Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/663E5AC8FD4F11EE918FFAF8007001B1.roa
File: 663E5AC8FD4F11EE918FFAF8007001B1.roa (raw, json)
Hash identifier: qnPq5hmJxreduoB/kXPztE1JPS4f1Q+4S36fsKhOwYE=
Subject key identifier: 61:25:E5:1C:B2:A2:54:D1:C1:E3:70:6B:3A:BC:22:59:A5:77:BB:E7
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 8353
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/663E5AC8FD4F11EE918FFAF8007001B1.roa
Signing time: Thu 18 Apr 2024 06:46:36 +0000
ROA not before: Thu 18 Apr 2024 06:46:32 +0000
ROA not after: Fri 26 Apr 2024 06:46:32 +0000
asID: 39600
IP address blocks: 156.255.72.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 33619 (0x8353)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Apr 18 06:46:32 2024 GMT
Not After : Apr 26 06:46:32 2024 GMT
Subject: CN=6620c1cc-9e5b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:87:75:6c:b2:05:0f:29:d1:3d:88:fe:f3:65:
0b:f0:c3:f8:cf:39:fb:8b:d3:06:53:9b:7d:91:fa:
c0:e9:eb:74:40:69:5c:74:22:dc:24:95:bb:92:0d:
86:49:d9:70:cd:5b:ff:34:d1:c9:97:c7:1e:1a:05:
96:b2:6c:79:05:7e:09:ac:5e:b5:f7:a5:b7:29:ff:
82:bb:ff:c0:0b:35:35:23:2f:34:e7:46:4b:03:19:
57:72:70:56:a8:7f:95:79:d1:1b:5c:ed:dd:c2:31:
22:b4:a8:d2:61:c3:a0:c6:f4:9f:39:c6:46:31:5d:
59:0f:54:9f:aa:78:55:22:63:f9:b1:05:c3:e4:b2:
ac:b8:88:c7:6a:d6:37:c8:fd:80:13:c8:e5:32:a7:
cb:c5:8d:3a:25:2d:96:85:e9:7a:57:29:0e:72:cd:
d4:f1:d9:57:5a:5f:9c:eb:48:9b:bd:48:b9:cc:44:
69:c6:b8:78:cd:4b:0c:88:14:37:e3:48:61:5f:4c:
78:c1:32:c9:31:21:cc:2f:85:75:75:63:61:19:b6:
01:c6:b0:e6:59:dd:3b:bc:6d:0d:69:11:43:e4:3c:
01:5b:95:77:36:77:7f:8f:c4:76:3c:a0:8f:6c:38:
1a:c3:ab:40:84:e1:a8:21:36:83:c5:96:b3:26:7d:
f7:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:25:E5:1C:B2:A2:54:D1:C1:E3:70:6B:3A:BC:22:59:A5:77:BB:E7
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/663E5AC8FD4F11EE918FFAF8007001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.255.72.0/21
Signature Algorithm: sha256WithRSAEncryption
06:b6:9b:3e:6a:47:aa:f0:67:73:3f:d1:ab:42:40:b8:41:82:
5e:af:91:93:bc:e6:57:ae:7a:d3:61:63:78:86:39:eb:fc:50:
96:0d:4b:62:f2:ed:ce:dc:ba:aa:7b:c6:8b:9e:98:e9:17:89:
a1:17:9e:d3:93:13:b4:49:5b:10:a9:66:fb:e8:52:44:26:20:
29:79:eb:d2:fb:25:0d:3c:06:3e:15:25:7a:a0:d4:22:55:1a:
6b:68:12:29:e2:5f:c8:38:e9:89:bb:be:61:91:65:66:7c:8e:
62:1d:af:d1:96:7a:78:d3:bd:42:2b:ec:ab:a3:77:1c:2e:44:
7d:3b:80:d0:ae:1b:af:a1:bf:3d:e3:8c:82:32:7e:c9:52:75:
df:dc:e4:ed:97:4f:b3:74:c1:51:73:ad:95:40:e0:5c:46:0b:
6c:f7:56:4a:b5:41:7c:f8:fe:02:6c:4e:22:75:c9:9a:e7:b5:
1e:a7:af:01:21:64:cf:84:4d:85:59:30:14:a2:c3:84:9d:09:
03:ee:fc:28:9e:87:fe:7f:fd:69:03:30:27:cd:da:69:e4:0a:
17:a0:dd:76:a2:05:ea:7f:b8:dc:0d:d9:1a:46:33:a0:e0:ea:
2c:ba:96:20:7a:34:0c:7c:aa:01:ed:81:df:ec:80:f7:54:b2:
10:64:2b:49
-----BEGIN CERTIFICATE-----
MIIFgTCCBGmgAwIBAgIDAINTMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQVIxMTAvBgNVBAUTKDc5N0Q4OEQ4MTNFMjBGRkY5ODJDQzc0MTlFOTY5
QkFFQTZCRkQ2OUIwHhcNMjQwNDE4MDY0NjMyWhcNMjQwNDI2MDY0NjMyWjAYMRYw
FAYDVQQDEw02NjIwYzFjYy05ZTViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEA3Id1bLIFDynRPYj+82UL8MP4zzn7i9MGU5t9kfrA6et0QGlcdCLcJJW7
kg2GSdlwzVv/NNHJl8ceGgWWsmx5BX4JrF6196W3Kf+Cu//ACzU1Iy8050ZLAxlX
cnBWqH+VedEbXO3dwjEitKjSYcOgxvSfOcZGMV1ZD1SfqnhVImP5sQXD5LKsuIjH
atY3yP2AE8jlMqfLxY06JS2Whel6VykOcs3U8dlXWl+c60ibvUi5zERpxrh4zUsM
iBQ340hhX0x4wTLJMSHML4V1dWNhGbYBxrDmWd07vG0NaRFD5DwBW5V3Nnd/j8R2
PKCPbDgaw6tAhOGoITaDxZazJn33awIDAQABo4ICojCCAp4wHQYDVR0OBBYEFGEl
5RyyolTRweNwazq8Ilmld7vnMB8GA1UdIwQYMBaAFHl9iNgT4g//mCzHQZ6Wm66m
v9abMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFFQTIyOC9lWDJJ
MkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY3JsMGQGCCsGAQUFBwEBBFgwVjBUBggr
BgEFBQcwAoZIcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYXJp
bi9lWDJJMkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY2VyME8GA1UdIAEB/wRFMEMw
QQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmluaWMu
bmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYBBQUH
MAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJf
cmVwb3NpdG9yeS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFF
QTIyOC82NjNFNUFDOEZENEYxMUVFOTE4RkZBRjgwMDcwMDFCMS5yb2EwNQYIKwYB
BQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1s
MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQDnP9IMA0GCSqGSIb3DQEBCwUA
A4IBAQAGtps+akeq8GdzP9GrQkC4QYJer5GTvOZXrnrTYWN4hjnr/FCWDUti8u3O
3Lqqe8aLnpjpF4mhF57TkxO0SVsQqWb76FJEJiApeevS+yUNPAY+FSV6oNQiVRpr
aBIp4l/IOOmJu75hkWVmfI5iHa/Rlnp4071CK+yro3ccLkR9O4DQrhuvob8944yC
Mn7JUnXf3OTtl0+zdMFRc62VQOBcRgts91ZKtUF8+P4CbE4idcma57Uep68BIWTP
hE2FWTAUosOEnQkD7vwonof+f/1pAzAnzdpp5AoXoN12ogXqf7jcDdkaRjOg4Oos
upYgejQMfKoB7YHf7ID3VLIQZCtJ
-----END CERTIFICATE-----
Generated at Fri Apr 26 08:27:27 2024 by rpki-client on console-ams.rpki-client.org