Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8F0E8B440DB211EF99614106017001B1.roa
File: 8F0E8B440DB211EF99614106017001B1.roa (raw, json)
Hash identifier: +6PXvIjtJbrJGgJ2ecGnbMpFFXuNfv/xKtPINUZTPgk=
Subject key identifier: 2D:9C:1B:74:D0:6E:59:3C:25:7F:B3:8C:AB:76:C7:B4:42:76:51:E1
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: B5AB
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8F0E8B440DB211EF99614106017001B1.roa
Signing time: Thu 09 May 2024 03:16:43 +0000
ROA not before: Thu 09 May 2024 03:16:39 +0000
ROA not after: Sat 18 May 2024 03:16:39 +0000
asID: 44559
IP address blocks: 154.205.224.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 46507 (0xb5ab)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 9 03:16:39 2024 GMT
Not After : May 18 03:16:39 2024 GMT
Subject: CN=663c401b-a8eb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f2:d6:ab:ce:3c:85:38:88:f1:69:5b:1a:bd:ca:
a2:e8:10:45:cb:3a:85:5d:57:e1:c6:8d:51:3c:e4:
8c:2d:33:c0:10:f6:7c:37:af:0e:60:33:3a:fc:0d:
9b:d0:11:59:8e:76:46:e2:de:0a:46:60:ea:6c:d7:
7b:ec:a3:6f:0a:70:85:72:2e:c8:9e:07:98:84:f0:
1d:b8:01:41:65:d4:67:65:43:f8:3b:68:ff:46:17:
f7:bd:aa:26:76:53:e5:fb:d3:4d:da:dc:a1:33:59:
47:5c:63:ad:33:26:bb:32:e4:59:30:97:ef:c3:14:
27:e0:46:af:b9:c2:5e:b5:4a:65:54:a6:fe:c3:be:
73:0d:f9:20:82:99:15:7f:d0:38:44:3d:1f:51:7e:
50:45:3e:fe:da:c8:e7:40:bc:b7:05:56:61:5a:c3:
e1:43:b9:32:04:13:07:b5:01:37:ef:e7:67:f7:0d:
07:f8:cb:a7:3b:80:b4:cc:96:f2:9f:60:85:ea:7d:
aa:7d:6d:4f:7c:ee:a2:de:61:c7:6d:aa:2e:c6:d9:
6c:91:ab:e1:a3:68:07:d9:78:0a:a5:a9:95:1d:5b:
09:59:80:58:07:42:c5:9f:9d:9e:7f:90:5e:1c:cc:
c5:3f:6c:36:91:7b:88:40:4f:ab:1d:35:0d:83:bf:
de:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:9C:1B:74:D0:6E:59:3C:25:7F:B3:8C:AB:76:C7:B4:42:76:51:E1
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8F0E8B440DB211EF99614106017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.205.224.0/19
Signature Algorithm: sha256WithRSAEncryption
6d:50:e7:12:5f:43:d9:fc:a4:85:35:cf:7a:bd:20:09:5d:81:
45:23:db:5b:8a:08:37:b0:a4:36:2b:5f:2c:63:81:3e:84:e6:
45:21:a6:56:b2:e6:7f:c1:07:c9:4b:55:51:21:77:41:f0:0b:
cc:a1:1c:e3:e7:ea:2f:aa:05:a9:f6:12:75:eb:41:df:57:21:
90:39:4b:d1:de:e7:a5:58:f3:01:be:e8:d1:d5:4f:1e:09:b4:
96:92:ef:e7:0f:f7:a1:7d:44:c8:39:17:fc:f3:30:63:46:19:
23:19:46:5a:37:4c:91:9f:cd:e5:e1:ec:8f:e5:77:dd:36:09:
ec:a2:ec:d4:ce:b4:8f:17:64:16:eb:fd:9a:86:04:bb:d6:7f:
c7:2e:2d:6a:89:5b:39:90:83:0a:78:d1:8b:52:05:b3:54:23:
56:7d:0f:e0:83:58:a4:f9:df:14:fc:e7:fa:8f:a2:ba:04:bd:
37:6c:cc:23:f3:45:a7:b4:0c:16:e4:5f:d8:2d:b3:67:3a:dd:
bb:d8:8e:a8:fe:9a:08:9f:0f:76:cb:01:75:50:4b:42:f2:49:
8b:88:44:db:ac:ad:f9:cf:fd:e2:59:96:80:34:92:f1:eb:bf:
3e:0a:54:58:ad:96:2f:30:a4:69:bf:fd:20:ed:44:3d:1e:21:
69:81:a9:a8
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDALWrMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQwNTA5MDMxNjM5WhcNMjQwNTE4MDMxNjM5WjAYMRYw
FAYDVQQDEw02NjNjNDAxYi1hOGViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEA8tarzjyFOIjxaVsavcqi6BBFyzqFXVfhxo1RPOSMLTPAEPZ8N68OYDM6
/A2b0BFZjnZG4t4KRmDqbNd77KNvCnCFci7IngeYhPAduAFBZdRnZUP4O2j/Rhf3
vaomdlPl+9NN2tyhM1lHXGOtMya7MuRZMJfvwxQn4EavucJetUplVKb+w75zDfkg
gpkVf9A4RD0fUX5QRT7+2sjnQLy3BVZhWsPhQ7kyBBMHtQE37+dn9w0H+MunO4C0
zJbyn2CF6n2qfW1PfO6i3mHHbaouxtlskavho2gH2XgKpamVHVsJWYBYB0LFn52e
f5BeHMzFP2w2kXuIQE+rHTUNg7/ehwIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFC2c
G3TQblk8JX+zjKt2x7RCdlHhMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC84RjBFOEI0NDBEQjIxMUVGOTk2MTQxMDYwMTcwMDFCMS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQFms3gMA0GCSqGSIb3DQEB
CwUAA4IBAQBtUOcSX0PZ/KSFNc96vSAJXYFFI9tbigg3sKQ2K18sY4E+hOZFIaZW
suZ/wQfJS1VRIXdB8AvMoRzj5+ovqgWp9hJ160HfVyGQOUvR3uelWPMBvujR1U8e
CbSWku/nD/ehfUTIORf88zBjRhkjGUZaN0yRn83l4eyP5XfdNgnsouzUzrSPF2QW
6/2ahgS71n/HLi1qiVs5kIMKeNGLUgWzVCNWfQ/gg1ik+d8U/Of6j6K6BL03bMwj
80WntAwW5F/YLbNnOt272I6o/poInw92ywF1UEtC8kmLiETbrK35z/3iWZaANJLx
678+ClRYrZYvMKRpv/0g7UQ9HiFpgamo
-----END CERTIFICATE-----
Generated at Sun May 19 02:08:29 2024 by rpki-client on console-ams.rpki-client.org