Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/6FA3039ECCAC11EEA42E5669775412E6.roa
File: 6FA3039ECCAC11EEA42E5669775412E6.roa (raw, json)
Hash identifier: VUNZbyv5jeVRiGenfAJ3bqVk6FkaOqkvkaPtb5/V+EA=
Subject key identifier: 43:2F:31:2E:F7:1D:C3:74:F8:1A:99:28:D3:50:4D:A4:6A:2E:08:35
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 8A71
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/6FA3039ECCAC11EEA42E5669775412E6.roa
Signing time: Fri 16 Feb 2024 09:19:07 +0000
ROA not before: Fri 16 Feb 2024 09:19:04 +0000
ROA not after: Fri 26 Apr 2024 09:19:04 +0000
asID: 9009
IP address blocks: 154.218.218.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 35441 (0x8a71)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Feb 16 09:19:04 2024 GMT
Not After : Apr 26 09:19:04 2024 GMT
Subject: CN=65cf288b-c920
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:12:16:49:69:2a:c1:b3:e8:9f:5a:ae:94:bc:
d5:5f:f3:22:29:15:24:46:db:9b:8e:fb:db:9e:8e:
14:92:7a:63:9f:a9:c6:61:f4:c5:47:aa:da:6d:ab:
46:10:a9:7a:72:3a:bd:13:94:05:7d:7c:b5:63:7a:
7d:d7:83:8a:63:e4:98:62:de:6c:c7:d4:39:3a:12:
b5:58:72:05:55:0b:f9:d3:3b:09:b9:5a:ee:6a:25:
51:24:6c:d3:09:d9:5e:f1:a6:07:57:ae:33:00:7e:
97:ff:ed:4a:f1:9a:9b:aa:09:4a:1c:14:cd:3c:53:
1a:0e:20:f6:ba:2b:ef:b2:55:26:78:f9:e4:fe:ec:
f1:1e:1a:dc:6f:9a:12:9a:a7:4a:52:4c:9d:32:b7:
30:7a:6e:fa:bf:51:78:4e:88:a1:51:91:5c:bc:13:
66:16:6c:51:0b:38:2b:88:b1:8f:a4:43:40:e6:45:
36:66:52:50:44:80:91:5f:33:12:e1:c9:67:0e:64:
c2:b3:37:6b:b1:0e:89:8f:3e:4f:bf:6d:6e:e4:95:
f9:5e:b7:f7:3b:a0:6b:87:a2:6f:e3:da:0b:f7:9d:
c6:2d:72:85:57:9a:94:f2:da:d4:92:93:5d:54:27:
b4:3b:69:c3:3a:90:f1:72:14:99:4f:95:46:af:d0:
11:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:2F:31:2E:F7:1D:C3:74:F8:1A:99:28:D3:50:4D:A4:6A:2E:08:35
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/6FA3039ECCAC11EEA42E5669775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.218.218.0/24
Signature Algorithm: sha256WithRSAEncryption
05:db:04:3b:a6:b0:4b:a2:19:c9:64:f7:f6:f0:48:a5:1e:36:
55:4c:31:87:78:47:d8:78:48:07:b9:0b:f9:a1:2f:5d:32:38:
8d:26:03:23:bd:2e:74:2e:10:03:2d:ae:75:74:d5:38:09:d9:
b2:1e:ab:34:2c:1e:cd:e2:b4:76:16:0e:cc:a5:ed:95:b8:80:
98:ab:f6:c3:15:6a:0c:71:18:8a:64:51:f0:aa:dd:39:32:d9:
84:4b:fb:a0:67:68:e2:a8:2c:95:1f:ff:ca:ed:c1:f4:70:38:
4c:16:f7:44:6a:fd:4d:33:9e:42:34:8d:ce:07:20:8b:ec:52:
2e:e5:45:6e:0b:5f:07:42:39:4c:9a:ee:13:49:39:f3:f1:8f:
ac:88:1d:55:68:d4:57:fc:6c:84:58:fb:74:bc:98:2e:18:70:
84:a6:ef:5b:13:68:8c:a6:a4:15:22:34:4d:03:ea:63:4b:7c:
da:d0:67:62:04:13:cc:73:83:13:b1:1d:dd:3f:cd:a7:ef:2d:
dd:11:85:96:24:f0:fc:d7:b2:01:68:11:3a:7f:29:d1:83:7e:
ba:c2:fd:f1:7b:2f:f3:ae:db:8f:ac:b8:72:7e:e6:b4:c5:ad:
a0:3e:c2:3f:44:b5:03:0c:85:d1:da:ff:08:c8:cf:01:fa:ce:
99:64:43:26
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAIpxMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQwMjE2MDkxOTA0WhcNMjQwNDI2MDkxOTA0WjAYMRYw
FAYDVQQDEw02NWNmMjg4Yi1jOTIwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEA2BIWSWkqwbPon1qulLzVX/MiKRUkRtubjvvbno4Uknpjn6nGYfTFR6ra
batGEKl6cjq9E5QFfXy1Y3p914OKY+SYYt5sx9Q5OhK1WHIFVQv50zsJuVruaiVR
JGzTCdle8aYHV64zAH6X/+1K8ZqbqglKHBTNPFMaDiD2uivvslUmePnk/uzxHhrc
b5oSmqdKUkydMrcwem76v1F4ToihUZFcvBNmFmxRCzgriLGPpENA5kU2ZlJQRICR
XzMS4clnDmTCszdrsQ6Jjz5Pv21u5JX5Xrf3O6Brh6Jv49oL953GLXKFV5qU8trU
kpNdVCe0O2nDOpDxchSZT5VGr9ARfwIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFEMv
MS73HcN0+BqZKNNQTaRqLgg1MB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC82RkEzMDM5RUNDQUMxMUVFQTQyRTU2Njk3NzU0MTJFNi5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmtraMA0GCSqGSIb3DQEB
CwUAA4IBAQAF2wQ7prBLohnJZPf28EilHjZVTDGHeEfYeEgHuQv5oS9dMjiNJgMj
vS50LhADLa51dNU4CdmyHqs0LB7N4rR2Fg7Mpe2VuICYq/bDFWoMcRiKZFHwqt05
MtmES/ugZ2jiqCyVH//K7cH0cDhMFvdEav1NM55CNI3OByCL7FIu5UVuC18HQjlM
mu4TSTnz8Y+siB1VaNRX/GyEWPt0vJguGHCEpu9bE2iMpqQVIjRNA+pjS3za0Gdi
BBPMc4MTsR3dP82n7y3dEYWWJPD817IBaBE6fynRg366wv3xey/zrtuPrLhyfua0
xa2gPsI/RLUDDIXR2v8IyM8B+s6ZZEMm
-----END CERTIFICATE-----
Generated at Fri Apr 26 11:01:39 2024 by rpki-client on console-ams.rpki-client.org