Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/D03258C81D0F11EFA139562A7DDC24C2.roa
File: D03258C81D0F11EFA139562A7DDC24C2.roa (raw, json)
Hash identifier: kCoVIThr3FCLxToIwXlJ7YZ8wUezyu2s6mrCetZXnKo=
Subject key identifier: E5:96:DB:C5:44:DD:19:7A:8F:10:EC:05:4C:00:11:61:95:B9:12:78
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 8CA8
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/D03258C81D0F11EFA139562A7DDC24C2.roa
Signing time: Tue 28 May 2024 16:32:03 +0000
ROA not before: Tue 28 May 2024 16:31:59 +0000
ROA not after: Sat 07 Sep 2024 16:31:59 +0000
asID: 138415
IP address blocks: 156.241.32.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 36008 (0x8ca8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: May 28 16:31:59 2024 GMT
Not After : Sep 7 16:31:59 2024 GMT
Subject: CN=66560703-6086
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:bf:6e:e1:f2:37:4e:d6:50:f3:16:f7:0e:8a:
ab:c0:b6:2c:89:82:32:3a:a3:44:5c:14:6b:92:54:
87:8a:8d:f9:2f:9b:9b:81:8a:cb:c9:36:c8:0d:65:
e1:8f:26:1f:5a:80:0f:4f:a8:bd:c0:4e:52:fb:18:
39:33:56:f4:5b:58:25:04:6c:c3:9f:c7:b3:ed:21:
74:c6:13:4d:fb:ab:f9:d3:3a:5f:c1:30:b7:5d:df:
88:e3:c2:cc:0f:e6:24:fc:1a:40:07:d7:ce:24:71:
7f:0f:5e:02:37:57:45:74:52:e1:68:6b:4a:1b:07:
08:a2:49:00:41:6e:10:3e:60:46:d4:c6:ab:62:21:
2b:9c:20:a2:67:45:07:d4:f1:de:36:c0:ae:96:cb:
e3:d5:87:7a:1f:4a:29:0e:bf:d5:1f:d1:33:b8:c8:
ce:f3:31:04:1b:54:c9:a9:9c:a4:9e:2b:b9:7d:b0:
20:67:64:68:84:1f:c4:5e:44:73:e5:6b:41:30:c7:
42:10:2e:b7:d4:91:e2:a3:9c:78:6e:e0:e8:ad:1d:
18:16:e6:31:91:8a:f2:7f:81:db:7c:20:2e:06:2f:
e8:4c:5b:a1:8c:68:7f:8e:5e:81:f0:2e:36:bb:3c:
ec:92:f4:a1:8c:e0:08:45:6f:4b:8f:7a:db:83:ed:
93:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:96:DB:C5:44:DD:19:7A:8F:10:EC:05:4C:00:11:61:95:B9:12:78
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/D03258C81D0F11EFA139562A7DDC24C2.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.241.32.0/19
Signature Algorithm: sha256WithRSAEncryption
72:10:39:89:58:4c:37:d8:cd:88:58:d6:81:19:07:ab:85:59:
a9:1f:85:ee:ee:aa:6c:5d:70:91:8f:ea:2f:5a:b0:e7:14:70:
2a:fa:1e:b5:09:b9:24:74:d0:f7:9e:b4:52:c5:99:76:91:db:
ba:08:09:09:5c:83:0f:37:a1:37:cf:34:74:02:2f:23:e9:0d:
ab:9a:79:a2:32:02:21:a8:4d:2b:ab:e5:34:d8:ea:35:9e:dc:
71:72:c4:76:d8:10:74:46:c6:41:bc:ad:fd:88:c9:95:a7:d1:
7e:a4:2d:f5:68:81:24:60:4b:f2:f3:ac:d8:ba:3f:d7:80:73:
a2:e8:80:6d:c1:75:ea:60:bc:48:2f:27:d1:9c:e8:a6:bd:01:
a6:09:a4:6b:fc:18:10:f3:31:ef:7c:fd:a1:09:2d:3e:a9:57:
0e:47:d7:76:91:99:41:87:38:eb:69:71:af:15:02:c8:3b:f7:
66:fe:3e:39:cb:73:55:39:55:fb:d1:bd:66:dd:de:47:a9:d9:
cf:d4:eb:e7:04:24:37:6c:85:c7:cc:71:f5:04:02:ff:47:85:
6a:92:69:7d:2e:f1:1a:c5:ae:6d:a6:2c:75:3f:ea:19:19:12:
37:c9:87:be:d3:e4:0d:a0:cf:eb:bd:9c:c9:2b:63:99:79:b4:
71:76:a8:a3
-----BEGIN CERTIFICATE-----
MIIFgTCCBGmgAwIBAgIDAIyoMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQVIxMTAvBgNVBAUTKDc5N0Q4OEQ4MTNFMjBGRkY5ODJDQzc0MTlFOTY5
QkFFQTZCRkQ2OUIwHhcNMjQwNTI4MTYzMTU5WhcNMjQwOTA3MTYzMTU5WjAYMRYw
FAYDVQQDEw02NjU2MDcwMy02MDg2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAub9u4fI3TtZQ8xb3DoqrwLYsiYIyOqNEXBRrklSHio35L5ubgYrLyTbI
DWXhjyYfWoAPT6i9wE5S+xg5M1b0W1glBGzDn8ez7SF0xhNN+6v50zpfwTC3Xd+I
48LMD+Yk/BpAB9fOJHF/D14CN1dFdFLhaGtKGwcIokkAQW4QPmBG1MarYiErnCCi
Z0UH1PHeNsCulsvj1Yd6H0opDr/VH9EzuMjO8zEEG1TJqZykniu5fbAgZ2RohB/E
XkRz5WtBMMdCEC631JHio5x4buDorR0YFuYxkYryf4HbfCAuBi/oTFuhjGh/jl6B
8C42uzzskvShjOAIRW9Lj3rbg+2TgwIDAQABo4ICojCCAp4wHQYDVR0OBBYEFOWW
28VE3Rl6jxDsBUwAEWGVuRJ4MB8GA1UdIwQYMBaAFHl9iNgT4g//mCzHQZ6Wm66m
v9abMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFFQTIyOC9lWDJJ
MkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY3JsMGQGCCsGAQUFBwEBBFgwVjBUBggr
BgEFBQcwAoZIcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYXJp
bi9lWDJJMkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY2VyME8GA1UdIAEB/wRFMEMw
QQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmluaWMu
bmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYBBQUH
MAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJf
cmVwb3NpdG9yeS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFF
QTIyOC9EMDMyNThDODFEMEYxMUVGQTEzOTU2MkE3RERDMjRDMi5yb2EwNQYIKwYB
BQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1s
MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQFnPEgMA0GCSqGSIb3DQEBCwUA
A4IBAQByEDmJWEw32M2IWNaBGQerhVmpH4Xu7qpsXXCRj+ovWrDnFHAq+h61Cbkk
dND3nrRSxZl2kdu6CAkJXIMPN6E3zzR0Ai8j6Q2rmnmiMgIhqE0rq+U02Oo1ntxx
csR22BB0RsZBvK39iMmVp9F+pC31aIEkYEvy86zYuj/XgHOi6IBtwXXqYLxILyfR
nOimvQGmCaRr/BgQ8zHvfP2hCS0+qVcOR9d2kZlBhzjraXGvFQLIO/dm/j45y3NV
OVX70b1m3d5HqdnP1OvnBCQ3bIXHzHH1BAL/R4Vqkml9LvEaxa5tpix1P+oZGRI3
yYe+0+QNoM/rvZzJK2OZebRxdqij
-----END CERTIFICATE-----
Generated at Sun Sep 8 03:52:17 2024 by rpki-client on console-ams.rpki-client.org