Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/2D57672207A911EF9C396356017001B1.roa
File: 2D57672207A911EF9C396356017001B1.roa (raw, json)
Hash identifier: A7itVoVyNziIDpJ8K5YgLdZpHu7OzL54xG+TimMwv40=
Subject key identifier: 29:BB:EC:C3:61:4C:6E:1A:BB:96:38:46:A0:DA:9F:E3:77:57:E6:76
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: B35A
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/2D57672207A911EF9C396356017001B1.roa
Signing time: Wed 01 May 2024 10:54:26 +0000
ROA not before: Wed 01 May 2024 10:54:23 +0000
ROA not after: Thu 16 May 2024 10:54:23 +0000
asID: 142062
IP address blocks: 154.212.154.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 45914 (0xb35a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 1 10:54:23 2024 GMT
Not After : May 16 10:54:23 2024 GMT
Subject: CN=66321f62-33cf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:97:54:a4:e2:4d:e1:79:9d:a4:99:77:7e:f0:
8e:ad:d8:ed:a4:cc:20:3a:e7:ea:9c:4b:3e:c9:ac:
77:ed:84:4a:f4:d6:8c:8a:d8:46:d5:e9:35:b1:d9:
57:aa:6e:40:ae:25:3b:45:52:3b:d4:46:fc:cb:0d:
b0:03:9f:fe:87:fb:d7:39:a9:de:89:f8:53:5a:81:
bb:4a:6f:66:1b:7f:b3:f2:07:22:9d:ac:95:d8:c9:
f4:7d:f5:b3:01:63:c7:80:9c:a0:0f:e8:6f:66:6a:
af:83:6b:8d:77:74:f8:d4:42:b1:70:75:6a:ee:39:
5d:d2:96:6e:e1:0c:e9:90:0d:e8:f0:48:c7:5b:00:
2b:b7:6e:7a:3c:7c:50:4f:8a:f1:bb:ef:74:47:77:
c4:8b:81:a2:4a:37:5a:4c:b6:34:df:12:c8:47:de:
f2:89:c5:bd:e3:4f:a9:45:3e:c1:53:50:35:d2:bb:
cb:b3:49:c4:37:9d:b4:ed:f4:0e:b0:a7:6c:39:9b:
5c:0b:b2:a2:09:8a:fc:cd:cd:fd:04:87:ac:9b:06:
64:f0:3f:31:93:b1:66:7e:e0:33:7f:3f:c2:f3:a6:
32:5f:e4:21:93:e7:a7:5c:84:1b:fb:26:2f:3c:e8:
8f:86:8e:d8:20:5c:32:bf:ac:9b:92:4c:ca:86:58:
83:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:BB:EC:C3:61:4C:6E:1A:BB:96:38:46:A0:DA:9F:E3:77:57:E6:76
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/2D57672207A911EF9C396356017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.212.154.0/24
Signature Algorithm: sha256WithRSAEncryption
98:db:56:fd:0c:6d:02:a4:a7:5c:4e:f5:f4:bf:c1:9d:87:19:
6c:98:99:6b:35:95:1c:0b:95:09:79:78:9d:e1:73:22:cc:d7:
26:33:1b:31:f3:de:64:d2:f2:85:dc:ba:a0:db:1f:bf:ea:2b:
78:01:96:3f:d5:b0:62:b6:b1:52:f2:27:0c:5d:c1:55:f1:ff:
94:db:cb:df:c0:8d:89:e6:6b:92:ae:44:d7:09:46:2b:60:ec:
55:44:8f:3b:6c:20:9c:8d:cf:32:37:16:4f:46:7c:b3:d6:a0:
80:c2:a9:5e:59:e5:81:f7:ec:39:c7:67:de:de:64:1c:64:14:
75:8e:b5:2a:4d:ec:d8:d1:e1:a4:1d:e2:68:64:82:28:8b:66:
dd:e8:fb:fe:53:d1:d8:07:5f:b2:94:13:33:2a:d3:75:fe:be:
d2:9c:29:8a:fc:7a:08:cc:11:8a:be:7e:69:b2:3b:c2:fe:41:
38:f9:88:83:84:8a:e9:6d:27:c0:c4:27:0f:55:56:e9:25:a6:
32:2e:3f:b1:ce:db:ce:fa:a5:48:1f:f8:45:a6:e2:ff:de:9d:
e7:be:14:19:ee:0f:6c:41:cf:57:47:7c:5e:97:73:ef:6a:08:
29:64:0b:63:da:2e:64:d3:4b:95:ba:ad:8d:43:b0:12:1a:bd:
de:f6:6d:e7
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDALNaMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQwNTAxMTA1NDIzWhcNMjQwNTE2MTA1NDIzWjAYMRYw
FAYDVQQDEw02NjMyMWY2Mi0zM2NmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAxpdUpOJN4XmdpJl3fvCOrdjtpMwgOufqnEs+yax37YRK9NaMithG1ek1
sdlXqm5AriU7RVI71Eb8yw2wA5/+h/vXOaneifhTWoG7Sm9mG3+z8gcinayV2Mn0
ffWzAWPHgJygD+hvZmqvg2uNd3T41EKxcHVq7jld0pZu4QzpkA3o8EjHWwArt256
PHxQT4rxu+90R3fEi4GiSjdaTLY03xLIR97yicW940+pRT7BU1A10rvLs0nEN520
7fQOsKdsOZtcC7KiCYr8zc39BIesmwZk8D8xk7FmfuAzfz/C86YyX+Qhk+enXIQb
+yYvPOiPho7YIFwyv6ybkkzKhliDdwIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFCm7
7MNhTG4au5Y4RqDan+N3V+Z2MB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC8yRDU3NjcyMjA3QTkxMUVGOUMzOTYzNTYwMTcwMDFCMS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmtSaMA0GCSqGSIb3DQEB
CwUAA4IBAQCY21b9DG0CpKdcTvX0v8GdhxlsmJlrNZUcC5UJeXid4XMizNcmMxsx
895k0vKF3Lqg2x+/6it4AZY/1bBitrFS8icMXcFV8f+U28vfwI2J5muSrkTXCUYr
YOxVRI87bCCcjc8yNxZPRnyz1qCAwqleWeWB9+w5x2fe3mQcZBR1jrUqTezY0eGk
HeJoZIIoi2bd6Pv+U9HYB1+ylBMzKtN1/r7SnCmK/HoIzBGKvn5psjvC/kE4+YiD
hIrpbSfAxCcPVVbpJaYyLj+xztvO+qVIH/hFpuL/3p3nvhQZ7g9sQc9XR3xel3Pv
aggpZAtj2i5k00uVuq2NQ7ASGr3e9m3n
-----END CERTIFICATE-----
Generated at Fri May 17 02:04:04 2024 by rpki-client on console-fra.rpki-client.org