Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/01057D5207AF11EF9CF5FA05017001B1.roa
File: 01057D5207AF11EF9CF5FA05017001B1.roa (raw, json)
Hash identifier: oILq+LvBLfgxXGxheHSfnNoLbuXY7MEVW7qsFNlQN9g=
Subject key identifier: 33:F8:79:9F:75:F9:55:A2:31:EF:B3:87:50:A8:E9:ED:F6:AE:45:D7
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: B393
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/01057D5207AF11EF9CF5FA05017001B1.roa
Signing time: Wed 01 May 2024 11:36:09 +0000
ROA not before: Wed 01 May 2024 11:36:05 +0000
ROA not after: Fri 17 May 2024 11:36:05 +0000
asID: 151800
IP address blocks: 154.197.95.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 45971 (0xb393)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 1 11:36:05 2024 GMT
Not After : May 17 11:36:05 2024 GMT
Subject: CN=66322929-a6b5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:90:7a:f5:7d:b1:e1:19:cf:07:48:63:f9:3e:
10:d8:da:0a:fe:f2:1f:22:a7:4c:69:d3:c3:50:a0:
ff:c6:cc:a2:39:af:d3:78:b5:99:60:96:e5:84:fe:
45:e5:1f:76:93:d4:3a:f0:d1:1e:d4:0f:12:c7:bf:
9d:91:1c:e6:4f:ae:fc:3d:f7:3a:7e:59:6e:3b:0c:
d3:26:bc:58:79:94:97:ce:11:6c:a3:57:43:9c:e3:
9e:ec:19:11:2d:4e:0b:64:a9:71:e8:ea:fa:a6:31:
62:db:6f:03:e6:a2:97:62:1f:7b:d7:f1:16:77:8f:
bf:d7:43:8d:ac:05:d6:22:f9:68:4f:33:f7:78:fd:
29:31:c4:f5:88:2b:39:19:e2:d6:c2:f1:77:e9:68:
26:8a:aa:85:7c:3d:54:57:d2:43:a9:43:6c:aa:45:
71:ae:ac:db:05:cf:70:50:f7:64:91:6f:06:87:f2:
89:bf:57:df:35:a6:e0:bc:05:03:af:86:76:18:e8:
c3:ce:78:19:cc:92:76:c9:e3:c6:22:cb:64:53:bf:
a4:22:0d:36:ab:33:7f:0f:78:55:89:ab:98:69:e1:
e2:4c:41:d6:b3:14:99:87:b3:b1:2c:7e:3e:9c:34:
d2:1a:6f:dc:60:37:0b:48:79:5d:c2:9c:77:55:b8:
9b:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:F8:79:9F:75:F9:55:A2:31:EF:B3:87:50:A8:E9:ED:F6:AE:45:D7
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/01057D5207AF11EF9CF5FA05017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.197.95.0/24
Signature Algorithm: sha256WithRSAEncryption
91:aa:62:f2:0a:5e:d2:f9:12:43:cb:fd:b8:6e:2d:eb:c5:ac:
82:c3:a3:91:a7:01:8d:32:9c:a1:76:b3:3a:79:4a:c3:e1:10:
11:7c:c4:b7:82:f7:91:48:d6:29:1a:f9:ad:cf:f5:35:19:90:
87:07:da:df:12:ba:92:a2:ec:47:91:f0:03:bd:8d:67:af:b1:
13:8e:6b:8c:51:64:af:ed:a8:72:a6:99:a3:5d:a4:2c:c1:6c:
cf:dc:6d:19:43:e6:cd:3b:fb:f1:a8:cc:c1:21:ff:92:65:0d:
f0:5f:1b:3a:7f:07:fa:0d:76:e1:2d:ff:2f:93:66:52:64:d5:
40:ad:88:39:ba:e9:64:12:f1:6b:c4:fe:ca:13:49:a7:58:db:
fb:75:4d:a0:3c:11:37:0f:c7:82:f8:9d:ca:1e:35:89:bc:43:
06:8c:b5:96:a5:24:3f:69:ea:47:4f:cf:2d:51:42:7b:8e:a3:
32:c4:05:1b:ae:c7:ef:18:89:b9:af:ee:07:66:b4:aa:98:5f:
85:ca:84:83:10:c9:21:54:dd:cb:39:25:66:8c:66:52:53:11:
c6:ee:07:10:e6:72:b6:6d:74:21:bd:2a:8b:e0:61:2d:89:e1:
7a:0b:cb:91:61:b2:54:70:a5:4d:e9:c1:83:1d:68:4a:3a:d8:
da:d6:8f:19
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDALOTMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQwNTAxMTEzNjA1WhcNMjQwNTE3MTEzNjA1WjAYMRYw
FAYDVQQDEw02NjMyMjkyOS1hNmI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAo5B69X2x4RnPB0hj+T4Q2NoK/vIfIqdMadPDUKD/xsyiOa/TeLWZYJbl
hP5F5R92k9Q68NEe1A8Sx7+dkRzmT678Pfc6flluOwzTJrxYeZSXzhFso1dDnOOe
7BkRLU4LZKlx6Or6pjFi228D5qKXYh971/EWd4+/10ONrAXWIvloTzP3eP0pMcT1
iCs5GeLWwvF36WgmiqqFfD1UV9JDqUNsqkVxrqzbBc9wUPdkkW8Gh/KJv1ffNabg
vAUDr4Z2GOjDzngZzJJ2yePGIstkU7+kIg02qzN/D3hViauYaeHiTEHWsxSZh7Ox
LH4+nDTSGm/cYDcLSHldwpx3VbibLwIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFDP4
eZ91+VWiMe+zh1Co6e32rkXXMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC8wMTA1N0Q1MjA3QUYxMUVGOUNGNUZBMDUwMTcwMDFCMS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmsVfMA0GCSqGSIb3DQEB
CwUAA4IBAQCRqmLyCl7S+RJDy/24bi3rxayCw6ORpwGNMpyhdrM6eUrD4RARfMS3
gveRSNYpGvmtz/U1GZCHB9rfErqSouxHkfADvY1nr7ETjmuMUWSv7ahyppmjXaQs
wWzP3G0ZQ+bNO/vxqMzBIf+SZQ3wXxs6fwf6DXbhLf8vk2ZSZNVArYg5uulkEvFr
xP7KE0mnWNv7dU2gPBE3D8eC+J3KHjWJvEMGjLWWpSQ/aepHT88tUUJ7jqMyxAUb
rsfvGIm5r+4HZrSqmF+FyoSDEMkhVN3LOSVmjGZSUxHG7gcQ5nK2bXQhvSqL4GEt
ieF6C8uRYbJUcKVN6cGDHWhKOtja1o8Z
-----END CERTIFICATE-----
Generated at Fri May 17 17:36:43 2024 by rpki-client on console-fra.rpki-client.org