Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/F934B9EACE7C11EF96C20BB0762E951A.roa
File: F934B9EACE7C11EF96C20BB0762E951A.roa (raw, json)
Hash identifier: bu62JsaNQYVTKiKVRz5DGgWqqR7gW7iqmc9+ZHFXSe0=
Subject key identifier: D2:E3:BE:74:45:9F:53:F8:B2:F9:71:D0:BB:59:1A:CF:E2:58:ED:60
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 010364
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/F934B9EACE7C11EF96C20BB0762E951A.roa
Signing time: Thu 09 Jan 2025 11:29:23 +0000
ROA not before: Thu 09 Jan 2025 11:29:17 +0000
ROA not after: Sat 01 Feb 2025 11:29:17 +0000
asID: 17561
IP address blocks: 156.236.58.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 66404 (0x10364)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Jan 9 11:29:17 2025 GMT
Not After : Feb 1 11:29:17 2025 GMT
Subject: CN=677fb312-7c4e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:f1:48:85:88:73:e5:5b:6e:3e:23:2f:f8:69:
75:06:34:ee:e4:0c:de:54:f7:6e:f1:78:80:5c:0a:
67:f9:67:ea:0c:69:55:08:50:58:f7:f2:6e:40:07:
18:80:0e:bb:d9:45:9a:41:52:5b:5a:9d:96:86:6a:
d0:2b:6e:00:fa:b1:f0:ef:71:fe:60:a4:74:be:27:
2a:fb:0b:8c:79:fa:42:ce:b6:11:4a:7e:1b:e2:64:
bc:30:84:72:3f:70:8b:40:df:3d:31:5f:cb:b2:59:
21:df:b5:61:cb:3c:ba:d8:43:4d:a7:fe:f1:67:e4:
b8:75:7a:e7:39:e9:15:88:df:f7:0d:fd:fb:e2:11:
51:bc:d0:6d:6c:c3:0b:e0:69:fe:1a:97:8a:6c:a7:
34:ff:31:3d:8e:18:66:8f:c6:1a:ac:b0:1b:3b:5c:
1a:53:37:ff:73:61:22:57:30:c2:30:96:ee:6f:0d:
b0:72:ba:da:2d:7e:d7:77:76:8a:c0:e4:50:95:4f:
99:19:c9:4e:cd:3a:9c:c5:04:d3:b6:54:74:f1:93:
89:57:ba:bd:9e:4f:cd:62:38:ab:9f:03:50:69:dc:
8a:a7:99:aa:82:12:57:97:f8:5c:a1:dc:4d:2a:06:
34:b1:84:08:37:03:57:2b:b9:e8:fa:73:3a:bc:f1:
c7:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:E3:BE:74:45:9F:53:F8:B2:F9:71:D0:BB:59:1A:CF:E2:58:ED:60
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/F934B9EACE7C11EF96C20BB0762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.236.58.0/24
Signature Algorithm: sha256WithRSAEncryption
a1:6f:c0:df:16:08:90:5a:c6:09:87:83:4a:86:f0:35:3c:7b:
8f:1d:11:d4:f9:8c:13:28:79:e9:bb:92:49:0e:30:f7:69:09:
52:1f:9c:5e:c1:f6:81:3d:3a:bc:8c:a7:64:b9:2c:6d:a1:88:
89:97:5a:ae:6d:6d:32:4d:9b:f5:c6:8e:1a:a4:69:cf:2c:9b:
f1:0c:38:1d:20:4e:91:a7:d2:87:b2:e8:96:af:87:06:cb:07:
da:37:35:95:2f:df:62:f3:59:31:c5:53:7b:31:ae:43:b4:94:
78:e2:6b:11:05:fc:25:26:31:e4:e3:d9:ae:d1:2c:6f:6a:2b:
