Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0AFCCE4ECCB011EEBAC9C86E775412E6.roa
File: 0AFCCE4ECCB011EEBAC9C86E775412E6.roa (raw, json)
Hash identifier: 5wJgDqFbs/cO/7yLjJkJ/dJ2MqmiEuZgy4FIw+fY098=
Subject key identifier: 63:D6:0C:59:19:E6:1E:2A:3C:5D:5E:87:94:BF:D4:AD:52:5F:78:F3
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 8A91
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0AFCCE4ECCB011EEBAC9C86E775412E6.roa
Signing time: Fri 16 Feb 2024 09:44:57 +0000
ROA not before: Fri 16 Feb 2024 09:44:53 +0000
ROA not after: Fri 26 Apr 2024 09:44:53 +0000
asID: 9009
IP address blocks: 154.218.226.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 35473 (0x8a91)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Feb 16 09:44:53 2024 GMT
Not After : Apr 26 09:44:53 2024 GMT
Subject: CN=65cf2e98-3ce9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:37:09:06:9a:b9:be:24:24:c9:c4:dd:07:a2:
ad:51:07:87:e7:16:19:5a:5d:a1:f4:14:0a:6e:45:
cf:bc:79:47:2a:1a:8c:38:70:f2:15:16:b6:c6:ba:
d6:69:48:ba:37:1f:66:3b:ce:ce:b8:2d:77:2b:d7:
36:8a:de:16:14:71:16:3a:50:54:bd:9b:00:da:51:
24:19:10:2b:df:2f:a4:08:15:38:6d:3d:10:4b:b6:
be:b0:73:f5:5c:63:5a:82:d7:38:63:48:0a:42:49:
fd:fa:9e:12:ee:2b:09:40:68:d9:82:83:23:9e:c4:
73:23:be:ea:5a:6c:a2:48:52:ee:e8:fa:78:d2:48:
da:07:f6:4c:07:52:c2:18:b6:d9:54:95:0c:d4:84:
d3:df:15:70:3c:1d:20:a4:98:3f:9a:e2:27:1c:a9:
4d:74:c9:56:a5:f2:10:db:9c:1f:fd:ba:b3:b5:60:
aa:a5:d9:c5:ac:9f:ef:bc:28:6a:d9:eb:37:3d:17:
94:8e:5c:0e:1a:87:1b:52:18:d3:74:7c:71:2f:4d:
db:ee:ae:0a:e0:a3:5f:45:21:b2:1e:e5:79:1d:6b:
71:e9:c2:fd:d3:98:97:35:89:a2:0b:38:de:53:84:
04:46:43:35:00:74:0b:cf:98:e0:b3:5b:9e:30:42:
36:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:D6:0C:59:19:E6:1E:2A:3C:5D:5E:87:94:BF:D4:AD:52:5F:78:F3
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0AFCCE4ECCB011EEBAC9C86E775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.218.226.0/24
Signature Algorithm: sha256WithRSAEncryption
ba:df:81:4b:71:8e:73:59:a0:2d:b6:d5:bc:da:a0:0b:cf:80:
e2:fb:06:7a:61:f0:4d:d7:f8:a5:09:17:c4:ec:7d:6a:10:86:
32:56:55:a7:9c:73:8e:b7:a1:03:9e:2f:81:14:89:11:ae:37:
d1:de:af:74:e6:8e:7a:97:94:8c:b2:37:c7:46:84:43:d9:30:
fd:4a:73:39:b5:fa:fa:ac:3d:bb:4d:ae:91:d1:cf:24:a7:13:
50:d9:a3:e3:76:6e:33:4c:cf:2e:63:90:df:f9:33:2f:bb:78:
13:de:92:ab:95:77:60:a9:20:c5:aa:44:ac:b4:7a:0e:ed:59:
94:b7:9a:5f:78:55:d2:5b:36:a1:8c:6c:4c:f9:9b:eb:27:e7:
9f:a8:08:d4:ea:30:9f:a7:65:e3:38:1a:db:1a:f6:10:e8:27:
64:65:1d:10:04:3e:7d:a8:f2:90:55:d9:4f:d9:f4:7e:58:6f:
db:8e:d0:15:c9:48:9a:b6:fd:d8:66:58:bd:f3:b1:97:38:07:
a7:d4:a1:45:98:ba:70:54:93:37:43:fa:f2:53:4a:51:ca:d0:
14:d5:48:1c:f2:ac:81:7d:ff:06:c9:02:83:c3:13:f6:26:b1:
14:0e:ae:0b:2a:8b:f4:03:f9:e7:27:27:9a:8f:9c:fc:07:1a:
5a:8d:dd:6e
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAIqRMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQwMjE2MDk0NDUzWhcNMjQwNDI2MDk0NDUzWjAYMRYw
FAYDVQQDEw02NWNmMmU5OC0zY2U5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEArzcJBpq5viQkycTdB6KtUQeH5xYZWl2h9BQKbkXPvHlHKhqMOHDyFRa2
xrrWaUi6Nx9mO87OuC13K9c2it4WFHEWOlBUvZsA2lEkGRAr3y+kCBU4bT0QS7a+
sHP1XGNagtc4Y0gKQkn9+p4S7isJQGjZgoMjnsRzI77qWmyiSFLu6Pp40kjaB/ZM
B1LCGLbZVJUM1ITT3xVwPB0gpJg/muInHKlNdMlWpfIQ25wf/bqztWCqpdnFrJ/v
vChq2es3PReUjlwOGocbUhjTdHxxL03b7q4K4KNfRSGyHuV5HWtx6cL905iXNYmi
CzjeU4QERkM1AHQLz5jgs1ueMEI2gwIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFGPW
DFkZ5h4qPF1eh5S/1K1SX3jzMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC8wQUZDQ0U0RUNDQjAxMUVFQkFDOUM4NkU3NzU0MTJFNi5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmtriMA0GCSqGSIb3DQEB
CwUAA4IBAQC634FLcY5zWaAtttW82qALz4Di+wZ6YfBN1/ilCRfE7H1qEIYyVlWn
nHOOt6EDni+BFIkRrjfR3q905o56l5SMsjfHRoRD2TD9SnM5tfr6rD27Ta6R0c8k
pxNQ2aPjdm4zTM8uY5Df+TMvu3gT3pKrlXdgqSDFqkSstHoO7VmUt5pfeFXSWzah
jGxM+ZvrJ+efqAjU6jCfp2XjOBrbGvYQ6CdkZR0QBD59qPKQVdlP2fR+WG/bjtAV
yUiatv3YZli987GXOAen1KFFmLpwVJM3Q/ryU0pRytAU1Ugc8qyBff8GyQKDwxP2
JrEUDq4LKov0A/nnJyeaj5z8Bxpajd1u
-----END CERTIFICATE-----
Generated at Fri Apr 26 11:01:28 2024 by rpki-client on console-ams.rpki-client.org