Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1A6944EA077811EFA708954D017001B1.roa
File: 1A6944EA077811EFA708954D017001B1.roa (raw, json)
Hash identifier: XLU4PeU4nQHfxvVB6xjd5EWFiZ6z+WA9OpHI+Yc9ss8=
Subject key identifier: E1:D6:58:68:95:96:47:D6:04:F7:93:B0:89:E9:EC:8A:7A:5B:50:BB
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: B338
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1A6944EA077811EFA708954D017001B1.roa
Signing time: Wed 01 May 2024 05:03:09 +0000
ROA not before: Wed 01 May 2024 05:03:06 +0000
ROA not after: Sat 11 May 2024 05:03:06 +0000
asID: 142062
IP address blocks: 154.206.223.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 45880 (0xb338)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 1 05:03:06 2024 GMT
Not After : May 11 05:03:06 2024 GMT
Subject: CN=6631cd0d-f64b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:8d:d2:7a:9f:4e:12:95:63:62:89:4d:18:4e:
fb:d4:2d:fb:08:28:0e:0f:ad:b0:b5:56:45:f5:8d:
f3:3d:1a:05:ef:ca:c5:e6:46:24:25:ab:05:39:8f:
33:ed:b4:b1:45:7a:47:4f:92:37:f8:7c:fc:cf:10:
60:09:bc:7d:f7:4d:da:23:54:33:7f:c5:59:6c:58:
ce:72:30:03:c3:22:67:40:8b:0d:e3:9a:5d:5f:76:
6c:4e:61:13:e2:6d:86:bd:ae:d8:63:ec:f4:14:0c:
c4:22:50:77:8d:f1:88:30:ca:65:ab:5e:fe:35:11:
f3:d8:b4:c5:b1:b1:9b:83:5f:1a:95:50:01:71:75:
ae:5a:3b:65:68:02:88:eb:93:6f:79:cb:dc:0c:5a:
c3:4d:dd:9f:0b:38:e9:d2:7e:d3:f7:bd:df:dd:60:
83:e7:e8:a1:55:59:2e:dd:1b:50:02:85:e3:a5:8d:
36:3f:2a:ba:d2:f3:9e:e2:db:2f:e3:f1:ec:50:48:
5c:82:be:c8:a1:06:c6:78:40:4e:81:1f:8b:61:d1:
99:f2:cd:98:14:24:32:e7:fe:63:7d:c7:35:04:c8:
7c:e7:54:cb:cb:f8:b6:00:a1:7f:56:e9:19:3f:3d:
d7:df:77:80:6f:5d:cf:44:96:d7:da:7d:cc:c5:a0:
fd:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:D6:58:68:95:96:47:D6:04:F7:93:B0:89:E9:EC:8A:7A:5B:50:BB
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1A6944EA077811EFA708954D017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.206.223.0/24
Signature Algorithm: sha256WithRSAEncryption
3d:0c:53:3e:69:39:db:30:90:3f:9e:17:52:5b:f5:3b:30:02:
a5:6e:29:fc:80:43:98:77:e7:82:32:68:85:aa:1b:a7:31:f1:
ed:63:a0:1e:36:d2:0c:06:f6:7e:b5:2e:30:ff:bd:21:b6:d1:
7a:58:42:ba:7c:6b:8f:15:4c:fa:9b:be:94:c1:f6:63:a9:40:
99:a6:0d:7b:ae:79:7c:28:e3:81:17:1a:fa:6b:3b:1e:1b:b6:
cc:25:33:ba:54:ac:8d:08:e9:39:8d:a6:a1:16:32:25:4c:59:
94:34:89:8c:b8:7e:4c:1e:f8:a9:d3:0c:7e:59:1a:2b:72:d7:
cb:d4:e6:69:80:5e:55:45:4e:23:74:64:ec:1c:e2:8e:57:2e:
36:a4:64:b9:46:65:2d:5d:74:5a:3f:c1:e1:04:57:6b:57:50:
11:fb:38:b8:4a:63:10:73:b3:d4:3d:f6:48:99:fd:62:f6:ca:
3d:a0:70:50:75:53:b2:16:53:fc:76:fc:6e:d0:9d:dd:c0:cf:
f7:b7:d9:a7:2d:f1:9f:38:b8:e6:e2:b6:a7:8e:f9:8b:bb:8b:
6a:48:1e:9a:e6:d6:8f:97:c6:36:63:c3:5c:21:39:fd:e1:c4:
35:f3:77:80:05:7c:5f:51:d5:3b:f3:a8:53:54:55:e5:50:92:
7b:da:52:e9
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDALM4MA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQwNTAxMDUwMzA2WhcNMjQwNTExMDUwMzA2WjAYMRYw
FAYDVQQDEw02NjMxY2QwZC1mNjRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAy43Sep9OEpVjYolNGE771C37CCgOD62wtVZF9Y3zPRoF78rF5kYkJasF
OY8z7bSxRXpHT5I3+Hz8zxBgCbx9903aI1Qzf8VZbFjOcjADwyJnQIsN45pdX3Zs
TmET4m2Gva7YY+z0FAzEIlB3jfGIMMplq17+NRHz2LTFsbGbg18alVABcXWuWjtl
aAKI65NvecvcDFrDTd2fCzjp0n7T973f3WCD5+ihVVku3RtQAoXjpY02Pyq60vOe
4tsv4/HsUEhcgr7IoQbGeEBOgR+LYdGZ8s2YFCQy5/5jfcc1BMh851TLy/i2AKF/
VukZPz3X33eAb13PRJbX2n3MxaD99wIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFOHW
WGiVlkfWBPeTsInp7Ip6W1C7MB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC8xQTY5NDRFQTA3NzgxMUVGQTcwODk1NEQwMTcwMDFCMS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAms7fMA0GCSqGSIb3DQEB
CwUAA4IBAQA9DFM+aTnbMJA/nhdSW/U7MAKlbin8gEOYd+eCMmiFqhunMfHtY6Ae
NtIMBvZ+tS4w/70httF6WEK6fGuPFUz6m76UwfZjqUCZpg17rnl8KOOBFxr6azse
G7bMJTO6VKyNCOk5jaahFjIlTFmUNImMuH5MHvip0wx+WRorctfL1OZpgF5VRU4j
dGTsHOKOVy42pGS5RmUtXXRaP8HhBFdrV1AR+zi4SmMQc7PUPfZImf1i9so9oHBQ
dVOyFlP8dvxu0J3dwM/3t9mnLfGfOLjm4ranjvmLu4tqSB6a5taPl8Y2Y8NcITn9
4cQ183eABXxfUdU786hTVFXlUJJ72lLp
-----END CERTIFICATE-----
Generated at Sun May 12 02:36:20 2024 by rpki-client on console-ams.rpki-client.org