Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5804A9AECCB611EEB95CD078775412E6.roa
File: 5804A9AECCB611EEB95CD078775412E6.roa (raw, json)
Hash identifier: HHEuw8Iepkw7Azs4utS0oWcNFOQHFgUe5VtqjVElR9M=
Subject key identifier: D4:C7:3C:40:9B:F5:2D:E7:DC:A1:E2:A6:1C:CE:8B:D3:5F:60:81:07
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 8ACB
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5804A9AECCB611EEB95CD078775412E6.roa
Signing time: Fri 16 Feb 2024 10:30:03 +0000
ROA not before: Fri 16 Feb 2024 10:29:59 +0000
ROA not after: Fri 26 Apr 2024 10:29:59 +0000
asID: 9009
IP address blocks: 154.218.243.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 35531 (0x8acb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Feb 16 10:29:59 2024 GMT
Not After : Apr 26 10:29:59 2024 GMT
Subject: CN=65cf392b-e6a6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:85:0e:2d:ea:fa:79:96:eb:d9:dd:c0:ac:69:
2b:64:eb:5b:5e:5a:92:b4:e1:d5:45:24:c7:90:5c:
9a:65:18:50:e0:a6:d2:69:1f:cb:5d:a5:ab:f0:6c:
9c:c0:c0:32:bf:35:3a:f2:fb:69:03:35:e4:52:3f:
3b:ce:72:8f:fb:19:ed:1f:f4:4c:18:cf:8e:71:7a:
b5:26:b8:8e:36:63:ee:ba:36:4b:f9:f6:60:95:35:
87:ee:c0:4a:a1:5f:09:16:d2:85:4e:55:71:b1:b4:
f6:77:55:38:ca:8e:3a:d5:e8:71:f2:48:21:23:f1:
19:12:b3:60:c0:19:51:6e:50:e3:5f:ef:c2:d3:3d:
eb:ea:0c:e5:29:c0:96:15:6a:32:ed:9a:ee:15:ce:
73:6f:59:9c:f7:ce:a8:8e:29:69:74:cf:3a:14:b2:
55:17:99:4e:77:dc:b7:9c:60:e3:95:6b:7b:7e:01:
6f:d3:2c:b3:5a:f3:dc:8a:42:d8:da:b2:08:b4:b7:
f2:b0:fe:20:ec:32:b0:7c:f1:ce:30:b8:d3:23:33:
fe:c0:4a:db:34:81:54:de:2c:78:d9:03:43:b1:f4:
3b:1e:a1:82:fb:b5:80:57:e7:82:69:be:43:f1:5a:
14:fb:a2:9d:26:86:4a:f8:57:86:db:8c:21:0b:de:
ca:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:C7:3C:40:9B:F5:2D:E7:DC:A1:E2:A6:1C:CE:8B:D3:5F:60:81:07
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5804A9AECCB611EEB95CD078775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.218.243.0/24
Signature Algorithm: sha256WithRSAEncryption
0e:2d:9e:23:5f:a6:9a:4c:85:48:75:46:54:3a:29:a6:30:0c:
81:7d:61:93:34:18:71:20:3f:25:7e:2a:63:cb:5f:23:a6:74:
e7:50:29:2a:08:eb:d1:b3:ed:13:f2:80:ef:46:5d:6f:a0:fa:
fe:27:74:e1:f8:3d:d4:5b:47:27:de:23:b0:f5:af:9e:51:f2:
c2:cb:74:9b:6c:de:62:0e:69:1d:63:13:1a:7d:d6:94:8a:af:
60:fb:fb:f7:8d:be:5a:70:73:b2:27:d6:c6:68:4a:a9:ee:9d:
de:cf:bc:16:94:16:72:3a:63:cf:b5:3b:e7:f9:cf:0b:95:bb:
cf:f6:91:a3:27:66:f2:2b:75:af:99:92:01:97:75:e4:22:3b:
25:8d:5c:a5:48:e3:6f:2d:49:87:98:2f:bc:ae:af:bc:f4:8c:
39:da:2f:b5:2c:ef:d2:f9:31:b6:2c:1f:43:59:46:be:39:ff:
f1:06:40:6d:e8:d8:fa:f2:1d:3e:93:79:86:dd:bf:6d:00:40:
c4:00:c2:53:f0:86:cf:a9:32:b3:a5:21:c6:a2:82:11:89:8d:
0d:d8:06:21:18:97:8c:63:64:58:f1:0f:a5:8d:c7:e7:d9:dd:
2b:5f:a7:89:e4:fd:26:55:c1:f7:19:ac:39:cd:09:44:e2:42:
28:b5:ee:45
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAIrLMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQwMjE2MTAyOTU5WhcNMjQwNDI2MTAyOTU5WjAYMRYw
FAYDVQQDEw02NWNmMzkyYi1lNmE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAsoUOLer6eZbr2d3ArGkrZOtbXlqStOHVRSTHkFyaZRhQ4KbSaR/LXaWr
8GycwMAyvzU68vtpAzXkUj87znKP+xntH/RMGM+OcXq1JriONmPuujZL+fZglTWH
7sBKoV8JFtKFTlVxsbT2d1U4yo461ehx8kghI/EZErNgwBlRblDjX+/C0z3r6gzl
KcCWFWoy7ZruFc5zb1mc986ojilpdM86FLJVF5lOd9y3nGDjlWt7fgFv0yyzWvPc
ikLY2rIItLfysP4g7DKwfPHOMLjTIzP+wErbNIFU3ix42QNDsfQ7HqGC+7WAV+eC
ab5D8VoU+6KdJoZK+FeG24whC97KRQIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFNTH
PECb9S3n3KHiphzOi9NfYIEHMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC81ODA0QTlBRUNDQjYxMUVFQjk1Q0QwNzg3NzU0MTJFNi5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmtrzMA0GCSqGSIb3DQEB
CwUAA4IBAQAOLZ4jX6aaTIVIdUZUOimmMAyBfWGTNBhxID8lfipjy18jpnTnUCkq
COvRs+0T8oDvRl1voPr+J3Th+D3UW0cn3iOw9a+eUfLCy3SbbN5iDmkdYxMafdaU
iq9g+/v3jb5acHOyJ9bGaEqp7p3ez7wWlBZyOmPPtTvn+c8LlbvP9pGjJ2byK3Wv
mZIBl3XkIjsljVylSONvLUmHmC+8rq+89Iw52i+1LO/S+TG2LB9DWUa+Of/xBkBt
6Nj68h0+k3mG3b9tAEDEAMJT8IbPqTKzpSHGooIRiY0N2AYhGJeMY2RY8Q+ljcfn
2d0rX6eJ5P0mVcH3Gaw5zQlE4kIote5F
-----END CERTIFICATE-----
Generated at Fri Apr 26 11:01:36 2024 by rpki-client on console-ams.rpki-client.org