Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/6C0E782CCCB511EE96A67C77775412E6.roa
File: 6C0E782CCCB511EE96A67C77775412E6.roa (raw, json)
Hash identifier: fe1gMxH574MOUd0UKFPoRMi5KMHPwI3ByayTJQ8zHw0=
Subject key identifier: E7:3E:F2:E3:FF:57:32:8B:17:36:11:98:84:66:16:A2:DC:AD:4F:B5
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 8AC3
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/6C0E782CCCB511EE96A67C77775412E6.roa
Signing time: Fri 16 Feb 2024 10:23:27 +0000
ROA not before: Fri 16 Feb 2024 10:23:24 +0000
ROA not after: Fri 26 Apr 2024 10:23:24 +0000
asID: 9009
IP address blocks: 154.218.239.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 35523 (0x8ac3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Feb 16 10:23:24 2024 GMT
Not After : Apr 26 10:23:24 2024 GMT
Subject: CN=65cf379f-82b8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:6e:c3:40:43:08:2e:12:20:ef:07:25:65:70:
ea:87:fe:99:62:2d:e8:43:fd:9c:36:eb:80:88:f9:
4f:79:fd:80:65:1b:fa:8e:29:ef:be:ca:56:61:6c:
c3:d1:e2:d3:a8:76:38:a3:6a:69:23:ca:09:05:f4:
aa:13:1c:07:7a:bf:ac:58:dc:92:36:f2:34:93:88:
1c:3c:de:61:9f:97:dc:f1:ce:af:5d:44:19:09:44:
4b:aa:cf:1b:e6:fe:6c:ac:8b:5e:2c:08:49:c5:e8:
b8:1a:da:e4:36:6b:61:14:bb:85:41:d4:5a:fa:df:
a9:51:c0:9c:9a:d4:3c:5d:f7:b0:a0:fe:2a:e8:e7:
e1:7b:11:1c:f9:af:a9:08:97:9d:1a:db:29:7e:be:
89:f6:a9:0d:d2:78:61:5b:34:4c:cb:41:d9:c0:bc:
af:31:e3:96:83:01:dc:bd:0f:0d:34:6a:65:6d:1a:
37:ec:7f:c9:4f:25:39:81:7a:0c:46:96:68:70:9c:
9b:2d:81:d8:91:d7:b3:a0:78:85:bd:a6:7a:71:c1:
1f:7a:80:be:f2:62:1f:0e:cd:b9:79:bf:35:ed:e7:
76:a6:f8:9e:bc:88:2a:42:0f:3f:91:bb:ba:35:97:
b3:fe:6b:1e:9d:3a:df:c3:43:98:69:8a:b3:e3:4c:
08:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:3E:F2:E3:FF:57:32:8B:17:36:11:98:84:66:16:A2:DC:AD:4F:B5
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/6C0E782CCCB511EE96A67C77775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.218.239.0/24
Signature Algorithm: sha256WithRSAEncryption
a9:4e:df:17:d1:6a:63:14:d7:c9:7f:36:54:ac:a0:b2:b7:4e:
98:bd:b6:58:b8:7a:61:48:47:b8:58:d4:3a:2b:51:0c:b6:db:
63:a4:1c:98:a7:9b:f5:70:1a:80:a5:6e:ee:75:1d:e8:9d:23:
b8:ab:10:15:8f:61:8a:1a:9d:af:92:c2:ec:9d:88:a9:e0:5f:
01:4a:b0:a3:16:33:56:f4:23:11:e7:fc:15:f6:e1:e0:fd:0e:
38:cc:de:27:78:e8:9d:c3:eb:cc:4f:06:d4:e4:62:fc:4d:b5:
40:b5:c3:23:08:71:c8:7c:9a:28:c6:16:d4:3d:76:9d:18:24:
9e:76:e3:4c:23:52:bc:d3:09:6e:3e:ed:55:e0:b1:dd:d5:84:
e2:b6:05:ad:20:e8:01:0c:9b:93:86:33:3b:9a:9b:96:d2:9b:
a1:57:0e:66:1d:89:e0:5c:99:a0:46:8a:22:79:5d:d8:f6:47:
fb:82:d2:84:09:54:9a:2c:93:3b:83:3f:e7:36:8a:02:78:52:
8a:f5:6f:17:bc:19:c9:4a:1d:58:b3:c6:78:e9:a1:5e:b6:c8:
7e:32:a0:b2:d8:ba:7c:ea:77:8d:f3:7c:d5:8c:0a:5f:3a:0c:
6a:ca:75:65:63:fe:ca:cb:a8:34:81:db:0d:f2:29:5f:10:c9:
65:22:0a:1d
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAIrDMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQwMjE2MTAyMzI0WhcNMjQwNDI2MTAyMzI0WjAYMRYw
FAYDVQQDEw02NWNmMzc5Zi04MmI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEA6W7DQEMILhIg7wclZXDqh/6ZYi3oQ/2cNuuAiPlPef2AZRv6jinvvspW
YWzD0eLTqHY4o2ppI8oJBfSqExwHer+sWNySNvI0k4gcPN5hn5fc8c6vXUQZCURL
qs8b5v5srIteLAhJxei4GtrkNmthFLuFQdRa+t+pUcCcmtQ8XfewoP4q6OfhexEc
+a+pCJedGtspfr6J9qkN0nhhWzRMy0HZwLyvMeOWgwHcvQ8NNGplbRo37H/JTyU5
gXoMRpZocJybLYHYkdezoHiFvaZ6ccEfeoC+8mIfDs25eb817ed2pvievIgqQg8/
kbu6NZez/msenTrfw0OYaYqz40wIPwIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFOc+
8uP/VzKLFzYRmIRmFqLcrU+1MB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC82QzBFNzgyQ0NDQjUxMUVFOTZBNjdDNzc3NzU0MTJFNi5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmtrvMA0GCSqGSIb3DQEB
CwUAA4IBAQCpTt8X0WpjFNfJfzZUrKCyt06YvbZYuHphSEe4WNQ6K1EMtttjpByY
p5v1cBqApW7udR3onSO4qxAVj2GKGp2vksLsnYip4F8BSrCjFjNW9CMR5/wV9uHg
/Q44zN4neOidw+vMTwbU5GL8TbVAtcMjCHHIfJooxhbUPXadGCSeduNMI1K80wlu
Pu1V4LHd1YTitgWtIOgBDJuThjM7mpuW0puhVw5mHYngXJmgRooieV3Y9kf7gtKE
CVSaLJM7gz/nNooCeFKK9W8XvBnJSh1Ys8Z46aFetsh+MqCy2Lp86neN83zVjApf
OgxqynVlY/7Ky6g0gdsN8ilfEMllIgod
-----END CERTIFICATE-----
Generated at Fri Apr 26 11:01:38 2024 by rpki-client on console-ams.rpki-client.org