Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/9BEB9C86C29711EFB467CE88762E951A.roa
File: 9BEB9C86C29711EFB467CE88762E951A.roa (raw, json)
Hash identifier: 3ZjgF49vGK5Tu5isALEIy4PCPcdZQWG5X1g3WKmFBcQ=
Subject key identifier: F8:B1:75:13:5D:6C:F6:EB:13:8C:DB:A1:58:08:F7:88:86:EB:61:A1
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: E9C7
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/9BEB9C86C29711EFB467CE88762E951A.roa
Signing time: Wed 25 Dec 2024 08:09:48 +0000
ROA not before: Wed 25 Dec 2024 08:09:45 +0000
ROA not after: Wed 29 Jan 2025 08:09:45 +0000
asID: 398823
IP address blocks: 156.229.192.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 59847 (0xe9c7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Dec 25 08:09:45 2024 GMT
Not After : Jan 29 08:09:45 2025 GMT
Subject: CN=676bbdcc-ee98
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:f4:e5:5a:65:78:3b:20:bd:50:3b:c7:c9:58:
65:c4:53:f2:91:3f:e8:42:66:a6:f0:4f:1c:6f:46:
2b:7f:d1:1a:f7:1d:e3:09:14:91:50:41:ba:27:57:
09:f8:ab:75:72:f8:3d:60:fa:6e:d0:27:13:32:df:
9f:c4:a0:a4:3a:08:c1:ee:61:57:c0:5f:57:9c:d0:
d1:0c:4e:ac:83:77:9d:fc:77:2c:3c:fd:de:05:a8:
eb:3f:bb:7b:ed:a8:12:11:01:95:86:8f:8f:45:6a:
89:5c:d5:40:b3:c8:67:77:73:33:a5:0d:83:1a:98:
d8:ff:9c:97:0e:54:ee:c0:0a:98:93:b2:5d:a4:6f:
38:43:a9:17:a5:11:c9:11:89:98:49:67:e2:72:35:
88:ea:26:91:c3:34:5b:de:6e:07:47:07:17:3d:c3:
fa:07:de:51:8f:5b:b9:55:ae:41:03:d5:e9:cd:98:
ad:da:e1:e1:94:ba:2d:bd:d0:7a:b4:41:25:dc:09:
a5:31:ab:a5:09:c4:34:d5:cd:3f:87:cf:9f:04:00:
37:60:e4:cc:91:96:12:c6:8e:90:33:00:da:54:26:
97:30:d5:0a:ba:f4:5b:aa:62:93:2a:e0:a4:d4:9e:
b2:68:25:d5:a3:e5:4c:16:03:50:bb:24:bc:25:65:
80:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:B1:75:13:5D:6C:F6:EB:13:8C:DB:A1:58:08:F7:88:86:EB:61:A1
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/9BEB9C86C29711EFB467CE88762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.229.192.0/19
Signature Algorithm: sha256WithRSAEncryption
1b:5b:a4:8c:35:3c:3c:1b:e5:a4:d3:9f:7f:9e:be:d4:83:15:
fe:09:c8:f7:a5:11:8f:77:93:9b:18:db:27:47:b7:ee:5c:54:
f1:28:fa:25:ef:fd:0e:c7:74:3e:7a:f6:55:4d:0c:02:1a:4b:
3f:9e:f2:fb:d4:eb:b2:35:2a:7f:f9:d5:e2:ba:45:8f:c1:20:
c0:56:04:ae:6d:b0:8d:cb:b3:c2:f5:af:ec:50:fa:a9:dd:9c:
5a:14:f9:11:af:e2:0a:11:e5:17:d8:a7:01:c0:ac:8a:9e:23:
4d:5d:82:42:44:8d:64:fd:a3:8e:44:c6:49:e7:0c:e8:e6:fa:
13:99:28:57:99:18:be:95:54:6c:de:bf:3a:3c:7b:29:f7:0d:
70:7a:f2:7e:2e:19:9a:bb:c9:1f:34:dc:0e:3b:f7:86:75:d1:
9b:0c:45:4a:40:1c:3f:2e:11:ca:c8:c5:c5:69:ce:7d:a1:cb:
12:65:a6:aa:5f:85:81:4b:4e:34:1f:e6:66:b1:da:e2:34:24:
22:bd:d3:3b:ef:9d:76:36:b7:fa:b0:34:eb:02:fa:99:9c:b2:
24:67:4e:72:0e:5d:c6:5b:5f:35:10:c0:3f:1d:27:4d:3d:b2:
53:5f:fa:50:59:bb:b5:a3:73:0b:64:64:4f:c5:e8:b2:89:4b:
91:4b:89:70
-----BEGIN CERTIFICATE-----
MIIFgTCCBGmgAwIBAgIDAOnHMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQVIxMTAvBgNVBAUTKDc5N0Q4OEQ4MTNFMjBGRkY5ODJDQzc0MTlFOTY5
QkFFQTZCRkQ2OUIwHhcNMjQxMjI1MDgwOTQ1WhcNMjUwMTI5MDgwOTQ1WjAYMRYw
FAYDVQQDEw02NzZiYmRjYy1lZTk4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAs/TlWmV4OyC9UDvHyVhlxFPykT/oQmam8E8cb0Yrf9Ea9x3jCRSRUEG6
J1cJ+Kt1cvg9YPpu0CcTMt+fxKCkOgjB7mFXwF9XnNDRDE6sg3ed/HcsPP3eBajr
P7t77agSEQGVho+PRWqJXNVAs8hnd3MzpQ2DGpjY/5yXDlTuwAqYk7JdpG84Q6kX
pRHJEYmYSWficjWI6iaRwzRb3m4HRwcXPcP6B95Rj1u5Va5BA9XpzZit2uHhlLot
vdB6tEEl3AmlMaulCcQ01c0/h8+fBAA3YOTMkZYSxo6QMwDaVCaXMNUKuvRbqmKT
KuCk1J6yaCXVo+VMFgNQuyS8JWWAZQIDAQABo4ICojCCAp4wHQYDVR0OBBYEFPix
dRNdbPbrE4zboVgI94iG62GhMB8GA1UdIwQYMBaAFHl9iNgT4g//mCzHQZ6Wm66m
v9abMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFFQTIyOC9lWDJJ
MkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY3JsMGQGCCsGAQUFBwEBBFgwVjBUBggr
BgEFBQcwAoZIcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYXJp
bi9lWDJJMkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY2VyME8GA1UdIAEB/wRFMEMw
QQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmluaWMu
bmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYBBQUH
MAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJf
cmVwb3NpdG9yeS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFF
QTIyOC85QkVCOUM4NkMyOTcxMUVGQjQ2N0NFODg3NjJFOTUxQS5yb2EwNQYIKwYB
BQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1s
MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQFnOXAMA0GCSqGSIb3DQEBCwUA
A4IBAQAbW6SMNTw8G+Wk059/nr7UgxX+Ccj3pRGPd5ObGNsnR7fuXFTxKPol7/0O
x3Q+evZVTQwCGks/nvL71OuyNSp/+dXiukWPwSDAVgSubbCNy7PC9a/sUPqp3Zxa
FPkRr+IKEeUX2KcBwKyKniNNXYJCRI1k/aOORMZJ5wzo5voTmShXmRi+lVRs3r86
PHsp9w1wevJ+Lhmau8kfNNwOO/eGddGbDEVKQBw/LhHKyMXFac59ocsSZaaqX4WB
S040H+ZmsdriNCQivdM77512Nrf6sDTrAvqZnLIkZ05yDl3GW181EMA/HSdNPbJT
X/pQWbu1o3MLZGRPxeiyiUuRS4lw
-----END CERTIFICATE-----
Generated at Wed Feb 5 09:42:42 2025 by rpki-client