Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/A6CBCC02C5CB11EFAD331D60762E951A.roa
File: A6CBCC02C5CB11EFAD331D60762E951A.roa (raw, json)
Hash identifier: 5fXFBt/2rT93b9ogMnRD5SH6mFmV8uvkJFs8EzFxRaU=
Subject key identifier: 21:94:FF:92:F6:29:45:17:EF:43:D7:3B:FE:34:26:95:6F:BB:67:56
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: F1BC
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/A6CBCC02C5CB11EFAD331D60762E951A.roa
Signing time: Sun 29 Dec 2024 09:59:54 +0000
ROA not before: Sun 29 Dec 2024 09:59:50 +0000
ROA not after: Fri 31 Jan 2025 09:59:50 +0000
asID: 205125
IP address blocks: 156.255.11.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 61884 (0xf1bc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Dec 29 09:59:50 2024 GMT
Not After : Jan 31 09:59:50 2025 GMT
Subject: CN=67711d9a-602e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:96:1d:f4:a8:6a:ff:6f:df:40:8e:8d:06:b3:
c9:80:d1:6f:df:94:60:1c:ed:11:5f:51:ee:cf:24:
e8:3b:8b:bc:da:92:14:52:64:40:ee:91:84:0b:38:
16:79:3d:b2:c7:26:2f:8c:e1:40:9c:77:c1:4f:bc:
62:ce:c0:28:5d:87:b1:84:d1:cc:97:6e:a8:d7:2f:
f9:34:18:de:82:16:68:92:98:e6:70:d3:6d:92:03:
ba:f1:49:cd:65:65:73:34:42:5b:63:3c:bc:35:2e:
60:94:ad:4e:1b:9e:9b:f3:ff:bb:6d:c7:fe:f3:54:
ea:29:06:db:53:db:9f:9b:75:88:2c:07:2b:bd:a9:
f7:0b:0f:d2:09:00:4f:a9:f3:9d:34:fa:af:ce:1e:
84:eb:8b:74:79:30:3b:f1:fc:45:7c:e5:0c:1f:cf:
25:4c:02:06:d7:f7:90:e9:62:ed:55:a9:bb:ea:8d:
91:a3:7f:54:1c:72:44:dc:eb:93:b6:96:55:2b:80:
bd:08:06:4e:11:4e:20:04:37:2d:d8:ce:b4:c8:39:
69:f1:99:66:3e:c7:49:db:46:b3:d1:bd:bf:d3:60:
99:22:fd:18:91:37:e9:55:49:23:60:63:f3:e3:2c:
0a:a5:fa:a3:9d:ab:5f:fc:23:3d:4d:94:5c:66:37:
2d:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:94:FF:92:F6:29:45:17:EF:43:D7:3B:FE:34:26:95:6F:BB:67:56
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/A6CBCC02C5CB11EFAD331D60762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.255.11.0/24
Signature Algorithm: sha256WithRSAEncryption
8d:11:02:19:f4:aa:0f:96:ee:ef:9b:42:36:6d:b6:cf:0a:1b:
ce:2f:d4:69:22:37:26:05:7b:01:c4:79:54:53:b3:93:05:d4:
7b:5e:cb:00:31:84:f0:7f:f7:ff:6c:a7:66:08:cb:c7:9a:17:
61:f1:69:f4:d3:14:e6:7e:32:fe:e3:d8:94:ec:20:32:78:f6:
07:41:bc:bb:91:c3:97:ba:bc:35:9d:39:3e:e6:81:3d:f6:34:
53:99:3c:70:e7:b6:f1:93:2b:37:7d:f8:85:d7:38:ad:7f:08:
3a:3c:d4:a6:45:98:c7:e1:c4:6a:65:7f:b5:93:20:c1:bb:f9:
62:cd:4c:9e:1c:03:0b:ea:c9:c2:73:6a:47:1f:c2:71:7e:56:
c4:55:2b:6c:84:a2:f6:78:ac:3e:27:94:f1:ad:93:4b:49:8d:
62:1a:e5:c7:a1:fe:92:41:c2:4f:6a:4a:1a:e5:c5:0b:42:2d:
ba:0d:f2:dc:4f:d7:75:a0:f7:56:91:e8:5c:b9:48:4a:70:cb:
d8:a5:e7:04:f0:97:0c:7f:0c:f1:93:2d:8c:a5:c3:e2:c0:bd:
ec:e3:eb:ca:1b:49:ee:7f:e2:7d:61:25:89:08:2c:01:c8:35:
39:07:62:9c:ce:9c:fd:87:11:8f:57:02:6f:b2:c1:16:54:9f:
83:31:b1:0c
-----BEGIN CERTIFICATE-----
MIIFgTCCBGmgAwIBAgIDAPG8MA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQVIxMTAvBgNVBAUTKDc5N0Q4OEQ4MTNFMjBGRkY5ODJDQzc0MTlFOTY5
QkFFQTZCRkQ2OUIwHhcNMjQxMjI5MDk1OTUwWhcNMjUwMTMxMDk1OTUwWjAYMRYw
FAYDVQQDEw02NzcxMWQ5YS02MDJlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAw5Yd9Khq/2/fQI6NBrPJgNFv35RgHO0RX1HuzyToO4u82pIUUmRA7pGE
CzgWeT2yxyYvjOFAnHfBT7xizsAoXYexhNHMl26o1y/5NBjeghZokpjmcNNtkgO6
8UnNZWVzNEJbYzy8NS5glK1OG56b8/+7bcf+81TqKQbbU9ufm3WILAcrvan3Cw/S
CQBPqfOdNPqvzh6E64t0eTA78fxFfOUMH88lTAIG1/eQ6WLtVam76o2Ro39UHHJE
3OuTtpZVK4C9CAZOEU4gBDct2M60yDlp8ZlmPsdJ20az0b2/02CZIv0YkTfpVUkj
YGPz4ywKpfqjnatf/CM9TZRcZjctawIDAQABo4ICojCCAp4wHQYDVR0OBBYEFCGU
/5L2KUUX70PXO/40JpVvu2dWMB8GA1UdIwQYMBaAFHl9iNgT4g//mCzHQZ6Wm66m
v9abMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFFQTIyOC9lWDJJ
MkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY3JsMGQGCCsGAQUFBwEBBFgwVjBUBggr
BgEFBQcwAoZIcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYXJp
bi9lWDJJMkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY2VyME8GA1UdIAEB/wRFMEMw
QQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmluaWMu
bmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYBBQUH
MAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJf
cmVwb3NpdG9yeS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFF
QTIyOC9BNkNCQ0MwMkM1Q0IxMUVGQUQzMzFENjA3NjJFOTUxQS5yb2EwNQYIKwYB
BQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1s
MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnP8LMA0GCSqGSIb3DQEBCwUA
A4IBAQCNEQIZ9KoPlu7vm0I2bbbPChvOL9RpIjcmBXsBxHlUU7OTBdR7XssAMYTw
f/f/bKdmCMvHmhdh8Wn00xTmfjL+49iU7CAyePYHQby7kcOXurw1nTk+5oE99jRT
mTxw57bxkys3ffiF1zitfwg6PNSmRZjH4cRqZX+1kyDBu/lizUyeHAML6snCc2pH
H8JxflbEVStshKL2eKw+J5TxrZNLSY1iGuXHof6SQcJPakoa5cULQi26DfLcT9d1
oPdWkehcuUhKcMvYpecE8JcMfwzxky2MpcPiwL3s4+vKG0nuf+J9YSWJCCwByDU5
B2Kczpz9hxGPVwJvssEWVJ+DMbEM
-----END CERTIFICATE-----
Generated at Wed Feb 5 09:49:05 2025 by rpki-client