Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36939A6/AD94AA20B5FD11EDBFBA63F1F1222468/DF7AEE6AB60111EDB60D4B7FF1222468.roa
File: DF7AEE6AB60111EDB60D4B7FF1222468.roa (raw, json)
Hash identifier: 5eHJWzslWU2OUHXBNFxSi+mf4q8/ujbnYujcLPZBHzg=
Subject key identifier: F6:FE:01:63:C3:E9:A3:8B:1D:9A:14:27:D9:67:91:2E:BA:9A:92:11
Certificate issuer: /CN=F36939A6AR/serialNumber=8ADAFF187722DEEBB0DDCE057BF3C298D02C7CCE
Certificate serial: 02
Authority key identifier: 8A:DA:FF:18:77:22:DE:EB:B0:DD:CE:05:7B:F3:C2:98:D0:2C:7C:CE
Authority info access: rsync://rpki.afrinic.net/repository/arin/itr_GHci3uuw3c4Fe_PCmNAsfM4.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36939A6/AD94AA20B5FD11EDBFBA63F1F1222468/DF7AEE6AB60111EDB60D4B7FF1222468.roa
Signing time: Sun 26 Feb 2023 18:17:48 +0000
ROA not before: Sun 26 Feb 2023 18:17:44 +0000
ROA not after: Sun 31 Mar 2024 18:17:44 +0000
asID: 328225
IP address blocks: 156.0.232.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2 (0x2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36939A6AR/serialNumber=8ADAFF187722DEEBB0DDCE057BF3C298D02C7CCE
Validity
Not Before: Feb 26 18:17:44 2023 GMT
Not After : Mar 31 18:17:44 2024 GMT
Subject: CN=63fba24c-bd2f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:69:a9:d0:2e:eb:77:7e:50:f4:9e:e0:d9:0e:
93:e0:ff:54:ce:13:92:32:7a:08:00:e6:f1:8b:6c:
63:82:a1:1b:bf:6f:0c:46:69:61:22:ea:7d:20:a5:
6f:47:cb:13:10:51:7c:5b:b4:a7:8d:04:ca:8d:12:
ff:fb:6c:80:0c:c3:b3:e8:28:49:d3:ac:40:a0:45:
17:04:7f:24:d3:48:24:36:c5:d4:71:f8:b6:51:d5:
db:e7:15:56:8e:5f:0f:b7:9c:3c:44:0c:81:b8:11:
80:ea:59:18:59:a0:ae:e4:6f:93:f8:7e:37:fd:ec:
6f:4b:d5:19:5f:f9:7a:7f:81:1d:04:37:42:f8:68:
66:7e:be:96:2e:8a:20:0d:06:0f:3b:09:5f:38:c6:
5c:8d:a7:bf:8e:7b:bd:04:e8:4e:25:53:a2:ed:b5:
ae:b5:e1:04:96:b5:de:b7:14:a8:37:5f:70:53:55:
77:44:d7:45:db:a8:d0:7d:7c:70:90:cc:06:41:a2:
70:1e:c8:95:ca:e9:f1:de:83:06:2a:20:6f:7e:0a:
47:48:e9:b4:6f:b2:e9:9b:e7:96:24:4e:fc:b2:e5:
85:23:95:9e:63:e5:a9:ca:a7:d3:6d:0e:20:2d:6a:
57:3a:59:21:77:c5:b0:dc:74:bd:08:0c:87:d2:b5:
7a:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:FE:01:63:C3:E9:A3:8B:1D:9A:14:27:D9:67:91:2E:BA:9A:92:11
X509v3 Authority Key Identifier:
keyid:8A:DA:FF:18:77:22:DE:EB:B0:DD:CE:05:7B:F3:C2:98:D0:2C:7C:CE
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36939A6/AD94AA20B5FD11EDBFBA63F1F1222468/itr_GHci3uuw3c4Fe_PCmNAsfM4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/itr_GHci3uuw3c4Fe_PCmNAsfM4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36939A6/AD94AA20B5FD11EDBFBA63F1F1222468/DF7AEE6AB60111EDB60D4B7FF1222468.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.0.232.0/23
Signature Algorithm: sha256WithRSAEncryption
37:ed:0b:ee:22:1f:8a:12:4a:87:c4:e1:df:14:7e:ce:64:15:
b6:36:15:f8:40:95:c5:d8:fa:12:57:53:36:75:63:29:eb:b9:
