Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/3A2530E6441811EF829DA65B762E951A.roa
File: 3A2530E6441811EF829DA65B762E951A.roa (raw, json)
Hash identifier: onNGkvCAlOtCFb5SjSm0emWQTjb2Qd0pQ0Xjc4h+gfo=
Subject key identifier: B6:0E:88:C9:76:CC:E8:6F:D1:57:02:07:6B:B7:6E:0A:7A:BF:D6:ED
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 9D2C
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/3A2530E6441811EF829DA65B762E951A.roa
Signing time: Wed 17 Jul 2024 08:40:32 +0000
ROA not before: Wed 17 Jul 2024 08:40:28 +0000
ROA not after: Sat 27 Jul 2024 08:40:28 +0000
asID: 5065
IP address blocks: 45.199.156.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 40236 (0x9d2c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jul 17 08:40:28 2024 GMT
Not After : Jul 27 08:40:28 2024 GMT
Subject: CN=66978380-3109
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:32:67:51:3b:d8:d7:68:2c:b0:5c:dc:c0:7b:
53:93:a9:21:04:37:77:fb:49:3a:2c:84:b2:e0:94:
a7:25:27:e1:81:80:84:e9:fc:58:ec:33:cc:f3:7b:
0a:5a:b3:a1:2e:a9:32:f7:45:f5:19:a9:ad:63:e4:
7c:7c:d9:6e:17:df:a2:4c:fe:26:04:e8:24:29:cb:
54:f8:cf:bf:b8:0e:76:5c:98:cf:01:92:60:ba:96:
19:7d:52:73:9a:8d:1d:68:57:4a:51:e0:52:29:91:
e2:cd:92:71:d4:c4:03:c7:f7:d1:84:2c:f4:77:af:
a7:fa:66:29:71:0a:c5:59:bd:4e:58:28:93:64:99:
c2:fb:28:5e:b0:9d:f1:1f:1f:0f:d5:63:03:23:6d:
8d:11:c9:26:59:60:21:ba:97:70:70:c3:e9:1f:ad:
2d:ee:bf:eb:42:ab:e9:bf:a8:eb:e9:6d:fd:04:37:
a9:63:af:bd:cc:ae:3e:1b:5a:d8:30:41:a5:d2:3d:
b7:e9:00:98:95:28:e2:d8:e7:84:cc:c3:b4:20:c5:
b2:c7:36:ce:50:82:4c:e0:16:3d:46:26:1b:a0:7c:
00:0f:6b:38:df:4d:92:3c:19:55:db:8d:bf:b2:72:
72:b7:17:f7:c4:c2:c0:23:00:8a:b1:07:4c:d6:f4:
1c:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:0E:88:C9:76:CC:E8:6F:D1:57:02:07:6B:B7:6E:0A:7A:BF:D6:ED
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/3A2530E6441811EF829DA65B762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.199.156.0/24
Signature Algorithm: sha256WithRSAEncryption
b5:bb:9f:07:46:f5:e2:a9:63:3a:e1:9b:3a:a4:da:93:ee:b5:
0b:79:32:71:29:8b:b0:7e:cf:60:17:84:19:83:de:36:8a:0c:
31:8d:cb:09:6f:94:c3:bd:9a:09:26:c3:c1:ec:1a:da:23:4e:
6c:8b:b5:54:fd:f8:41:ae:cb:f2:fa:6a:31:ad:6d:b9:2e:bd:
45:0a:16:35:00:0c:bb:9f:3a:f5:2b:b6:b4:bd:74:46:a6:2d:
e4:d0:24:84:9a:73:48:6f:b1:f4:05:f9:36:14:9e:0b:ac:28:
a5:9c:1d:30:1f:7e:7d:e0:86:08:2a:71:31:13:b6:98:27:d5:
9d:8c:ab:d2:3d:c7:70:f5:32:48:26:5a:0d:bf:78:b1:18:08:
94:51:2f:e5:b8:e4:72:07:83:69:13:c5:33:90:0b:f0:34:bb:
5d:dc:10:fb:48:e3:5a:f2:00:eb:5f:9d:0c:82:cf:66:5a:c0:
fc:9c:c2:ea:1d:f9:63:67:90:66:db:f0:d9:44:80:d8:f5:9b:
71:36:ab:30:ea:32:4b:a4:c5:7c:e4:04:24:8f:2b:f8:b2:31:
0a:7d:54:9f:0a:c4:f2:6c:d1:16:d4:b6:55:a3:38:cc:86:eb:
ea:39:fa:a6:a4:a4:3d:50:30:9a:0b:81:30:e2:fa:ee:44:a1:
6a:a0:0c:cf
-----BEGIN CERTIFICATE-----
MIIFgTCCBGmgAwIBAgIDAJ0sMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQVIxMTAvBgNVBAUTKDc5N0Q4OEQ4MTNFMjBGRkY5ODJDQzc0MTlFOTY5
QkFFQTZCRkQ2OUIwHhcNMjQwNzE3MDg0MDI4WhcNMjQwNzI3MDg0MDI4WjAYMRYw
FAYDVQQDEw02Njk3ODM4MC0zMTA5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEA3DJnUTvY12gssFzcwHtTk6khBDd3+0k6LISy4JSnJSfhgYCE6fxY7DPM
83sKWrOhLqky90X1GamtY+R8fNluF9+iTP4mBOgkKctU+M+/uA52XJjPAZJgupYZ
fVJzmo0daFdKUeBSKZHizZJx1MQDx/fRhCz0d6+n+mYpcQrFWb1OWCiTZJnC+yhe
sJ3xHx8P1WMDI22NEckmWWAhupdwcMPpH60t7r/rQqvpv6jr6W39BDepY6+9zK4+
G1rYMEGl0j236QCYlSji2OeEzMO0IMWyxzbOUIJM4BY9RiYboHwAD2s4302SPBlV
242/snJytxf3xMLAIwCKsQdM1vQc+QIDAQABo4ICojCCAp4wHQYDVR0OBBYEFLYO
iMl2zOhv0VcCB2u3bgp6v9btMB8GA1UdIwQYMBaAFHl9iNgT4g//mCzHQZ6Wm66m
v9abMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFFQTIyOC9lWDJJ
MkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY3JsMGQGCCsGAQUFBwEBBFgwVjBUBggr
BgEFBQcwAoZIcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYXJp
bi9lWDJJMkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY2VyME8GA1UdIAEB/wRFMEMw
QQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmluaWMu
bmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYBBQUH
MAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJf
cmVwb3NpdG9yeS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFF
QTIyOC8zQTI1MzBFNjQ0MTgxMUVGODI5REE2NUI3NjJFOTUxQS5yb2EwNQYIKwYB
BQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1s
MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALcecMA0GCSqGSIb3DQEBCwUA
A4IBAQC1u58HRvXiqWM64Zs6pNqT7rULeTJxKYuwfs9gF4QZg942igwxjcsJb5TD
vZoJJsPB7BraI05si7VU/fhBrsvy+moxrW25Lr1FChY1AAy7nzr1K7a0vXRGpi3k
0CSEmnNIb7H0Bfk2FJ4LrCilnB0wH3594IYIKnExE7aYJ9WdjKvSPcdw9TJIJloN
v3ixGAiUUS/luORyB4NpE8UzkAvwNLtd3BD7SONa8gDrX50Mgs9mWsD8nMLqHflj
Z5Bm2/DZRIDY9ZtxNqsw6jJLpMV85AQkjyv4sjEKfVSfCsTybNEW1LZVozjMhuvq
OfqmpKQ9UDCaC4Ew4vruRKFqoAzP
-----END CERTIFICATE-----
Generated at Sun Jul 28 03:06:41 2024 by rpki-client on console-fra.rpki-client.org