Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/ED6AFA8ABA2611EFA4F42049762E951A.roa
File: ED6AFA8ABA2611EFA4F42049762E951A.roa (raw, json)
Hash identifier: FNrP3PVdl9jQJ9G1ghB8qx5u8B+EMVbXo6w/0b7uo14=
Subject key identifier: 22:A4:EF:15:DC:B3:A6:8A:81:28:20:63:19:4F:80:2E:A2:F9:81:EC
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: E3A0
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/ED6AFA8ABA2611EFA4F42049762E951A.roa
Signing time: Sat 14 Dec 2024 14:23:03 +0000
ROA not before: Sat 14 Dec 2024 14:22:59 +0000
ROA not after: Mon 20 Jan 2025 14:22:59 +0000
asID: 213828
IP address blocks: 156.253.229.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 58272 (0xe3a0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Dec 14 14:22:59 2024 GMT
Not After : Jan 20 14:22:59 2025 GMT
Subject: CN=675d94c7-9f71
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:fd:b6:d3:b9:c6:cd:ae:9c:d0:70:eb:73:a8:
32:d1:b0:59:bc:9e:7e:6e:95:c2:b0:1a:ad:d4:d6:
eb:24:5b:fe:52:1f:86:df:89:6b:b2:37:25:2d:ce:
de:e9:60:ac:e5:dc:ac:b7:20:a8:6c:79:ac:60:60:
60:5a:41:2b:ac:14:e9:f0:cc:8d:82:fe:d4:a1:03:
88:32:ca:8e:ea:c5:e7:6a:e2:be:42:64:b7:62:4e:
4d:e2:55:22:76:1c:e4:67:46:4a:cf:bb:25:55:69:
89:99:85:3a:1e:5c:7a:af:26:8e:42:d0:46:af:4e:
b6:1c:49:94:6d:87:5c:30:1d:a2:1b:d9:2f:a5:81:
02:62:d7:b0:ef:f1:96:24:6a:ac:f8:25:f8:1b:88:
3b:f5:a5:4a:1c:fc:98:cd:94:c1:03:6f:80:b3:7f:
6f:9e:2a:20:9c:c9:bc:ac:02:81:fb:35:f5:82:d7:
d7:a4:25:fc:b2:a6:eb:d4:72:1a:dd:27:98:a0:87:
87:57:65:ae:10:d7:bb:84:4b:6a:a3:94:b6:50:7a:
a0:c8:a0:e6:f5:b2:9c:ed:43:65:86:f5:ce:10:fd:
94:67:de:f0:30:1a:44:e0:97:d0:2c:8f:00:84:3e:
b9:e4:40:73:e2:8c:fc:fe:7e:3f:ea:4b:2b:dd:a2:
2a:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:A4:EF:15:DC:B3:A6:8A:81:28:20:63:19:4F:80:2E:A2:F9:81:EC
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/ED6AFA8ABA2611EFA4F42049762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.253.229.0/24
Signature Algorithm: sha256WithRSAEncryption
75:4d:46:a7:8b:c2:ae:aa:78:4d:fb:24:b3:03:e5:20:16:b3:
8b:ba:96:17:d9:19:d0:70:ba:0c:84:36:b4:43:0e:98:4f:e7:
92:4d:33:5e:87:9a:f3:07:1f:85:e2:ba:16:d5:69:46:cc:61:
b4:cc:b6:5f:91:ba:ee:d9:cb:ad:0b:b6:b6:d5:fb:21:9a:19:
32:0a:27:04:73:ab:be:fe:fc:b2:43:21:b1:52:36:3a:8f:cc:
8a:5b:ff:3a:41:03:13:c8:b3:0d:4f:d4:89:17:38:f3:00:49:
22:ca:cf:83:a2:0b:62:6d:84:16:01:28:6e:77:ac:74:12:49:
72:16:fd:54:f2:41:a9:12:0f:b6:a2:d9:32:26:e8:b0:1c:20:
d7:bf:7a:2e:1f:4b:51:89:40:13:5c:6d:bb:1f:1e:8a:05:22:
c1:db:56:b7:82:80:11:6a:90:5e:61:bb:f2:5b:56:bd:0f:b0:
c1:89:73:23:23:8d:72:ce:b0:89:2f:01:0e:c0:cf:d5:9b:a7:
f7:43:9b:4b:c5:f2:0c:ef:ff:60:37:fc:54:f5:33:75:62:4c:
9b:bb:ce:cf:c0:5a:76:20:2c:88:78:9d:00:b7:a3:54:9f:60:
50:85:4e:c9:f5:b6:26:86:f7:45:ec:6f:1d:3c:43:cd:03:c4:
ad:a3:be:c7
-----BEGIN CERTIFICATE-----
MIIFgTCCBGmgAwIBAgIDAOOgMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQVIxMTAvBgNVBAUTKDc5N0Q4OEQ4MTNFMjBGRkY5ODJDQzc0MTlFOTY5
QkFFQTZCRkQ2OUIwHhcNMjQxMjE0MTQyMjU5WhcNMjUwMTIwMTQyMjU5WjAYMRYw
FAYDVQQDEw02NzVkOTRjNy05ZjcxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAtf2207nGza6c0HDrc6gy0bBZvJ5+bpXCsBqt1NbrJFv+Uh+G34lrsjcl
Lc7e6WCs5dystyCobHmsYGBgWkErrBTp8MyNgv7UoQOIMsqO6sXnauK+QmS3Yk5N
4lUidhzkZ0ZKz7slVWmJmYU6Hlx6ryaOQtBGr062HEmUbYdcMB2iG9kvpYECYtew
7/GWJGqs+CX4G4g79aVKHPyYzZTBA2+As39vniognMm8rAKB+zX1gtfXpCX8sqbr
1HIa3SeYoIeHV2WuENe7hEtqo5S2UHqgyKDm9bKc7UNlhvXOEP2UZ97wMBpE4JfQ
LI8AhD655EBz4oz8/n4/6ksr3aIqCQIDAQABo4ICojCCAp4wHQYDVR0OBBYEFCKk
7xXcs6aKgSggYxlPgC6i+YHsMB8GA1UdIwQYMBaAFHl9iNgT4g//mCzHQZ6Wm66m
v9abMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFFQTIyOC9lWDJJ
MkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY3JsMGQGCCsGAQUFBwEBBFgwVjBUBggr
BgEFBQcwAoZIcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYXJp
bi9lWDJJMkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY2VyME8GA1UdIAEB/wRFMEMw
QQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmluaWMu
bmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYBBQUH
MAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJf
cmVwb3NpdG9yeS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFF
QTIyOC9FRDZBRkE4QUJBMjYxMUVGQTRGNDIwNDk3NjJFOTUxQS5yb2EwNQYIKwYB
BQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1s
MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnP3lMA0GCSqGSIb3DQEBCwUA
A4IBAQB1TUani8KuqnhN+ySzA+UgFrOLupYX2RnQcLoMhDa0Qw6YT+eSTTNeh5rz
Bx+F4roW1WlGzGG0zLZfkbru2cutC7a21fshmhkyCicEc6u+/vyyQyGxUjY6j8yK
W/86QQMTyLMNT9SJFzjzAEkiys+DogtibYQWAShud6x0EklyFv1U8kGpEg+2otky
JuiwHCDXv3ouH0tRiUATXG27Hx6KBSLB21a3goARapBeYbvyW1a9D7DBiXMjI41y
zrCJLwEOwM/Vm6f3Q5tLxfIM7/9gN/xU9TN1Ykybu87PwFp2ICyIeJ0At6NUn2BQ
hU7J9bYmhvdF7G8dPEPNA8Sto77H
-----END CERTIFICATE-----
Generated at Wed Feb 5 09:45:12 2025 by rpki-client