Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/E53068B6B49D11EFA9B90773762E951A.roa
File: E53068B6B49D11EFA9B90773762E951A.roa (raw, json)
Hash identifier: Dc09LcRG2ynbkNZyzH+D9ThL6ICga6xT95rqFto9bPc=
Subject key identifier: D0:6D:7A:29:92:DF:50:E2:D5:56:91:6F:2E:B1:3A:70:B4:53:6C:D1
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: E090
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/E53068B6B49D11EFA9B90773762E951A.roa
Signing time: Sat 07 Dec 2024 13:19:32 +0000
ROA not before: Sat 07 Dec 2024 13:19:28 +0000
ROA not after: Wed 15 Jan 2025 13:19:28 +0000
asID: 138915
IP address blocks: 156.244.54.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 57488 (0xe090)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Dec 7 13:19:28 2024 GMT
Not After : Jan 15 13:19:28 2025 GMT
Subject: CN=67544b64-a3db
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:c9:0f:e1:5f:dd:7b:bc:8a:61:2b:11:6a:f8:
16:a2:68:33:a9:4d:35:94:f2:97:4f:96:7e:d7:54:
15:57:07:0f:f2:e4:cc:1c:e5:08:05:97:7f:56:0f:
b5:63:76:2e:12:36:ee:aa:92:f7:03:f2:b6:d3:34:
a1:a7:4f:68:9f:94:72:4b:ae:42:ef:e3:ab:53:43:
b7:3d:d0:74:47:83:48:0a:c3:46:97:79:4a:4a:a3:
a2:99:9a:12:68:53:b1:0a:75:fd:58:71:41:14:71:
ad:f9:3b:37:d3:2f:4b:c4:d3:21:4c:94:77:79:79:
03:b9:6b:9b:24:60:52:da:3d:36:3c:69:31:59:55:
b8:4b:f9:1b:2c:93:b2:f8:73:de:12:69:53:fc:2e:
a3:a7:30:b1:b0:d5:37:fb:7c:8b:a7:3f:bb:43:66:
9f:d7:c9:ab:bf:22:b8:15:3e:4b:6a:05:27:28:38:
4c:b6:de:49:73:c1:69:9d:0e:96:22:4c:67:75:2c:
9b:d0:91:a7:27:c3:d4:2c:b9:ef:ef:b2:9a:ee:50:
c6:2e:f1:07:f5:a7:73:43:fc:34:ab:f1:db:40:22:
2f:6c:5a:ba:77:f4:6a:06:1d:1c:e3:83:0d:cf:06:
90:98:a6:c9:cb:a4:df:54:a6:75:06:a1:20:8e:4f:
b9:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:6D:7A:29:92:DF:50:E2:D5:56:91:6F:2E:B1:3A:70:B4:53:6C:D1
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/E53068B6B49D11EFA9B90773762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.244.54.0/24
Signature Algorithm: sha256WithRSAEncryption
4b:a1:ec:1d:6f:3e:37:36:e8:77:b4:9d:f0:2c:7f:4f:21:53:
69:80:33:23:5e:07:3c:b2:b0:60:2a:a8:71:35:67:19:d3:76:
fe:a1:5a:30:70:9a:13:5b:37:e5:33:0e:57:7d:f1:fe:27:fb:
a0:2a:fe:30:57:86:59:7e:ec:73:25:e2:de:0a:d5:cf:67:68:
35:65:7a:b0:5c:62:ed:c0:5a:07:bb:e8:39:56:86:3d:9c:36:
43:45:b8:00:34:da:be:b9:4c:b7:f7:88:99:08:3c:73:0f:49:
1d:ea:86:95:d0:1c:90:ba:e2:92:24:aa:c2:e5:0e:04:d1:2d:
