Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/2BD078CC435811EFA43269BB762E951A.roa
File: 2BD078CC435811EFA43269BB762E951A.roa (raw, json)
Hash identifier: 0MkK0yokhTb8v0rp0z1Jl6kwcwUWIi8T7f7McCeV2ew=
Subject key identifier: 38:E7:6D:D2:77:29:A7:FD:F2:54:34:59:45:FC:7D:33:A4:5C:B7:DF
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 9CB1
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/2BD078CC435811EFA43269BB762E951A.roa
Signing time: Tue 16 Jul 2024 09:45:44 +0000
ROA not before: Tue 16 Jul 2024 09:45:41 +0000
ROA not after: Tue 13 Aug 2024 09:45:41 +0000
asID: 138915
IP address blocks: 156.244.38.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 40113 (0x9cb1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jul 16 09:45:41 2024 GMT
Not After : Aug 13 09:45:41 2024 GMT
Subject: CN=66964148-161e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:ce:4b:53:bb:08:00:d8:7c:64:2b:17:53:3d:
1c:5e:ec:47:f9:69:1d:31:60:0d:3f:ad:94:4c:05:
59:6e:49:ff:5d:04:26:bc:a5:03:7d:86:d5:90:4c:
0e:48:9e:d8:79:0f:8d:f9:60:9e:47:db:09:76:8f:
da:04:59:16:77:12:57:e4:3b:9e:ff:fc:11:c9:55:
f5:a6:b0:24:c9:da:e9:a2:fb:f3:c6:24:44:98:68:
73:b3:bb:45:71:9c:1e:07:68:d0:4e:45:7d:3e:8e:
2e:d1:cc:02:32:99:c3:6d:01:24:58:9b:ff:8a:21:
b4:d2:92:ad:5e:fb:a5:d2:90:da:9f:d5:72:3c:9b:
ff:0e:27:2d:c4:50:b8:43:30:9c:0a:0c:ae:b0:a0:
bd:7d:99:23:ea:c2:30:bc:62:50:9f:be:60:22:ba:
ad:59:f2:a3:c8:56:83:62:58:17:ae:ca:fb:ca:e5:
af:f6:3b:04:81:3f:a4:cd:fe:cc:56:2c:f1:86:a7:
b6:14:bc:b3:24:50:11:84:e8:8e:9d:97:bb:a8:f2:
90:f8:83:f2:be:dd:9d:a4:33:ae:8b:17:f1:d1:ab:
d2:b2:37:65:9d:9c:f0:7b:ae:4e:7e:b5:e1:2d:f1:
16:26:be:d4:de:fc:30:12:0a:45:00:8b:95:b7:f7:
b0:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:E7:6D:D2:77:29:A7:FD:F2:54:34:59:45:FC:7D:33:A4:5C:B7:DF
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/2BD078CC435811EFA43269BB762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.244.38.0/24
Signature Algorithm: sha256WithRSAEncryption
70:4f:a3:05:30:a0:eb:1d:57:e8:b1:70:29:f5:a4:5d:18:12:
e7:35:b6:e9:e6:d6:83:e7:26:43:3b:7b:53:a6:74:c8:60:03:
88:3d:44:b2:09:58:40:4a:c4:a8:23:91:39:60:f5:4d:59:08:
c2:34:c0:79:58:98:4c:d7:93:da:a9:57:e1:25:64:64:2d:27:
ea:e1:a0:b6:53:8a:39:3a:80:e0:27:11:a4:d3:cb:c2:84:fe:
14:a5:0e:f2:79:cc:0f:96:01:8f:87:70:85:7b:df:aa:ba:65:
b5:0a:c1:f7:fc:47:28:1b:27:75:f9:c4:27:b5:b4:97:f5:90:
