP9MC
-----END CERTIFICATE-----
Generated at Wed Aug 14 05:05:46 2024 by rpki-client on console-ams.rpki-client.org