Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/D623D9647F0C11EFB3E51144762E951A.roa
File: D623D9647F0C11EFB3E51144762E951A.roa (raw, json)
Hash identifier: 5cilbWOypuYQzb+eCI+Sg2PwyyNAHg6+HEE2lUnuJBw=
Subject key identifier: 1C:EA:BE:FB:53:0E:02:1A:08:28:84:36:9C:E9:A7:6D:00:6D:80:7C
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: BDA9
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/D623D9647F0C11EFB3E51144762E951A.roa
Signing time: Mon 30 Sep 2024 09:17:38 +0000
ROA not before: Mon 30 Sep 2024 09:17:34 +0000
ROA not after: Thu 21 Nov 2024 09:17:34 +0000
asID: 63139
IP address blocks: 156.227.9.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 48553 (0xbda9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Sep 30 09:17:34 2024 GMT
Not After : Nov 21 09:17:34 2024 GMT
Subject: CN=66fa6cb2-39b8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:99:13:c8:de:e4:fc:4e:da:73:08:3f:21:9a:
06:1b:ce:32:df:8a:4b:85:b3:18:46:9a:44:9d:95:
bc:86:22:e6:9a:ca:0b:26:1d:64:73:19:db:f1:1a:
6f:97:14:90:f3:52:2d:98:de:6d:f2:4f:53:af:e1:
bf:d2:57:1d:f4:67:ae:9f:c5:bc:56:24:9c:53:36:
51:e9:20:c4:fb:52:46:e2:e8:33:21:2d:7f:36:c0:
61:79:7d:e3:f8:bc:a4:f6:11:51:52:5d:80:0e:8e:
ee:6f:bb:1b:d3:86:a7:4b:86:87:fa:ae:cb:a3:44:
b4:a0:3d:58:c6:14:68:a8:ac:43:b4:ab:b4:36:85:
2b:25:c3:e0:3a:77:98:a8:9d:0c:a6:e8:ed:eb:b8:
73:24:19:f4:fb:bd:78:20:3f:a8:5a:9a:32:ed:1a:
3d:88:50:89:31:70:15:f8:8f:09:86:41:53:6d:0e:
28:02:91:49:2d:29:30:80:ed:4c:9a:b3:25:88:2e:
93:72:38:fd:24:41:59:4a:e7:77:de:06:13:7d:71:
a0:d1:08:24:53:61:78:91:05:e6:b8:be:32:24:e6:
31:6d:c5:ed:50:cf:d0:61:32:77:4e:ea:a5:af:c8:
73:01:f5:26:ac:fe:b2:0e:91:f4:8d:03:06:65:3d:
35:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:EA:BE:FB:53:0E:02:1A:08:28:84:36:9C:E9:A7:6D:00:6D:80:7C
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/D623D9647F0C11EFB3E51144762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.227.9.0/24
Signature Algorithm: sha256WithRSAEncryption
b6:05:27:85:8c:bb:ea:a7:a6:bb:34:60:04:d9:dd:a1:18:5a:
46:9c:a2:f5:8c:f8:c6:ed:40:39:0d:09:87:20:b3:7e:01:9b:
27:14:54:17:c1:ed:04:a9:ad:05:5d:19:e9:7d:27:ba:55:dd:
11:81:1b:a0:96:d0:c5:36:f4:85:10:dc:26:ac:eb:6e:c0:5e:
c5:bc:4a:ac:6e:70:db:ee:91:2e:66:c0:7a:64:f9:20:60:0c:
ca:19:a6:4f:0e:79:97:63:6a:75:76:14:ed:56:d2:7a:ff:b4:
36:5c:44:d3:59:d0:cb:be:2e:63:5f:a6:19:be:10:f1:96:25:
42:37:b7:b1:24:f0:f0:97:9f:04:aa:2e:44:6b:c5:0f:4d:c4:
76:0c:63:fc:5e:d8:4e:8d:8f:75:95:c7:47:2e:f4:b0:86:dd:
66:01:5a:5c:6f:31:48:ab:91:35:60:55:b8:f7:af:6c:a2:70:
53:dd:e6:9f:9e:f6:20:0d:7f:14:69:22:ff:5f:8f:50:0e:4d:
1f:6b:94:48:36:2d:17:92:e6:f9:0f:c4:03:a9:fd:34:f4:cf:
8e:3f:68:fb:9f:46:e1:b5:e1:e6:75:ab:8a:e2:7d:89:db:2b:
de:fe:7a:e2:43:74:d7:ee:dc:c6:c8:42:10:42:ee:67:60:86:
0f:5d:96:ec
-----BEGIN CERTIFICATE-----
MIIFgTCCBGmgAwIBAgIDAL2pMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQVIxMTAvBgNVBAUTKDc5N0Q4OEQ4MTNFMjBGRkY5ODJDQzc0MTlFOTY5
QkFFQTZCRkQ2OUIwHhcNMjQwOTMwMDkxNzM0WhcNMjQxMTIxMDkxNzM0WjAYMRYw
FAYDVQQDEw02NmZhNmNiMi0zOWI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEA2JkTyN7k/E7acwg/IZoGG84y34pLhbMYRppEnZW8hiLmmsoLJh1kcxnb
8RpvlxSQ81ItmN5t8k9Tr+G/0lcd9Geun8W8ViScUzZR6SDE+1JG4ugzIS1/NsBh
eX3j+Lyk9hFRUl2ADo7ub7sb04anS4aH+q7Lo0S0oD1YxhRoqKxDtKu0NoUrJcPg
OneYqJ0Mpujt67hzJBn0+714ID+oWpoy7Ro9iFCJMXAV+I8JhkFTbQ4oApFJLSkw
gO1MmrMliC6Tcjj9JEFZSud33gYTfXGg0QgkU2F4kQXmuL4yJOYxbcXtUM/QYTJ3
Tuqlr8hzAfUmrP6yDpH0jQMGZT01YQIDAQABo4ICojCCAp4wHQYDVR0OBBYEFBzq
vvtTDgIaCCiENpzpp20AbYB8MB8GA1UdIwQYMBaAFHl9iNgT4g//mCzHQZ6Wm66m
v9abMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFFQTIyOC9lWDJJ
MkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY3JsMGQGCCsGAQUFBwEBBFgwVjBUBggr
BgEFBQcwAoZIcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYXJp
bi9lWDJJMkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY2VyME8GA1UdIAEB/wRFMEMw
QQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmluaWMu
bmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYBBQUH
MAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJf
cmVwb3NpdG9yeS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFF
QTIyOC9ENjIzRDk2NDdGMEMxMUVGQjNFNTExNDQ3NjJFOTUxQS5yb2EwNQYIKwYB
BQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1s
MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnOMJMA0GCSqGSIb3DQEBCwUA
A4IBAQC2BSeFjLvqp6a7NGAE2d2hGFpGnKL1jPjG7UA5DQmHILN+AZsnFFQXwe0E
qa0FXRnpfSe6Vd0RgRugltDFNvSFENwmrOtuwF7FvEqsbnDb7pEuZsB6ZPkgYAzK
GaZPDnmXY2p1dhTtVtJ6/7Q2XETTWdDLvi5jX6YZvhDxliVCN7exJPDwl58Eqi5E
a8UPTcR2DGP8XthOjY91lcdHLvSwht1mAVpcbzFIq5E1YFW4969sonBT3eafnvYg
DX8UaSL/X49QDk0fa5RINi0Xkub5D8QDqf009M+OP2j7n0bhteHmdauK4n2J2yve
/nriQ3TX7tzGyEIQQu5nYIYPXZbs
-----END CERTIFICATE-----
Generated at Thu Nov 21 11:05:49 2024 by rpki-client on console-fra.rpki-client.org