Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/D40888D8B36011ED99EA7AAFF1222468.roa
File: D40888D8B36011ED99EA7AAFF1222468.roa (raw, json)
Hash identifier: Z86X69XDcnsRSJgojVNCz6FIcKGu4H236EuPOXR6f1Y=
Subject key identifier: F8:F8:EF:54:03:17:F9:BB:AC:D2:38:03:B0:32:8A:FD:6F:95:25:0A
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 1C31
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/D40888D8B36011ED99EA7AAFF1222468.roa
Signing time: Thu 23 Feb 2023 09:59:58 +0000
ROA not before: Thu 23 Feb 2023 09:59:54 +0000
ROA not after: Mon 23 Oct 2023 09:59:54 +0000
asID: 133199
IP address blocks: 156.245.31.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7217 (0x1c31)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Feb 23 09:59:54 2023 GMT
Not After : Oct 23 09:59:54 2023 GMT
Subject: CN=63f7391d-24c1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:95:bc:2f:56:23:34:ed:ee:cd:0b:c2:71:a5:
b6:29:68:fd:6b:ee:34:50:8c:f5:29:d8:63:a4:33:
d7:b4:bc:93:bc:0e:07:df:cd:51:18:a2:65:fb:fa:
78:91:74:45:2b:65:79:85:26:3a:50:e7:eb:4d:bb:
f5:b6:cb:e4:47:e7:a6:5c:7c:53:c3:39:ac:1c:d5:
b5:43:3b:b7:b3:31:ec:92:84:26:55:31:72:c2:b2:
fe:93:83:68:ec:d0:06:08:42:81:50:87:6f:8c:a7:
0b:7e:32:dc:9e:85:c1:aa:40:a8:96:e5:b8:a6:7f:
04:df:57:5d:6e:2e:0c:5c:ca:24:0f:08:62:72:e9:
38:f4:f5:22:9c:97:bc:4b:ef:21:5a:75:f8:11:64:
83:ef:2d:9e:ca:74:8e:4a:bc:19:ac:78:4c:ab:0e:
e6:00:46:33:1e:ea:0f:4e:9a:0e:35:aa:87:3b:69:
4c:54:37:07:bc:21:47:9b:19:82:b9:30:df:1c:78:
13:f2:74:56:aa:58:08:a6:32:10:44:03:e6:33:b2:
01:fd:ef:9b:e2:67:60:cb:1c:38:03:c5:71:f1:32:
e2:8d:12:63:18:0f:43:04:b3:66:d1:8b:e8:14:5b:
b3:e9:f8:79:72:7d:f6:1f:8a:b6:4b:2a:31:ad:e9:
7f:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:F8:EF:54:03:17:F9:BB:AC:D2:38:03:B0:32:8A:FD:6F:95:25:0A
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/D40888D8B36011ED99EA7AAFF1222468.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.245.31.0/24
Signature Algorithm: sha256WithRSAEncryption
ba:5a:5b:3b:6a:d0:43:69:8e:5c:9a:a4:76:3b:a7:ca:02:f6:
79:d0:8d:92:c6:ab:f7:e0:1a:ad:52:c0:d2:be:20:76:c2:0b:
07:e2:cd:38:f4:ed:46:74:34:1d:35:ff:e4:47:62:a7:13:1b:
ed:43:16:50:d7:38:ef:a8:d8:82:bd:83:24:e2:73:37:6a:00:
fe:e0:62:60:62:71:2c:92:e6:4c:a5:10:f9:87:ed:93:a0:7a:
74:99:08:1a:27:50:5a:58:34:94:95:e5:25:1f:52:bf:6b:0b:
9d:f1:41:e9:7c:21:ba:5b:b8:f9:96:2d:46:12:8d:13:26:5d:
fb:1f:88:2f:83:ac:6c:a8:88:95:23:9c:6d:77:ee:55:6a:99:
e8:d4:ad:b5:d3:8d:d4:af:87:5c:34:ec:e1:51:eb:9d:6b:2e:
cf:43:69:66:61:96:b8:92:e9:e4:c5:af:d1:99:e5:c0:15:0d:
db:a1:cc:34:23:31:54:fa:64:e9:e1:35:a8:42:21:c6:0e:21:
ee:bd:bc:f5:cd:59:8e:3d:95:b1:52:c9:14:f2:1c:cb:c9:c4:
54:26:c6:cc:fe:40:7b:96:75:9b:eb:7d:c4:61:b3:69:06:14:
44:40:db:ba:63:37:5f:f5:17:8b:1b:e5:f5:5c:88:91:68:be:
68:a0:f2:0a
-----BEGIN CERTIFICATE-----
MIIFgDCCBGigAwIBAgICHDEwDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAwwKRjM2
OEYyRDBBUjExMC8GA1UEBRMoNzk3RDg4RDgxM0UyMEZGRjk4MkNDNzQxOUU5NjlC
QUVBNkJGRDY5QjAeFw0yMzAyMjMwOTU5NTRaFw0yMzEwMjMwOTU5NTRaMBgxFjAU
BgNVBAMMDTYzZjczOTFkLTI0YzEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQDjlbwvViM07e7NC8JxpbYpaP1r7jRQjPUp2GOkM9e0vJO8DgffzVEYomX7
+niRdEUrZXmFJjpQ5+tNu/W2y+RH56ZcfFPDOawc1bVDO7ezMeyShCZVMXLCsv6T
g2js0AYIQoFQh2+Mpwt+MtyehcGqQKiW5bimfwTfV11uLgxcyiQPCGJy6Tj09SKc
l7xL7yFadfgRZIPvLZ7KdI5KvBmseEyrDuYARjMe6g9Omg41qoc7aUxUNwe8IUeb
GYK5MN8ceBPydFaqWAimMhBEA+YzsgH975viZ2DLHDgDxXHxMuKNEmMYD0MEs2bR
i+gUW7Pp+HlyffYfirZLKjGt6X/JAgMBAAGjggKiMIICnjAdBgNVHQ4EFgQU+Pjv
VAMX+bus0jgDsDKK/W+VJQowHwYDVR0jBBgwFoAUeX2I2BPiD/+YLMdBnpabrqa/
1pswDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjhGMkQwLzkyRjg2RTFDNkUwNTExRThBMUI1ODU0QkY4QUVBMjI4L2VYMkky
QlBpRF8tWUxNZEJucGFicnFhXzFwcy5jcmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hcmlu
L2VYMkkyQlBpRF8tWUxNZEJucGFicnFhXzFwcy5jZXIwTwYDVR0gAQH/BEUwQzBB
BggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5pYy5u
ZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEFBQcw
C4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9y
ZXBvc2l0b3J5L0YzNjhGMkQwLzkyRjg2RTFDNkUwNTExRThBMUI1ODU0QkY4QUVB
MjI4L0Q0MDg4OEQ4QjM2MDExRUQ5OUVBN0FBRkYxMjIyNDY4LnJvYTA1BggrBgEF
BQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54bWww
HwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBACc9R8wDQYJKoZIhvcNAQELBQAD
ggEBALpaWztq0ENpjlyapHY7p8oC9nnQjZLGq/fgGq1SwNK+IHbCCwfizTj07UZ0
NB01/+RHYqcTG+1DFlDXOO+o2IK9gyTiczdqAP7gYmBicSyS5kylEPmH7ZOgenSZ
CBonUFpYNJSV5SUfUr9rC53xQel8IbpbuPmWLUYSjRMmXfsfiC+DrGyoiJUjnG13
7lVqmejUrbXTjdSvh1w07OFR651rLs9DaWZhlriS6eTFr9GZ5cAVDduhzDQjMVT6
ZOnhNahCIcYOIe69vPXNWY49lbFSyRTyHMvJxFQmxsz+QHuWdZvrfcRhs2kGFERA
27pjN1/1F4sb5fVciJFovmig8go=
-----END CERTIFICATE-----
Generated at Sun May 11 16:19:51 2025 by rpki-client