Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/BED1198649A911EFBF9F16B4762E951A.roa
File: BED1198649A911EFBF9F16B4762E951A.roa (raw, json)
Hash identifier: 9uA41tnd4ylFZJ+hS8CpYV69Z0rmlwxTrB3Ox03dFGU=
Subject key identifier: 28:60:EB:A1:5E:3F:29:9D:96:17:11:78:53:1A:42:07:E0:04:41:65
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 9F55
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/BED1198649A911EFBF9F16B4762E951A.roa
Signing time: Wed 24 Jul 2024 10:44:47 +0000
ROA not before: Wed 24 Jul 2024 10:44:44 +0000
ROA not after: Thu 01 Aug 2024 10:44:44 +0000
asID: 3491
IP address blocks: 156.230.3.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 40789 (0x9f55)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jul 24 10:44:44 2024 GMT
Not After : Aug 1 10:44:44 2024 GMT
Subject: CN=66a0db1f-fc4b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:2f:d1:d8:d7:25:9a:68:24:4c:f4:f8:07:56:
e0:23:86:fd:e3:db:10:ab:31:5f:af:95:76:a0:bf:
46:43:bb:17:4c:6e:7f:9f:99:c4:ff:b1:3d:c0:b6:
61:63:54:f5:2a:5e:c0:cc:e7:76:70:d9:56:b1:c6:
1e:77:f6:a5:d5:13:1e:d1:54:d0:1f:d4:5d:bd:15:
60:9c:e7:38:d1:95:ba:3b:5c:c9:01:ad:cf:ca:80:
8c:a2:fa:32:8c:9e:10:23:9f:dc:67:56:34:dd:7d:
ee:d8:e5:1a:01:d0:ab:18:a9:50:1d:92:de:5a:9d:
ff:d6:1a:eb:1a:61:f1:cc:4d:de:ee:5e:c4:26:f0:
4b:8d:49:62:b9:93:d7:d7:e3:f6:70:e7:4b:9c:34:
7b:85:2f:09:a5:ff:f3:10:f6:9c:5c:23:e7:3f:56:
0f:8d:59:62:03:fe:ca:25:80:d8:29:a9:fc:9c:77:
88:25:aa:9e:09:2e:c9:b5:7b:79:1e:43:7b:6a:0b:
1d:c0:e9:8d:91:51:44:b4:35:68:93:45:a2:58:c8:
1c:6e:27:b3:90:2d:74:1c:4e:d3:61:ea:4d:78:af:
00:63:01:7c:db:6b:58:56:0c:17:79:c9:a6:60:0a:
76:e3:c8:b5:a5:e3:e6:f3:56:97:56:4a:db:36:bd:
6d:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:60:EB:A1:5E:3F:29:9D:96:17:11:78:53:1A:42:07:E0:04:41:65
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/BED1198649A911EFBF9F16B4762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.230.3.0/24
Signature Algorithm: sha256WithRSAEncryption
29:9e:5a:ec:7c:17:83:42:34:84:26:94:07:4f:70:82:9f:fc:
01:37:e2:b2:f8:32:03:df:21:f8:0c:e4:cf:2e:b6:1d:67:ed:
52:e0:c2:35:ea:d0:ba:a9:9a:94:c5:dc:5b:a1:6e:af:47:68:
ca:a2:54:9c:91:1f:ae:45:65:f4:42:f9:18:b2:6c:d6:a5:b1:
38:f2:38:a2:da:00:2a:e9:db:59:ee:e3:d3:ec:e5:2b:f0:43:
95:fe:32:32:69:93:be:ad:ea:f4:5b:a1:16:a5:2b:87:61:14:
aa:3f:1f:56:c3:df:03:17:04:4f:13:ac:ad:35:ef:3b:6d:8c:
fb:94:b6:f0:00:69:c6:d8:55:04:b2:5f:02:e1:c3:95:f4:24:
ce:08:02:19:7f:45:ea:76:ac:ad:2a:d7:64:42:99:2d:f2:21:
6d:19:70:db:dd:f4:3f:d2:ba:88:55:5d:f8:5c:18:d9:8e:31:
a9:ea:91:a4:6a:09:f0:6f:3a:a6:67:00:97:7e:25:11:aa:9e:
3b:c7:e5:a6:53:de:f2:16:d4:61:87:09:f9:b3:0c:b4:6f:92:
dd:24:35:f7:d6:3d:cb:65:2f:7f:b6:4d:54:3d:56:14:c0:8d:
1d:d6:aa:ff:d2:73:e0:0c:d6:75:66:78:5c:99:b4:8f:48:b2:
de:7b:84:db
-----BEGIN CERTIFICATE-----
MIIFgTCCBGmgAwIBAgIDAJ9VMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQVIxMTAvBgNVBAUTKDc5N0Q4OEQ4MTNFMjBGRkY5ODJDQzc0MTlFOTY5
QkFFQTZCRkQ2OUIwHhcNMjQwNzI0MTA0NDQ0WhcNMjQwODAxMTA0NDQ0WjAYMRYw
FAYDVQQDEw02NmEwZGIxZi1mYzRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEA4C/R2NclmmgkTPT4B1bgI4b949sQqzFfr5V2oL9GQ7sXTG5/n5nE/7E9
wLZhY1T1Kl7AzOd2cNlWscYed/al1RMe0VTQH9RdvRVgnOc40ZW6O1zJAa3PyoCM
ovoyjJ4QI5/cZ1Y03X3u2OUaAdCrGKlQHZLeWp3/1hrrGmHxzE3e7l7EJvBLjUli
uZPX1+P2cOdLnDR7hS8Jpf/zEPacXCPnP1YPjVliA/7KJYDYKan8nHeIJaqeCS7J
tXt5HkN7agsdwOmNkVFEtDVok0WiWMgcbiezkC10HE7TYepNeK8AYwF822tYVgwX
ecmmYAp248i1pePm81aXVkrbNr1tnwIDAQABo4ICojCCAp4wHQYDVR0OBBYEFChg
66FePymdlhcReFMaQgfgBEFlMB8GA1UdIwQYMBaAFHl9iNgT4g//mCzHQZ6Wm66m
v9abMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFFQTIyOC9lWDJJ
MkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY3JsMGQGCCsGAQUFBwEBBFgwVjBUBggr
BgEFBQcwAoZIcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYXJp
bi9lWDJJMkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY2VyME8GA1UdIAEB/wRFMEMw
QQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmluaWMu
bmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYBBQUH
MAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJf
cmVwb3NpdG9yeS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFF
QTIyOC9CRUQxMTk4NjQ5QTkxMUVGQkY5RjE2QjQ3NjJFOTUxQS5yb2EwNQYIKwYB
BQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1s
MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnOYDMA0GCSqGSIb3DQEBCwUA
A4IBAQApnlrsfBeDQjSEJpQHT3CCn/wBN+Ky+DID3yH4DOTPLrYdZ+1S4MI16tC6
qZqUxdxboW6vR2jKolSckR+uRWX0QvkYsmzWpbE48jii2gAq6dtZ7uPT7OUr8EOV
/jIyaZO+rer0W6EWpSuHYRSqPx9Ww98DFwRPE6ytNe87bYz7lLbwAGnG2FUEsl8C
4cOV9CTOCAIZf0XqdqytKtdkQpkt8iFtGXDb3fQ/0rqIVV34XBjZjjGp6pGkagnw
bzqmZwCXfiURqp47x+WmU97yFtRhhwn5swy0b5LdJDX31j3LZS9/tk1UPVYUwI0d
1qr/0nPgDNZ1ZnhcmbSPSLLee4Tb
-----END CERTIFICATE-----
Generated at Fri Aug 2 03:36:56 2024 by rpki-client on console-fra.rpki-client.org