Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F4A1/A61F3BB83F5C11EF9D4CC77E762E951A/3A43399A435711EF8A811CB6762E951A.roa
File: 3A43399A435711EF8A811CB6762E951A.roa (raw, json)
Hash identifier: aBSFS+5IpvceYtZEIeC7Pnxzxqatw2IQSYFDgejF7o4=
Subject key identifier: BE:86:84:E1:D7:8E:AB:E1:85:74:13:6E:A4:C9:C6:E9:93:1C:E6:1D
Certificate issuer: /CN=F368F4A1AR/serialNumber=825DB034FAB437A89A8DD24406AB7282C78B62BA
Certificate serial: 0D
Authority key identifier: 82:5D:B0:34:FA:B4:37:A8:9A:8D:D2:44:06:AB:72:82:C7:8B:62:BA
Authority info access: rsync://rpki.afrinic.net/repository/arin/gl2wNPq0N6iajdJEBqtygseLYro.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F4A1/A61F3BB83F5C11EF9D4CC77E762E951A/3A43399A435711EF8A811CB6762E951A.roa
Signing time: Tue 16 Jul 2024 09:38:59 +0000
ROA not before: Tue 16 Jul 2024 09:38:56 +0000
ROA not after: Wed 31 Jul 2024 09:38:56 +0000
asID: 198949
IP address blocks: 168.253.128.0/18 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13 (0xd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F4A1AR/serialNumber=825DB034FAB437A89A8DD24406AB7282C78B62BA
Validity
Not Before: Jul 16 09:38:56 2024 GMT
Not After : Jul 31 09:38:56 2024 GMT
Subject: CN=66963fb3-54c9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:61:c8:ad:4f:92:a9:1f:19:3d:e7:65:77:39:
cd:fe:ca:9e:ce:15:b7:36:6e:41:e1:36:bd:d7:29:
66:11:c4:2e:22:47:f9:f2:f8:3d:e3:6c:63:b9:f7:
ff:e2:de:3f:ca:8f:3d:62:46:97:91:55:31:56:14:
b7:6e:c2:db:83:5f:72:6d:18:b3:ee:39:47:eb:e0:
5a:c7:00:4c:11:02:b3:c3:3c:43:f0:52:79:42:4a:
ea:74:a4:24:8a:60:e1:26:60:1a:d5:e4:c9:7d:44:
81:96:75:5b:7f:7a:01:7b:45:49:95:d9:cb:51:f9:
cc:ab:d8:b6:33:7c:b8:de:2d:6b:87:4b:99:a9:03:
71:ab:9a:b9:a5:ec:56:8c:30:b4:7a:19:64:57:2c:
74:96:a0:d3:2a:2e:9d:0a:03:95:7b:0b:85:3b:e0:
28:f1:0c:5c:2c:27:bb:58:c4:0c:54:69:e9:38:5c:
20:7e:d9:4c:b7:0f:1f:82:89:83:60:63:61:af:2b:
b3:18:8e:09:29:31:96:b9:c0:af:49:6a:78:d5:84:
64:a5:8a:55:90:f2:a0:45:48:b7:05:e9:83:04:ae:
ab:fe:a3:0a:a3:1b:9c:24:6e:af:31:d9:dc:4e:65:
4b:ca:f4:c3:51:36:28:61:12:c2:ca:e3:8e:11:ee:
05:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:86:84:E1:D7:8E:AB:E1:85:74:13:6E:A4:C9:C6:E9:93:1C:E6:1D
X509v3 Authority Key Identifier:
keyid:82:5D:B0:34:FA:B4:37:A8:9A:8D:D2:44:06:AB:72:82:C7:8B:62:BA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F4A1/A61F3BB83F5C11EF9D4CC77E762E951A/gl2wNPq0N6iajdJEBqtygseLYro.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/gl2wNPq0N6iajdJEBqtygseLYro.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F4A1/A61F3BB83F5C11EF9D4CC77E762E951A/3A43399A435711EF8A811CB6762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
168.253.128.0/18
Signature Algorithm: sha256WithRSAEncryption
5a:54:e9:41:07:2e:b9:eb:e7:67:b0:a1:33:04:6c:e2:a5:53:
3f:53:49:1c:6d:e1:21:f6:75:c1:33:3a:21:db:03:06:f3:60:
82:0f:f8:72:15:9d:21:71:d4:d2:2d:0e:27:ee:49:78:73:a2:
88:8b:da:cb:4e:39:39:85:5d:d8:32:f1:d5:1b:4f:7a:28:da:
e3:0c:81:61:88:9c:e3:93:1e:c5:87:a2:92:f1:02:38:15:7b:
98:37:db:1e:68:6d:64:f5:16:f6:61:a0:55:88:30:85:c4:21:
4d:16:3a:cb:d5:c3:c1:4a:b1:55:b1:fb:83:5b:3c:cf:12:54:
29:e0:c7:d4:75:67:f1:a0:36:5e:75:ee:ed:ea:cf:94:db:64:
90:d4:f8:a1:63:53:5b:da:c4:21:65:8d:95:ae:6a:6f:13:ef:
f4:f4:29:99:70:81:a7:1b:bd:c6:cf:e6:9a:96:77:d0:22:27:
cc:7a:a1:5d:c9:9f:60:48:f4:5d:d6:9e:77:49:4b:98:43:3a:
b6:cf:6b:36:12:03:36:60:8e:92:ed:85:f1:f2:4d:ed:87:fd:
83:1e:e1:4b:e3:a0:7a:c0:46:c2:c9:6c:96:70:d0:4b:9d:07:
12:05:2c:48:74:da:14:a4:ab:5a:19:46:d3:55:36:09:e9:4b:
89:33:c6:0c
-----BEGIN CERTIFICATE-----
MIIFfzCCBGegAwIBAgIBDTANBgkqhkiG9w0BAQsFADBIMRMwEQYDVQQDEwpGMzY4
RjRBMUFSMTEwLwYDVQQFEyg4MjVEQjAzNEZBQjQzN0E4OUE4REQyNDQwNkFCNzI4
MkM3OEI2MkJBMB4XDTI0MDcxNjA5Mzg1NloXDTI0MDczMTA5Mzg1NlowGDEWMBQG
A1UEAxMNNjY5NjNmYjMtNTRjOTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC
ggEBAORhyK1PkqkfGT3nZXc5zf7Kns4VtzZuQeE2vdcpZhHELiJH+fL4PeNsY7n3
/+LeP8qPPWJGl5FVMVYUt27C24Nfcm0Ys+45R+vgWscATBECs8M8Q/BSeUJK6nSk
JIpg4SZgGtXkyX1EgZZ1W396AXtFSZXZy1H5zKvYtjN8uN4ta4dLmakDcauauaXs
VowwtHoZZFcsdJag0younQoDlXsLhTvgKPEMXCwnu1jEDFRp6ThcIH7ZTLcPH4KJ
g2BjYa8rsxiOCSkxlrnAr0lqeNWEZKWKVZDyoEVItwXpgwSuq/6jCqMbnCRurzHZ
3E5lS8r0w1E2KGESwsrjjhHuBakCAwEAAaOCAqIwggKeMB0GA1UdDgQWBBS+hoTh
146r4YV0E26kycbpkxzmHTAfBgNVHSMEGDAWgBSCXbA0+rQ3qJqN0kQGq3KCx4ti
ujAOBgNVHQ8BAf8EBAMCB4AwgZUGA1UdHwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6
Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvbWVtYmVyX3JlcG9zaXRvcnkv
RjM2OEY0QTEvQTYxRjNCQjgzRjVDMTFFRjlENENDNzdFNzYyRTk1MUEvZ2wyd05Q
cTBONmlhamRKRUJxdHlnc2VMWXJvLmNybDBkBggrBgEFBQcBAQRYMFYwVAYIKwYB
BQUHMAKGSHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L2FyaW4v
Z2wyd05QcTBONmlhamRKRUJxdHlnc2VMWXJvLmNlcjBPBgNVHSABAf8ERTBDMEEG
CCsGAQUFBw4CMDUwMwYIKwYBBQUHAgEWJ2h0dHBzOi8vcnBraS5hZnJpbmljLm5l
dC9wb2xpY3kvQ1BTLnBkZjCB2wYIKwYBBQUHAQsEgc4wgcswgZEGCCsGAQUFBzAL
hoGEcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvbWVtYmVyX3Jl
cG9zaXRvcnkvRjM2OEY0QTEvQTYxRjNCQjgzRjVDMTFFRjlENENDNzdFNzYyRTk1
MUEvM0E0MzM5OUE0MzU3MTFFRjhBODExQ0I2NzYyRTk1MUEucm9hMDUGCCsGAQUF
BzANhilodHRwczovL3JyZHAuYWZyaW5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBqj9gDANBgkqhkiG9w0BAQsFAAOC
AQEAWlTpQQcuuevnZ7ChMwRs4qVTP1NJHG3hIfZ1wTM6IdsDBvNggg/4chWdIXHU
0i0OJ+5JeHOiiIvay045OYVd2DLx1RtPeija4wyBYYic45MexYeikvECOBV7mDfb
HmhtZPUW9mGgVYgwhcQhTRY6y9XDwUqxVbH7g1s8zxJUKeDH1HVn8aA2XnXu7erP
lNtkkNT4oWNTW9rEIWWNla5qbxPv9PQpmXCBpxu9xs/mmpZ30CInzHqhXcmfYEj0
Xdaed0lLmEM6ts9rNhIDNmCOku2F8fJN7Yf9gx7hS+OgesBGwslslnDQS50HEgUs
SHTaFKSrWhlG01U2CelLiTPGDA==
-----END CERTIFICATE-----
Generated at Thu Aug 1 05:35:31 2024 by rpki-client on console-fra.rpki-client.org