Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/BB1A1178038911EFB029583C017001B1.roa
File: BB1A1178038911EFB029583C017001B1.roa (raw, json)
Hash identifier: zYEhzRT094wqAKJWHvgjmY3pyHZXAmArQnN0tnikO4o=
Subject key identifier: B8:4A:05:A1:07:F8:AF:44:D2:DE:0B:D1:64:BC:8D:9C:1B:CB:1A:B8
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 85BE
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/BB1A1178038911EFB029583C017001B1.roa
Signing time: Fri 26 Apr 2024 04:59:16 +0000
ROA not before: Fri 26 Apr 2024 04:59:12 +0000
ROA not after: Sun 05 May 2024 04:59:12 +0000
asID: 141883
IP address blocks: 156.240.32.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 34238 (0x85be)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Apr 26 04:59:12 2024 GMT
Not After : May 5 04:59:12 2024 GMT
Subject: CN=662b34a4-47bf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:0e:a8:cf:9e:3b:3b:fc:e5:8b:45:a1:56:f5:
87:dc:5c:86:84:54:3e:a2:b2:64:c7:66:cc:18:85:
9a:c5:54:8c:19:b5:41:62:66:41:12:fb:90:58:2a:
2d:23:dc:77:42:ea:9b:eb:8d:93:b1:a5:43:35:31:
37:fc:d4:c0:b8:6a:a0:c7:74:f6:1a:2d:43:43:79:
1e:59:17:4a:4d:21:1b:72:7e:c3:c2:32:3b:48:e2:
61:33:6a:c5:fd:20:42:33:c1:25:a1:cc:b7:07:0d:
ee:c0:0a:ec:7a:c2:86:09:f6:23:07:fb:e2:4f:f1:
dc:03:16:90:ef:38:6a:f1:b7:74:1b:e4:8f:bb:1f:
6b:d0:4d:8d:62:45:71:e6:91:2d:df:6c:e3:04:d6:
08:14:bd:02:a6:e8:6c:49:64:26:36:6a:82:d5:03:
90:95:1f:40:13:3d:30:5f:8b:e0:fe:d6:38:3c:0c:
56:3f:1f:fb:bb:c8:63:c3:55:17:28:25:c6:2d:81:
aa:cb:ba:82:46:f8:05:ff:bb:91:12:f2:d4:6a:2e:
0f:69:33:3c:da:d4:2e:21:c0:44:64:65:18:1c:08:
a2:8b:33:fd:6d:c1:c3:12:b3:26:8a:73:7c:c1:2a:
51:d2:23:cf:a3:f3:db:1b:ed:55:ee:e7:bd:4f:6f:
f6:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:4A:05:A1:07:F8:AF:44:D2:DE:0B:D1:64:BC:8D:9C:1B:CB:1A:B8
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/BB1A1178038911EFB029583C017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.240.32.0/20
Signature Algorithm: sha256WithRSAEncryption
8a:d4:73:79:ce:b1:35:8b:db:80:ca:e8:66:4d:09:25:98:9b:
b6:0b:b6:93:9d:cd:56:a7:c7:41:a6:23:d6:84:8f:47:7d:ae:
da:d9:36:a2:15:b3:43:ca:f0:ac:db:1b:92:e0:1d:d4:19:51:
ae:bf:12:37:cb:b0:b5:31:b7:3e:82:d9:df:14:89:a1:14:7f:
41:be:2e:c1:86:b5:28:5a:ab:b4:ed:0d:75:75:46:0a:7b:1c:
70:5a:6c:2a:a1:e7:d8:78:0f:bd:bd:a7:e8:5d:23:e9:5d:16:
76:1d:19:07:e2:39:cb:ec:84:9d:67:4c:97:15:9d:20:11:2a:
43:2b:2b:fc:22:21:b5:92:5a:0c:ff:97:11:e3:6b:67:fb:98:
af:d8:7e:8a:9e:1b:18:39:95:dd:03:2b:6b:8f:c0:20:b5:eb:
23:5d:39:d0:3e:54:e2:7a:ea:a7:5a:a9:ac:74:c9:03:3f:71:
0d:5b:de:c8:4e:5e:a3:cd:3e:a8:c8:24:96:33:f8:75:2c:0c:
d1:3d:a7:b5:2e:72:c9:6b:c3:d1:19:2e:38:1c:88:f4:f5:b4:
98:b1:82:c9:0a:22:23:56:6e:51:15:b6:90:b7:5f:90:75:05:
a9:b0:56:a8:bf:fb:3b:84:f2:32:bb:d9:ea:a7:aa:71:5f:27:
2a:41:4f:db
-----BEGIN CERTIFICATE-----
MIIFgTCCBGmgAwIBAgIDAIW+MA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQVIxMTAvBgNVBAUTKDc5N0Q4OEQ4MTNFMjBGRkY5ODJDQzc0MTlFOTY5
QkFFQTZCRkQ2OUIwHhcNMjQwNDI2MDQ1OTEyWhcNMjQwNTA1MDQ1OTEyWjAYMRYw
FAYDVQQDEw02NjJiMzRhNC00N2JmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEA1A6oz547O/zli0WhVvWH3FyGhFQ+orJkx2bMGIWaxVSMGbVBYmZBEvuQ
WCotI9x3Quqb642TsaVDNTE3/NTAuGqgx3T2Gi1DQ3keWRdKTSEbcn7DwjI7SOJh
M2rF/SBCM8Elocy3Bw3uwArsesKGCfYjB/viT/HcAxaQ7zhq8bd0G+SPux9r0E2N
YkVx5pEt32zjBNYIFL0CpuhsSWQmNmqC1QOQlR9AEz0wX4vg/tY4PAxWPx/7u8hj
w1UXKCXGLYGqy7qCRvgF/7uREvLUai4PaTM82tQuIcBEZGUYHAiiizP9bcHDErMm
inN8wSpR0iPPo/PbG+1V7ue9T2/2iQIDAQABo4ICojCCAp4wHQYDVR0OBBYEFLhK
BaEH+K9E0t4L0WS8jZwbyxq4MB8GA1UdIwQYMBaAFHl9iNgT4g//mCzHQZ6Wm66m
v9abMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFFQTIyOC9lWDJJ
MkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY3JsMGQGCCsGAQUFBwEBBFgwVjBUBggr
BgEFBQcwAoZIcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYXJp
bi9lWDJJMkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY2VyME8GA1UdIAEB/wRFMEMw
QQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmluaWMu
bmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYBBQUH
MAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJf
cmVwb3NpdG9yeS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFF
QTIyOC9CQjFBMTE3ODAzODkxMUVGQjAyOTU4M0MwMTcwMDFCMS5yb2EwNQYIKwYB
BQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1s
MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQEnPAgMA0GCSqGSIb3DQEBCwUA
A4IBAQCK1HN5zrE1i9uAyuhmTQklmJu2C7aTnc1Wp8dBpiPWhI9Hfa7a2TaiFbND
yvCs2xuS4B3UGVGuvxI3y7C1Mbc+gtnfFImhFH9Bvi7BhrUoWqu07Q11dUYKexxw
WmwqoefYeA+9vafoXSPpXRZ2HRkH4jnL7ISdZ0yXFZ0gESpDKyv8IiG1kloM/5cR
42tn+5iv2H6KnhsYOZXdAytrj8AgtesjXTnQPlTieuqnWqmsdMkDP3ENW97ITl6j
zT6oyCSWM/h1LAzRPae1LnLJa8PRGS44HIj09bSYsYLJCiIjVm5RFbaQt1+QdQWp
sFaov/s7hPIyu9nqp6pxXycqQU/b
-----END CERTIFICATE-----
Generated at Mon May 6 02:29:26 2024 by rpki-client on console-fra.rpki-client.org