c7:02:29:f6:7a:5b:7d:cc:aa:54:ac:54:b7:cb:41:28:9f:b7:
16:d9:96:eb:25:66:c2:71:51:43:e6:17:8e:03:53:7e:bb:ce:
60:45:38:17:1d:ff:de:97:1e:3e:9a:6c:91:3d:1b:2b:99:17:
75:b3:3c:b9:83:4a:f1:d8:1b:fc:9e:c4:aa:59:aa:6e:8e:0a:
07:79:bc:cb:aa:a0:b1:ae:2e:3e:f5:c8:5c:34:db:52:74:5a:
64:da:16:a4:7a:d9:25:8c:54:52:47:73:11:77:73:29:b5:23:
d1:6d:48:63:7f:d2:e7:1a:fc:81:df:77:ac:cf:43:e1:50:fa:
e4:90:3b:ab
-----BEGIN CERTIFICATE-----
MIIFgTCCBGmgAwIBAgIDAOCQMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQVIxMTAvBgNVBAUTKDc5N0Q4OEQ4MTNFMjBGRkY5ODJDQzc0MTlFOTY5
QkFFQTZCRkQ2OUIwHhcNMjQxMjA3MTMxOTI4WhcNMjUwMTE1MTMxOTI4WjAYMRYw
FAYDVQQDEw02NzU0NGI2NC1hM2RiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAz8kP4V/de7yKYSsRavgWomgzqU01lPKXT5Z+11QVVwcP8uTMHOUIBZd/
Vg+1Y3YuEjbuqpL3A/K20zShp09on5RyS65C7+OrU0O3PdB0R4NICsNGl3lKSqOi
mZoSaFOxCnX9WHFBFHGt+Ts30y9LxNMhTJR3eXkDuWubJGBS2j02PGkxWVW4S/kb
LJOy+HPeEmlT/C6jpzCxsNU3+3yLpz+7Q2af18mrvyK4FT5LagUnKDhMtt5Jc8Fp
nQ6WIkxndSyb0JGnJ8PULLnv77Ka7lDGLvEH9adzQ/w0q/HbQCIvbFq6d/RqBh0c
44MNzwaQmKbJy6TfVKZ1BqEgjk+5iQIDAQABo4ICojCCAp4wHQYDVR0OBBYEFNBt
eimS31Di1VaRby6xOnC0U2zRMB8GA1UdIwQYMBaAFHl9iNgT4g//mCzHQZ6Wm66m
v9abMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFFQTIyOC9lWDJJ
MkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY3JsMGQGCCsGAQUFBwEBBFgwVjBUBggr
BgEFBQcwAoZIcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYXJp
bi9lWDJJMkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY2VyME8GA1UdIAEB/wRFMEMw
QQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmluaWMu
bmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYBBQUH
MAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJf
cmVwb3NpdG9yeS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFF
QTIyOC9FNTMwNjhCNkI0OUQxMUVGQTlCOTA3NzM3NjJFOTUxQS5yb2EwNQYIKwYB
BQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1s
MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnPQ2MA0GCSqGSIb3DQEBCwUA
A4IBAQBLoewdbz43Nuh3tJ3wLH9PIVNpgDMjXgc8srBgKqhxNWcZ03b+oVowcJoT
WzflMw5XffH+J/ugKv4wV4ZZfuxzJeLeCtXPZ2g1ZXqwXGLtwFoHu+g5VoY9nDZD
RbgANNq+uUy394iZCDxzD0kd6oaV0ByQuuKSJKrC5Q4E0S3HAin2elt9zKpUrFS3
y0Eon7cW2ZbrJWbCcVFD5heOA1N+u85gRTgXHf/elx4+mmyRPRsrmRd1szy5g0rx
2Bv8nsSqWapujgoHebzLqqCxri4+9chcNNtSdFpk2haketkljFRSR3MRd3MptSPR
bUhjf9LnGvyB33esz0PhUPrkkDur
-----END CERTIFICATE-----
Generated at Wed Feb 5 09:48:55 2025 by rpki-client