28:55:f0:27:8a:d5:4d:f3:a1:6d:21:18:b8:17:af:af:f0:3e:
ea:07:1b:d5:24:94:0e:90:69:fc:3a:fd:46:0a:66:01:55:71:
80:5c:c9:a4:3e:b0:4d:79:8f:44:ae:16:ed:f9:4f:c0:b6:2c:
73:61:74:0c:0f:5d:ad:39:a5:99:9e:2f:19:29:e6:a1:cb:c5:
c5:c5:41:df:f1:1d:16:d9:f7:7a:e9:57:3f:07:81:fc:13:2a:
58:07:d7:96:3a:e0:dd:34:da:8b:ef:0b:8f:df:1e:48:f9:a2:
d8:d8:7b:b9:fa:4b:90:f1:45:56:4a:78:ab:e6:5c:6d:51:3c:
e3:02:80:c0
-----BEGIN CERTIFICATE-----
MIIFgTCCBGmgAwIBAgIDAQNkMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQVIxMTAvBgNVBAUTKDc5N0Q4OEQ4MTNFMjBGRkY5ODJDQzc0MTlFOTY5
QkFFQTZCRkQ2OUIwHhcNMjUwMTA5MTEyOTE3WhcNMjUwMjAxMTEyOTE3WjAYMRYw
FAYDVQQDEw02NzdmYjMxMi03YzRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEA5PFIhYhz5VtuPiMv+Gl1BjTu5AzeVPdu8XiAXApn+WfqDGlVCFBY9/Ju
QAcYgA672UWaQVJbWp2WhmrQK24A+rHw73H+YKR0vicq+wuMefpCzrYRSn4b4mS8
MIRyP3CLQN89MV/Lslkh37Vhyzy62ENNp/7xZ+S4dXrnOekViN/3Df374hFRvNBt
bMML4Gn+GpeKbKc0/zE9jhhmj8YarLAbO1waUzf/c2EiVzDCMJbubw2wcrraLX7X
d3aKwORQlU+ZGclOzTqcxQTTtlR08ZOJV7q9nk/NYjirnwNQadyKp5mqghJXl/hc
odxNKgY0sYQINwNXK7no+nM6vPHHDQIDAQABo4ICojCCAp4wHQYDVR0OBBYEFNLj
vnRFn1P4svlx0LtZGs/iWO1gMB8GA1UdIwQYMBaAFHl9iNgT4g//mCzHQZ6Wm66m
v9abMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFFQTIyOC9lWDJJ
MkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY3JsMGQGCCsGAQUFBwEBBFgwVjBUBggr
BgEFBQcwAoZIcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYXJp
bi9lWDJJMkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY2VyME8GA1UdIAEB/wRFMEMw
QQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmluaWMu
bmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYBBQUH
MAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJf
cmVwb3NpdG9yeS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFF
QTIyOC9GOTM0QjlFQUNFN0MxMUVGOTZDMjBCQjA3NjJFOTUxQS5yb2EwNQYIKwYB
BQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1s
MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnOw6MA0GCSqGSIb3DQEBCwUA
A4IBAQChb8DfFgiQWsYJh4NKhvA1PHuPHRHU+YwTKHnpu5JJDjD3aQlSH5xewfaB
PTq8jKdkuSxtoYiJl1qubW0yTZv1xo4apGnPLJvxDDgdIE6Rp9KHsuiWr4cGywfa
NzWVL99i81kxxVN7Ma5DtJR44msRBfwlJjHk49mu0SxvaisoVfAnitVN86FtIRi4
F6+v8D7qBxvVJJQOkGn8Ov1GCmYBVXGAXMmkPrBNeY9Erhbt+U/AtixzYXQMD12t
OaWZni8ZKeahy8XFxUHf8R0W2fd66Vc/B4H8EypYB9eWOuDdNNqL7wuP3x5I+aLY
2Hu5+kuQ8UVWSnir5lxtUTzjAoDA
-----END CERTIFICATE-----
Generated at Wed Feb 5 09:59:19 2025 by rpki-client