0e:4f:f8:bf:28:19:77:f4:c3:30:a5:9a:7d:57:8f:3d:1c:66:
ad:ff:b6:38:3b:87:b0:8c:64:f1:20:ff:c1:0e:bf:21:7c:98:
35:a0:a8:8c:54:df:52:99:f3:06:ab:b4:d8:a9:7d:df:f2:32:
3e:4b:34:47:9c:76:bc:3a:c3:a8:2e:7c:6d:dd:aa:89:30:70:
72:59:47:82:f2:c7:16:25:fb:48:f8:dc:14:a8:dd:af:be:60:
dd:fb:7c:07:f1:15:fd:52:cf:9d:2c:1f:12:8b:ce:4e:03:27:
87:1a:a8:d1:cd:12:f6:0d:5e:e2:26:25:22:07:4b:5d:fc:86:
42:59:32:4d:0a:45:95:fb:56:67:aa:3f:ca:7a:e5:c8:56:31:
e3:db:8c:61:a2:0e:2f:43:9a:8e:0f:89:66:9b:02:59:9c:31:
2d:46:8a:15:84:11:5f:32:6c:f8:de:56:b0:46:13:17:e3:e0:
bb:e6:f3:22:89:56:19:df:bb:f6:1e:11:5d:bf:e9:2b:53:82:
de:71:af:6e:3b:2a:ce:ec:28:d9:45:03:f9:50:ad:31:b6:75:
9e:58:bb:d9
-----BEGIN CERTIFICATE-----
MIIFfzCCBGegAwIBAgIBAjANBgkqhkiG9w0BAQsFADBIMRMwEQYDVQQDDApGMzY5
MzlBNkFSMTEwLwYDVQQFEyg4QURBRkYxODc3MjJERUVCQjBERENFMDU3QkYzQzI5
OEQwMkM3Q0NFMB4XDTIzMDIyNjE4MTc0NFoXDTI0MDMzMTE4MTc0NFowGDEWMBQG
A1UEAwwNNjNmYmEyNGMtYmQyZjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC
ggEBAM9pqdAu63d+UPSe4NkOk+D/VM4TkjJ6CADm8YtsY4KhG79vDEZpYSLqfSCl
b0fLExBRfFu0p40Eyo0S//tsgAzDs+goSdOsQKBFFwR/JNNIJDbF1HH4tlHV2+cV
Vo5fD7ecPEQMgbgRgOpZGFmgruRvk/h+N/3sb0vVGV/5en+BHQQ3QvhoZn6+li6K
IA0GDzsJXzjGXI2nv457vQToTiVTou21rrXhBJa13rcUqDdfcFNVd0TXRduo0H18
cJDMBkGicB7Ilcrp8d6DBiogb34KR0jptG+y6ZvnliRO/LLlhSOVnmPlqcqn020O
IC1qVzpZIXfFsNx0vQgMh9K1ev8CAwEAAaOCAqIwggKeMB0GA1UdDgQWBBT2/gFj
w+mjix2aFCfZZ5EuupqSETAfBgNVHSMEGDAWgBSK2v8YdyLe67DdzgV788KY0Cx8
zjAOBgNVHQ8BAf8EBAMCB4AwgZUGA1UdHwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6
Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvbWVtYmVyX3JlcG9zaXRvcnkv
RjM2OTM5QTYvQUQ5NEFBMjBCNUZEMTFFREJGQkE2M0YxRjEyMjI0NjgvaXRyX0dI
Y2kzdXV3M2M0RmVfUENtTkFzZk00LmNybDBkBggrBgEFBQcBAQRYMFYwVAYIKwYB
BQUHMAKGSHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L2FyaW4v
aXRyX0dIY2kzdXV3M2M0RmVfUENtTkFzZk00LmNlcjBPBgNVHSABAf8ERTBDMEEG
CCsGAQUFBw4CMDUwMwYIKwYBBQUHAgEWJ2h0dHBzOi8vcnBraS5hZnJpbmljLm5l
dC9wb2xpY3kvQ1BTLnBkZjCB2wYIKwYBBQUHAQsEgc4wgcswgZEGCCsGAQUFBzAL
hoGEcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvbWVtYmVyX3Jl
cG9zaXRvcnkvRjM2OTM5QTYvQUQ5NEFBMjBCNUZEMTFFREJGQkE2M0YxRjEyMjI0
NjgvREY3QUVFNkFCNjAxMTFFREI2MEQ0QjdGRjEyMjI0Njgucm9hMDUGCCsGAQUF
BzANhilodHRwczovL3JyZHAuYWZyaW5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAZwA6DANBgkqhkiG9w0BAQsFAAOC
AQEAN+0L7iIfihJKh8Th3xR+zmQVtjYV+ECVxdj6EldTNnVjKeu5Dk/4vygZd/TD
MKWafVePPRxmrf+2ODuHsIxk8SD/wQ6/IXyYNaCojFTfUpnzBqu02Kl93/IyPks0
R5x2vDrDqC58bd2qiTBwcllHgvLHFiX7SPjcFKjdr75g3ft8B/EV/VLPnSwfEovO
TgMnhxqo0c0S9g1e4iYlIgdLXfyGQlkyTQpFlftWZ6o/ynrlyFYx49uMYaIOL0Oa
jg+JZpsCWZwxLUaKFYQRXzJs+N5WsEYTF+Pgu+bzIolWGd+79h4RXb/pK1OC3nGv
bjsqzuwo2UUD+VCtMbZ1nli72Q==
-----END CERTIFICATE-----
Generated at Mon Apr 1 02:56:30 2024 by rpki-client on console-fra.rpki-client.org