Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0D3D6584CCA511EE9CCA8B5D775412E6.roa
File: 0D3D6584CCA511EE9CCA8B5D775412E6.roa (raw, json)
Hash identifier: Cq3/liNWFJngXZNeWvJNp/MRpbMNRzDX1sp74fnbVBo=
Subject key identifier: 4F:0F:5E:98:DB:BA:55:F1:7B:AF:E5:E8:53:44:EB:ED:1B:72:DA:2E
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 8A2F
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0D3D6584CCA511EE9CCA8B5D775412E6.roa
Signing time: Fri 16 Feb 2024 08:26:16 +0000
ROA not before: Fri 16 Feb 2024 08:26:13 +0000
ROA not after: Fri 26 Apr 2024 08:26:13 +0000
asID: 9009
IP address blocks: 154.218.199.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 35375 (0x8a2f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Feb 16 08:26:13 2024 GMT
Not After : Apr 26 08:26:13 2024 GMT
Subject: CN=65cf1c28-f7f4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:01:79:ad:3d:ed:e0:66:3f:b2:e7:7e:d5:bd:
aa:0d:26:35:08:be:43:c9:96:40:41:8e:d6:d0:73:
15:c7:5f:6a:17:55:67:83:2d:32:8a:41:6a:4a:11:
d8:de:d4:95:67:01:66:6c:52:bd:c9:e8:c8:e7:af:
a7:e9:30:01:81:09:60:94:4e:6f:b2:46:1a:36:bb:
18:c0:58:74:47:94:6f:4e:6e:46:5e:8f:af:a3:fc:
df:41:6a:8f:7b:26:c5:c3:26:1e:0d:01:d4:31:29:
b8:46:fb:84:ef:58:e5:81:98:b3:ab:47:78:bd:b2:
b8:10:51:77:e6:9a:2b:ab:f0:f4:65:8a:04:de:67:
34:fa:31:d8:95:d2:9b:bb:fa:85:f5:f3:38:73:6e:
17:4d:f5:31:e1:07:8b:de:c0:48:bf:e8:27:60:0e:
3f:42:6d:fd:01:64:95:b2:dd:f8:e5:eb:74:e1:5b:
7d:e6:ae:70:cd:df:74:86:25:a2:69:99:52:92:a0:
35:48:4f:7d:39:1c:a8:69:65:9f:8e:91:2f:08:5a:
f3:b9:36:7a:bf:99:e9:86:31:a7:c4:20:90:b4:16:
23:dd:8a:77:d9:cb:82:4e:30:92:71:cb:59:6d:d5:
ce:d7:d4:2e:48:bd:10:6f:c2:47:ee:e8:84:2b:5c:
0d:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:0F:5E:98:DB:BA:55:F1:7B:AF:E5:E8:53:44:EB:ED:1B:72:DA:2E
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0D3D6584CCA511EE9CCA8B5D775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.218.199.0/24
Signature Algorithm: sha256WithRSAEncryption
1b:7f:66:ee:c4:94:62:ac:42:54:c7:d4:65:61:00:31:68:e0:
e3:62:04:1e:b6:7b:7a:0b:18:63:89:87:0e:49:90:96:ec:44:
f6:92:37:0a:d5:9c:98:b2:67:82:87:7f:55:f5:e2:1d:8b:ad:
77:91:31:31:95:ed:bb:86:be:56:1d:38:bc:57:f1:58:83:81:
2c:e8:5b:64:87:82:a6:81:74:84:c2:96:ba:a6:92:ac:e3:41:
15:f2:02:b6:bc:8e:68:db:d8:04:9f:8a:1c:b3:34:6b:29:40:
e6:f2:07:13:5a:2a:d3:61:70:2f:61:70:09:ee:e1:f8:e2:3f:
b8:e1:54:84:7c:00:ab:a4:69:17:f5:e4:59:e5:0d:20:39:92:
ae:ae:de:22:b0:81:ed:84:88:2f:d9:8a:4b:b1:65:5c:8a:ad:
ea:ff:9e:e2:58:d8:3d:80:f3:96:45:6a:d0:09:8a:ec:2e:01:
78:e4:11:76:f5:05:ce:89:d2:3a:1b:be:fc:3e:ec:e1:b1:99:
10:ee:1e:e7:c1:a7:46:5f:48:48:11:a0:78:1f:6f:81:c8:94:
ac:b2:d7:a9:d4:f8:81:8b:c2:17:f4:08:52:26:b7:f8:78:17:
7b:25:d6:f6:61:07:53:61:85:09:f1:53:4b:31:9a:a8:c9:ba:
fa:a0:02:bd
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAIovMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQwMjE2MDgyNjEzWhcNMjQwNDI2MDgyNjEzWjAYMRYw
FAYDVQQDEw02NWNmMWMyOC1mN2Y0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAqQF5rT3t4GY/sud+1b2qDSY1CL5DyZZAQY7W0HMVx19qF1Vngy0yikFq
ShHY3tSVZwFmbFK9yejI56+n6TABgQlglE5vskYaNrsYwFh0R5RvTm5GXo+vo/zf
QWqPeybFwyYeDQHUMSm4RvuE71jlgZizq0d4vbK4EFF35porq/D0ZYoE3mc0+jHY
ldKbu/qF9fM4c24XTfUx4QeL3sBIv+gnYA4/Qm39AWSVst345et04Vt95q5wzd90
hiWiaZlSkqA1SE99ORyoaWWfjpEvCFrzuTZ6v5nphjGnxCCQtBYj3Yp32cuCTjCS
cctZbdXO19QuSL0Qb8JH7uiEK1wN3QIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFE8P
XpjbulXxe6/l6FNE6+0bctouMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC8wRDNENjU4NENDQTUxMUVFOUNDQThCNUQ3NzU0MTJFNi5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmtrHMA0GCSqGSIb3DQEB
CwUAA4IBAQAbf2buxJRirEJUx9RlYQAxaODjYgQetnt6CxhjiYcOSZCW7ET2kjcK
1ZyYsmeCh39V9eIdi613kTExle27hr5WHTi8V/FYg4Es6Ftkh4KmgXSEwpa6ppKs
40EV8gK2vI5o29gEn4ocszRrKUDm8gcTWirTYXAvYXAJ7uH44j+44VSEfACrpGkX
9eRZ5Q0gOZKurt4isIHthIgv2YpLsWVciq3q/57iWNg9gPOWRWrQCYrsLgF45BF2
9QXOidI6G778PuzhsZkQ7h7nwadGX0hIEaB4H2+ByJSsstep1PiBi8IX9AhSJrf4
eBd7Jdb2YQdTYYUJ8VNLMZqoybr6oAK9
-----END CERTIFICATE-----
Generated at Fri Apr 26 11:01:28 2024 by rpki-client on console-ams.rpki-client.org