f3:40:8f:30:ea:e4:22:74:35:50:f3:8d:c7:e6:34:69:44:00:
fc:01:8f:e6:57:07:87:b1:fa:f8:0d:e1:14:4b:7f:68:42:dd:
1d:ee:ce:9b:40:e4:99:45:a7:81:53:f2:5c:ca:8f:ec:f4:34:
4d:be:7a:0a:e2:5e:66:6f:4a:73:5b:bc:f4:12:55:f0:97:db:
bd:b4:9c:3f:b8:c5:3f:72:66:c1:22:41:de:7f:7b:b3:76:de:
53:5d:0f:49:15:f9:a6:52:9e:e4:f1:2c:9e:ec:66:0a:6c:58:
4d:89:29:37:46:e6:19:7e:ea:ce:19:16:14:39:cc:38:84:d1:
61:8d:aa:44
-----BEGIN CERTIFICATE-----
MIIFgTCCBGmgAwIBAgIDAJyxMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQVIxMTAvBgNVBAUTKDc5N0Q4OEQ4MTNFMjBGRkY5ODJDQzc0MTlFOTY5
QkFFQTZCRkQ2OUIwHhcNMjQwNzE2MDk0NTQxWhcNMjQwODEzMDk0NTQxWjAYMRYw
FAYDVQQDEw02Njk2NDE0OC0xNjFlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEA2s5LU7sIANh8ZCsXUz0cXuxH+WkdMWANP62UTAVZbkn/XQQmvKUDfYbV
kEwOSJ7YeQ+N+WCeR9sJdo/aBFkWdxJX5Due//wRyVX1prAkydrpovvzxiREmGhz
s7tFcZweB2jQTkV9Po4u0cwCMpnDbQEkWJv/iiG00pKtXvul0pDan9VyPJv/Dict
xFC4QzCcCgyusKC9fZkj6sIwvGJQn75gIrqtWfKjyFaDYlgXrsr7yuWv9jsEgT+k
zf7MVizxhqe2FLyzJFARhOiOnZe7qPKQ+IPyvt2dpDOuixfx0avSsjdlnZzwe65O
frXhLfEWJr7U3vwwEgpFAIuVt/ewFQIDAQABo4ICojCCAp4wHQYDVR0OBBYEFDjn
bdJ3Kaf98lQ0WUX8fTOkXLffMB8GA1UdIwQYMBaAFHl9iNgT4g//mCzHQZ6Wm66m
v9abMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFFQTIyOC9lWDJJ
MkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY3JsMGQGCCsGAQUFBwEBBFgwVjBUBggr
BgEFBQcwAoZIcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYXJp
bi9lWDJJMkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY2VyME8GA1UdIAEB/wRFMEMw
QQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmluaWMu
bmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYBBQUH
MAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJf
cmVwb3NpdG9yeS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFF
QTIyOC8yQkQwNzhDQzQzNTgxMUVGQTQzMjY5QkI3NjJFOTUxQS5yb2EwNQYIKwYB
BQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1s
MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnPQmMA0GCSqGSIb3DQEBCwUA
A4IBAQBwT6MFMKDrHVfosXAp9aRdGBLnNbbp5taD5yZDO3tTpnTIYAOIPUSyCVhA
SsSoI5E5YPVNWQjCNMB5WJhM15PaqVfhJWRkLSfq4aC2U4o5OoDgJxGk08vChP4U
pQ7yecwPlgGPh3CFe9+qumW1CsH3/EcoGyd1+cQntbSX9ZDzQI8w6uQidDVQ843H
5jRpRAD8AY/mVweHsfr4DeEUS39oQt0d7s6bQOSZRaeBU/Jcyo/s9DRNvnoK4l5m
b0pzW7z0ElXwl9u9tJw/uMU/cmbBIkHef3uzdt5TXQ9JFfmmUp7k8Sye7GYKbFhN
iSk3RuYZfurOGRYUOcw4hNFhjapE
-----END CERTIFICATE-----
Generated at Wed Aug 14 04:26:00 2024 by rpki-client on console-fra.rpki-client.org