Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/1BD88B10499511EFABB920A6762E951A.roa
File: 1BD88B10499511EFABB920A6762E951A.roa (raw, json)
Hash identifier: qcOpBSQveow5jkGbfX/mPIlwHlqhSptj37j2POdjBmU=
Subject key identifier: 89:CD:2E:06:38:69:71:D5:FC:CF:C3:65:F1:82:A1:1E:0D:D1:71:60
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 9F01
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/1BD88B10499511EFABB920A6762E951A.roa
Signing time: Wed 24 Jul 2024 08:17:04 +0000
ROA not before: Wed 24 Jul 2024 08:17:01 +0000
ROA not after: Fri 23 Aug 2024 08:17:01 +0000
asID: 202656
IP address blocks: 156.246.171.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 40705 (0x9f01)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jul 24 08:17:01 2024 GMT
Not After : Aug 23 08:17:01 2024 GMT
Subject: CN=66a0b880-0ae1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:9d:ef:5e:2d:31:6d:26:e2:93:76:fb:5b:7c:
2a:8e:7f:e6:73:6c:4f:41:c1:05:8b:cc:5d:c7:54:
9a:f1:03:92:a0:ef:97:ff:43:1e:05:95:b2:e8:2d:
b2:6e:92:04:98:60:ff:2b:6c:19:8d:f3:70:a4:11:
14:d4:34:d5:f4:c4:8e:1a:62:b9:a8:c8:6f:86:c2:
9a:64:f6:67:20:be:41:1d:40:18:7b:8e:4f:6f:9f:
77:c2:0f:76:07:8b:c2:6b:50:e4:4c:9a:b5:90:d1:
ed:1e:bf:8e:6c:7e:b1:40:6b:24:f2:cf:18:25:70:
7c:70:0f:a6:8f:65:ed:b7:d4:d3:b6:cc:97:9a:09:
0a:dc:fb:e0:52:ae:9a:6c:40:1d:43:37:84:09:6a:
e6:9b:e6:11:90:2c:3b:78:e1:00:2d:57:9c:4b:7b:
1f:bd:96:fe:c1:fe:8c:f9:8f:76:95:83:46:c0:3b:
92:64:fc:7e:76:9a:76:98:6d:3e:23:d3:67:a4:63:
88:6b:30:1a:5e:0d:07:3b:19:65:c3:13:66:88:96:
d3:c2:20:85:ac:0d:09:53:7c:1b:ba:98:de:ff:e8:
c9:98:d4:32:3b:3c:d4:ab:c7:77:b3:f7:1b:58:5e:
36:9f:be:45:52:a6:51:5b:8c:59:d7:4a:8e:25:83:
aa:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:CD:2E:06:38:69:71:D5:FC:CF:C3:65:F1:82:A1:1E:0D:D1:71:60
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/1BD88B10499511EFABB920A6762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.246.171.0/24
Signature Algorithm: sha256WithRSAEncryption
32:45:54:20:58:af:ca:63:f5:81:9c:c0:e6:4e:fd:e7:fa:2e:
e9:b1:ff:dc:85:c6:63:41:6c:42:46:93:43:ef:be:7f:fd:5d:
29:b3:2f:51:5d:0d:f8:c8:3a:45:60:ce:1b:e0:0b:cb:4b:ba:
27:35:36:99:c2:35:db:15:35:cf:5b:d6:a7:3a:75:55:e2:a7:
53:4b:8e:87:30:04:43:62:78:86:1d:99:e5:b7:07:92:03:dd:
ed:9b:bd:99:00:fb:f9:c9:e5:b5:10:2c:37:91:a3:a0:1b:79:
5e:7b:13:23:89:9f:4c:aa:c2:fe:30:9d:cd:db:c7:e0:8a:ed:
