Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/65A2572407AC11EF9EF9666E017001B1.roa
File: 65A2572407AC11EF9EF9666E017001B1.roa (raw, json)
Hash identifier: 8IxIdTJlsjw6LupvSvzsmgs3l42cepNEc6rnoimCcOg=
Subject key identifier: 65:A8:85:F2:C4:AB:A6:35:6A:91:31:1F:82:ED:13:C2:B9:26:F1:D0
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: B382
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/65A2572407AC11EF9EF9666E017001B1.roa
Signing time: Wed 01 May 2024 11:17:29 +0000
ROA not before: Wed 01 May 2024 11:17:26 +0000
ROA not after: Thu 16 May 2024 11:17:26 +0000
asID: 132325
IP address blocks: 154.212.148.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 45954 (0xb382)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 1 11:17:26 2024 GMT
Not After : May 16 11:17:26 2024 GMT
Subject: CN=663224c9-61c6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:4b:c8:3f:91:1a:50:39:4c:a7:e1:39:e0:c2:
89:19:3b:5e:a9:a5:da:5c:da:4f:bd:e8:57:7a:63:
05:e8:e7:ac:53:49:6f:65:2b:8c:c2:13:4a:e5:13:
c4:16:68:e9:58:7e:8b:06:9c:23:20:68:87:ae:7b:
5f:b2:2b:63:73:30:14:23:3a:07:cd:77:b9:2c:76:
55:40:18:de:b9:b9:76:cc:94:fc:57:59:94:b2:e6:
77:e5:2b:ab:81:75:cc:81:06:d8:04:39:91:be:ce:
f0:09:82:b2:3d:ed:b4:aa:1b:35:f7:8d:29:3b:72:
d5:4e:fa:a8:39:fb:d4:5f:56:4d:05:74:87:5d:de:
ac:5e:ff:25:77:ab:24:ff:22:22:eb:39:6a:2c:81:
bd:d7:b5:29:37:5d:90:a1:c1:53:ed:a9:7c:d6:75:
6d:66:25:a8:00:fe:44:e8:67:06:1c:ce:83:a8:7e:
dc:5c:07:f7:5a:0d:85:ed:f0:bc:fd:1a:b2:c2:9f:
5b:bc:cf:87:07:f8:ab:c8:95:a8:85:bf:b9:93:e5:
52:ec:b7:88:30:08:da:ae:5f:5f:e2:38:9b:34:57:
4d:b4:12:3d:ed:f1:07:b9:d3:58:be:74:1e:bb:dd:
ec:ef:28:16:82:26:72:f2:52:40:4a:8e:91:32:2d:
b1:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:A8:85:F2:C4:AB:A6:35:6A:91:31:1F:82:ED:13:C2:B9:26:F1:D0
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/65A2572407AC11EF9EF9666E017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.212.148.0/24
Signature Algorithm: sha256WithRSAEncryption
a8:96:23:01:5c:48:3e:16:3f:b2:4a:5c:58:bf:90:ff:b0:f7:
f7:36:a4:f5:f9:82:cc:c4:b7:ee:e3:4a:70:ae:c9:f6:86:7d:
8b:51:24:3c:77:92:3d:cf:82:f4:d5:d1:f2:99:e1:9a:0f:54:
4f:a9:39:07:91:55:3a:01:36:b8:b0:a4:50:3f:74:c1:8e:d1:
04:1c:52:67:99:51:07:c2:ec:ec:18:1a:43:93:c8:a3:81:35:
9c:6d:19:af:09:2e:ee:d8:c1:79:0f:67:6f:1d:2a:5f:a6:da:
d0:cd:07:d2:39:d2:05:da:2b:59:cc:c3:d4:b6:32:c1:c5:6d:
13:b1:48:fa:4a:13:ca:3f:3f:43:9b:47:d8:18:9b:56:33:89:
1a:51:71:83:12:67:a5:64:9e:1f:dd:8c:a1:fc:83:af:bd:3c:
22:26:b3:21:af:81:1e:88:30:18:9f:6a:bc:cf:a6:bf:5c:0e:
fb:c4:af:d4:65:59:14:01:70:fa:bb:d8:2f:8b:69:4a:0f:83:
5d:32:0b:96:8d:a2:28:1f:0e:d2:18:f4:f9:ac:87:a8:e2:70:
41:da:3a:ec:21:25:f4:1e:c2:a1:69:29:7e:92:83:f1:94:cc:
89:2f:06:b2:35:ee:ef:35:4c:80:bc:79:91:53:cd:a8:f2:6d:
3c:c7:99:2c
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDALOCMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQwNTAxMTExNzI2WhcNMjQwNTE2MTExNzI2WjAYMRYw
FAYDVQQDEw02NjMyMjRjOS02MWM2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAs0vIP5EaUDlMp+E54MKJGTteqaXaXNpPvehXemMF6OesU0lvZSuMwhNK
5RPEFmjpWH6LBpwjIGiHrntfsitjczAUIzoHzXe5LHZVQBjeubl2zJT8V1mUsuZ3
5SurgXXMgQbYBDmRvs7wCYKyPe20qhs1940pO3LVTvqoOfvUX1ZNBXSHXd6sXv8l
d6sk/yIi6zlqLIG917UpN12QocFT7al81nVtZiWoAP5E6GcGHM6DqH7cXAf3Wg2F
7fC8/Rqywp9bvM+HB/iryJWohb+5k+VS7LeIMAjarl9f4jibNFdNtBI97fEHudNY
vnQeu93s7ygWgiZy8lJASo6RMi2xyQIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFGWo
hfLEq6Y1apExH4LtE8K5JvHQMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC82NUEyNTcyNDA3QUMxMUVGOUVGOTY2NkUwMTcwMDFCMS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmtSUMA0GCSqGSIb3DQEB
CwUAA4IBAQColiMBXEg+Fj+ySlxYv5D/sPf3NqT1+YLMxLfu40pwrsn2hn2LUSQ8
d5I9z4L01dHymeGaD1RPqTkHkVU6ATa4sKRQP3TBjtEEHFJnmVEHwuzsGBpDk8ij
gTWcbRmvCS7u2MF5D2dvHSpfptrQzQfSOdIF2itZzMPUtjLBxW0TsUj6ShPKPz9D
m0fYGJtWM4kaUXGDEmelZJ4f3Yyh/IOvvTwiJrMhr4EeiDAYn2q8z6a/XA77xK/U
ZVkUAXD6u9gvi2lKD4NdMguWjaIoHw7SGPT5rIeo4nBB2jrsISX0HsKhaSl+koPx
lMyJLwayNe7vNUyAvHmRU82o8m08x5ks
-----END CERTIFICATE-----
Generated at Fri May 17 02:04:04 2024 by rpki-client on console-fra.rpki-client.org