Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/2CE830D6287F11EFAA21D72B7DDC24C2.roa
File: 2CE830D6287F11EFAA21D72B7DDC24C2.roa (raw, json)
Hash identifier: +7GSHnja2leMobjMSw+Wvf3aZerBLcd1UQIrAwWfE0o=
Subject key identifier: AD:8E:2E:AC:D9:8D:C2:CA:26:EA:B9:A8:94:B1:DE:77:57:C9:50:AA
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: C1D7
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/2CE830D6287F11EFAA21D72B7DDC24C2.roa
Signing time: Wed 12 Jun 2024 05:46:55 +0000
ROA not before: Wed 12 Jun 2024 05:46:52 +0000
ROA not after: Tue 25 Jun 2024 05:46:52 +0000
asID: 44559
IP address blocks: 154.81.62.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 49623 (0xc1d7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jun 12 05:46:52 2024 GMT
Not After : Jun 25 05:46:52 2024 GMT
Subject: CN=6669364f-3a3d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:c8:42:b2:45:fe:cc:11:5f:ac:7b:0b:e3:87:
fd:e5:82:52:b6:d5:ec:6b:d5:5e:a8:e9:a4:ed:9a:
8f:0c:c7:62:b4:7c:31:cb:20:da:e2:34:07:bc:c0:
f3:fd:0f:d6:97:42:56:9e:16:8b:4d:8e:17:3a:ec:
27:c1:c1:f5:4b:b7:07:21:bc:66:e5:eb:f9:58:c6:
eb:e5:62:fa:41:da:69:fc:42:b5:99:76:dc:94:5b:
8f:12:8d:6a:28:2e:05:89:0f:92:a7:cc:1b:19:b9:
ec:99:43:d4:fe:06:8a:da:1d:b9:10:71:e1:8f:b1:
07:06:29:7b:9f:62:d9:99:0b:11:8e:b8:a4:3c:7a:
37:47:c1:f4:1b:17:23:a6:a2:8a:a1:9b:ea:b6:1d:
e2:bf:ce:c7:63:63:e0:be:33:4b:3a:92:44:ca:24:
8d:3f:42:9d:02:7f:4b:aa:47:18:12:e7:80:57:c8:
80:ec:7f:f4:ea:7f:89:63:64:3e:db:66:de:ea:af:
60:50:94:a4:f3:63:5b:44:b5:48:c5:63:26:f7:86:
c5:4d:4d:72:ee:26:75:37:99:d1:db:d8:dd:86:ea:
12:ae:0b:e0:12:39:c5:f8:6e:b3:ba:d0:01:66:ea:
6c:04:2d:d0:0e:d5:e6:d7:38:98:43:e8:87:cc:5f:
ba:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:8E:2E:AC:D9:8D:C2:CA:26:EA:B9:A8:94:B1:DE:77:57:C9:50:AA
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/2CE830D6287F11EFAA21D72B7DDC24C2.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.81.62.0/23
Signature Algorithm: sha256WithRSAEncryption
be:68:83:09:db:09:01:1c:f4:dd:1d:90:50:03:1c:f4:3b:65:
66:e9:cd:97:85:ea:b1:96:08:ce:61:71:06:e2:4a:37:01:f9:
2b:9a:2d:f8:e0:95:06:61:5a:9f:9e:fb:41:73:07:58:69:80:
1e:34:96:21:b3:6a:48:12:e8:ae:42:3c:e0:c1:04:d8:ec:a4:
30:02:e1:3a:22:98:0b:fd:d0:ee:40:54:ec:52:c3:ab:d6:f1:
6f:bf:de:09:2f:85:d3:f5:d9:ae:c8:72:72:4d:26:d3:3d:49:
d6:d3:44:f4:41:f1:23:31:b3:da:a8:d9:cc:e9:6b:3c:0d:16:
1a:64:34:72:8b:2d:37:8f:67:67:8a:aa:a2:32:9a:86:72:8a:
13:b3:b8:9b:02:fd:87:7b:0c:a6:4c:03:3d:8e:ba:6b:21:7a:
b2:69:00:7f:55:9e:cc:d3:64:1f:2c:14:54:ac:32:d5:9c:48:
f0:0b:19:df:36:f9:4a:b8:ea:6e:2b:39:ca:cc:7a:50:89:4c:
5e:2b:e3:70:af:f2:0c:dc:09:de:49:9b:f1:8b:85:e1:4e:ed:
7a:64:00:97:91:bd:c2:77:e0:32:e7:4b:03:b9:67:85:d6:de:
15:a3:ca:70:35:a8:29:2c:8e:a3:f1:43:c0:78:61:b1:94:46:
11:95:6e:6b
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAMHXMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQwNjEyMDU0NjUyWhcNMjQwNjI1MDU0NjUyWjAYMRYw
FAYDVQQDEw02NjY5MzY0Zi0zYTNkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAqMhCskX+zBFfrHsL44f95YJSttXsa9VeqOmk7ZqPDMditHwxyyDa4jQH
vMDz/Q/Wl0JWnhaLTY4XOuwnwcH1S7cHIbxm5ev5WMbr5WL6Qdpp/EK1mXbclFuP
Eo1qKC4FiQ+Sp8wbGbnsmUPU/gaK2h25EHHhj7EHBil7n2LZmQsRjrikPHo3R8H0
GxcjpqKKoZvqth3iv87HY2PgvjNLOpJEyiSNP0KdAn9LqkcYEueAV8iA7H/06n+J
Y2Q+22be6q9gUJSk82NbRLVIxWMm94bFTU1y7iZ1N5nR29jdhuoSrgvgEjnF+G6z
utABZupsBC3QDtXm1ziYQ+iHzF+6MwIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFK2O
LqzZjcLKJuq5qJSx3ndXyVCqMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC8yQ0U4MzBENjI4N0YxMUVGQUEyMUQ3MkI3RERDMjRDMi5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBmlE+MA0GCSqGSIb3DQEB
CwUAA4IBAQC+aIMJ2wkBHPTdHZBQAxz0O2Vm6c2XheqxlgjOYXEG4ko3Afkrmi34
4JUGYVqfnvtBcwdYaYAeNJYhs2pIEuiuQjzgwQTY7KQwAuE6IpgL/dDuQFTsUsOr
1vFvv94JL4XT9dmuyHJyTSbTPUnW00T0QfEjMbPaqNnM6Ws8DRYaZDRyiy03j2dn
iqqiMpqGcooTs7ibAv2HewymTAM9jrprIXqyaQB/VZ7M02QfLBRUrDLVnEjwCxnf
NvlKuOpuKznKzHpQiUxeK+Nwr/IM3AneSZvxi4XhTu16ZACXkb3Cd+Ay50sDuWeF
1t4Vo8pwNagpLI6j8UPAeGGxlEYRlW5r
-----END CERTIFICATE-----
Generated at Tue Jun 25 09:14:30 2024 by rpki-client on console-fra.rpki-client.org