2c:23:70:7e:f5:79:8f:e4:40:d9:64:84:36:10:89:12:ed:8a:
14:9b:37:ec:d5:5f:e2:7e:1c:ea:2e:12:6f:ae:44:02:bf:23:
c0:f6:44:3e:32:23:93:ae:d1:ec:ef:16:35:85:25:ff:36:ec:
7f:eb:01:cf:92:ef:97:b1:18:dc:e0:83:e1:f6:f0:50:a3:b9:
91:84:89:1b:27:95:1e:12:ec:63:b1:89:38:dc:81:e8:4f:8e:
6f:df:1b:98:e0:6a:51:2c:02:13:61:b0:4a:78:79:24:30:67:
a1:45:7b:4c:89:02:78:26:29:26:e5:4d:b0:4e:83:eb:30:63:
80:0c:ee:fb
-----BEGIN CERTIFICATE-----
MIIFgTCCBGmgAwIBAgIDAJ8BMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQVIxMTAvBgNVBAUTKDc5N0Q4OEQ4MTNFMjBGRkY5ODJDQzc0MTlFOTY5
QkFFQTZCRkQ2OUIwHhcNMjQwNzI0MDgxNzAxWhcNMjQwODIzMDgxNzAxWjAYMRYw
FAYDVQQDEw02NmEwYjg4MC0wYWUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAqZ3vXi0xbSbik3b7W3wqjn/mc2xPQcEFi8xdx1Sa8QOSoO+X/0MeBZWy
6C2ybpIEmGD/K2wZjfNwpBEU1DTV9MSOGmK5qMhvhsKaZPZnIL5BHUAYe45Pb593
wg92B4vCa1DkTJq1kNHtHr+ObH6xQGsk8s8YJXB8cA+mj2Xtt9TTtsyXmgkK3Pvg
Uq6abEAdQzeECWrmm+YRkCw7eOEALVecS3sfvZb+wf6M+Y92lYNGwDuSZPx+dpp2
mG0+I9NnpGOIazAaXg0HOxllwxNmiJbTwiCFrA0JU3wbupje/+jJmNQyOzzUq8d3
s/cbWF42n75FUqZRW4xZ10qOJYOqGwIDAQABo4ICojCCAp4wHQYDVR0OBBYEFInN
LgY4aXHV/M/DZfGCoR4N0XFgMB8GA1UdIwQYMBaAFHl9iNgT4g//mCzHQZ6Wm66m
v9abMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFFQTIyOC9lWDJJ
MkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY3JsMGQGCCsGAQUFBwEBBFgwVjBUBggr
BgEFBQcwAoZIcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYXJp
bi9lWDJJMkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY2VyME8GA1UdIAEB/wRFMEMw
QQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmluaWMu
bmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYBBQUH
MAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJf
cmVwb3NpdG9yeS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFF
QTIyOC8xQkQ4OEIxMDQ5OTUxMUVGQUJCOTIwQTY3NjJFOTUxQS5yb2EwNQYIKwYB
BQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1s
MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnParMA0GCSqGSIb3DQEBCwUA
A4IBAQAyRVQgWK/KY/WBnMDmTv3n+i7psf/chcZjQWxCRpND775//V0psy9RXQ34
yDpFYM4b4AvLS7onNTaZwjXbFTXPW9anOnVV4qdTS46HMARDYniGHZnltweSA93t
m72ZAPv5yeW1ECw3kaOgG3leexMjiZ9MqsL+MJ3N28fgiu0sI3B+9XmP5EDZZIQ2
EIkS7YoUmzfs1V/ifhzqLhJvrkQCvyPA9kQ+MiOTrtHs7xY1hSX/Nux/6wHPku+X
sRjc4IPh9vBQo7mRhIkbJ5UeEuxjsYk43IHoT45v3xuY4GpRLAITYbBKeHkkMGeh
RXtMiQJ4Jikm5U2wToPrMGOADO77
-----END CERTIFICATE-----
Generated at Fri Aug 23 11:11:47 2024 by rpki-client on console-fra.rpki-client.org