Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1F5E2C3E077511EFB2426833017001B1.roa
File: 1F5E2C3E077511EFB2426833017001B1.roa (raw, json)
Hash identifier: i1J4rkE7odyO5V0XSBTa1a+6XcQZfl9Rk6CwWo/oGyA=
Subject key identifier: 77:C7:04:83:43:C0:FA:23:68:3B:AE:2F:30:55:CF:15:AD:8A:E2:AA
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: B31E
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1F5E2C3E077511EFB2426833017001B1.roa
Signing time: Wed 01 May 2024 04:41:49 +0000
ROA not before: Wed 01 May 2024 04:41:46 +0000
ROA not after: Sat 11 May 2024 04:41:46 +0000
asID: 142062
IP address blocks: 154.206.212.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 45854 (0xb31e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 1 04:41:46 2024 GMT
Not After : May 11 04:41:46 2024 GMT
Subject: CN=6631c80d-936f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:fb:76:c7:8b:fa:2e:98:3c:bb:fe:ff:f1:8d:
8c:22:c7:63:0a:ad:21:be:bc:92:38:23:a6:d0:c2:
40:b3:96:1e:7c:f6:5a:40:7a:c6:f6:97:80:3d:09:
75:ac:5c:a1:d7:5a:ad:48:77:49:58:52:8e:3f:3e:
2f:17:a2:a5:51:b9:1a:3c:07:11:15:79:6e:1c:0e:
b1:33:39:e9:d1:88:10:a3:8f:37:20:e3:6e:2d:9d:
33:a6:13:fb:33:05:65:63:1c:f4:ac:cf:db:e7:36:
5f:50:9f:84:de:ec:2d:60:0b:d5:d2:58:e5:f5:21:
cd:08:c1:cd:a5:4c:8d:79:df:fe:17:6e:68:56:64:
a7:48:79:c4:1e:dd:ce:87:65:ce:a2:11:60:ce:5d:
87:5a:ca:eb:a7:d0:54:42:4c:a7:28:8b:df:50:24:
18:2a:47:4e:80:fc:61:13:5e:f0:db:1e:2a:e8:bf:
d2:6f:ac:6c:9b:fb:8c:46:3e:b0:20:aa:cb:fc:96:
24:ed:04:29:cd:9b:6a:b2:ee:16:e4:20:d2:6f:bb:
c7:25:1d:78:79:0e:9a:b2:dd:f5:99:a3:f2:27:6a:
83:29:29:b3:cb:1a:5f:c0:05:3a:c7:65:f6:a6:b3:
0c:b1:23:a7:e3:7c:7d:34:73:35:e9:47:dc:c9:fc:
4a:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:C7:04:83:43:C0:FA:23:68:3B:AE:2F:30:55:CF:15:AD:8A:E2:AA
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1F5E2C3E077511EFB2426833017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.206.212.0/24
Signature Algorithm: sha256WithRSAEncryption
92:4e:a0:f2:4d:a2:e0:cf:3f:96:02:9c:b6:77:a1:b6:90:cb:
44:db:b6:d5:6b:04:f3:a6:0d:ea:f6:20:af:d9:79:be:d0:3e:
e1:63:bc:c1:44:13:a3:86:55:5e:dd:55:94:a1:91:b8:e9:7a:
29:8b:93:5c:69:43:dc:91:d6:3f:89:25:66:a2:3a:86:95:5b:
f1:13:f5:1d:86:fb:3f:ff:fa:5b:4c:f6:12:08:4e:31:d0:aa:
91:e3:78:3b:3e:1c:60:0b:96:c5:e5:a4:21:9e:9f:f4:4c:f4:
f8:c4:54:da:57:f7:6a:67:1f:94:00:bf:81:6a:65:c5:5a:c0:
41:7d:31:d7:1e:ee:17:2e:5f:a3:8c:42:92:f5:e7:f3:ef:4f:
78:fc:ab:a9:d7:92:e1:bd:2f:5f:0f:20:77:69:43:f3:62:52:
40:7a:23:83:2f:50:9a:66:b7:bf:71:3f:ed:2a:a4:00:27:62:
31:cf:bd:6b:39:e3:0d:ee:36:35:bf:07:48:c7:63:63:c3:d1:
96:e8:05:66:20:1b:a0:d9:71:54:c8:1f:81:77:d1:c0:aa:a2:
88:92:f1:53:b6:1a:76:57:a5:f7:68:9d:6e:07:9d:15:0d:3e:
ea:00:82:a1:ba:d7:e2:f3:13:5d:d2:4c:88:f3:db:85:ce:18:
b5:09:af:b0
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDALMeMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQwNTAxMDQ0MTQ2WhcNMjQwNTExMDQ0MTQ2WjAYMRYw
FAYDVQQDEw02NjMxYzgwZC05MzZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAxPt2x4v6Lpg8u/7/8Y2MIsdjCq0hvrySOCOm0MJAs5YefPZaQHrG9peA
PQl1rFyh11qtSHdJWFKOPz4vF6KlUbkaPAcRFXluHA6xMznp0YgQo483IONuLZ0z
phP7MwVlYxz0rM/b5zZfUJ+E3uwtYAvV0ljl9SHNCMHNpUyNed/+F25oVmSnSHnE
Ht3Oh2XOohFgzl2HWsrrp9BUQkynKIvfUCQYKkdOgPxhE17w2x4q6L/Sb6xsm/uM
Rj6wIKrL/JYk7QQpzZtqsu4W5CDSb7vHJR14eQ6ast31maPyJ2qDKSmzyxpfwAU6
x2X2prMMsSOn43x9NHM16UfcyfxKsQIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFHfH
BINDwPojaDuuLzBVzxWtiuKqMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC8xRjVFMkMzRTA3NzUxMUVGQjI0MjY4MzMwMTcwMDFCMS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAms7UMA0GCSqGSIb3DQEB
CwUAA4IBAQCSTqDyTaLgzz+WApy2d6G2kMtE27bVawTzpg3q9iCv2Xm+0D7hY7zB
RBOjhlVe3VWUoZG46Xopi5NcaUPckdY/iSVmojqGlVvxE/Udhvs///pbTPYSCE4x
0KqR43g7PhxgC5bF5aQhnp/0TPT4xFTaV/dqZx+UAL+BamXFWsBBfTHXHu4XLl+j
jEKS9efz7094/Kup15LhvS9fDyB3aUPzYlJAeiODL1CaZre/cT/tKqQAJ2Ixz71r
OeMN7jY1vwdIx2Njw9GW6AVmIBug2XFUyB+Bd9HAqqKIkvFTthp2V6X3aJ1uB50V
DT7qAIKhutfi8xNd0kyI89uFzhi1Ca+w
-----END CERTIFICATE-----
Generated at Sun May 12 01:39:46 2024 by rpki-client on console-fra.rpki-client.org