Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/9621B5ECCCB111EEA92E3171775412E6.roa
File: 9621B5ECCCB111EEA92E3171775412E6.roa (raw, json)
Hash identifier: HBwZ4niVfaKIFpFZOhdzHBIuYSa3Ciz8Nh7p1UJ21ns=
Subject key identifier: 91:31:B6:48:B1:6A:04:01:EA:97:D8:CC:C6:42:6F:F1:3B:9F:B8:73
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 8A9F
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/9621B5ECCCB111EEA92E3171775412E6.roa
Signing time: Fri 16 Feb 2024 09:55:59 +0000
ROA not before: Fri 16 Feb 2024 09:55:56 +0000
ROA not after: Fri 26 Apr 2024 09:55:56 +0000
asID: 9009
IP address blocks: 154.216.217.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 35487 (0x8a9f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Feb 16 09:55:56 2024 GMT
Not After : Apr 26 09:55:56 2024 GMT
Subject: CN=65cf312f-6c69
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:61:e8:95:fa:ce:9b:bc:a5:3a:11:f4:d1:e9:
57:17:6f:78:87:be:9a:ce:db:ad:d5:67:c7:85:81:
c4:57:69:fc:95:2e:c9:26:20:33:95:5b:19:79:68:
79:a9:6d:3e:89:c5:c7:cc:44:50:6f:86:15:6e:8f:
87:fe:49:8f:eb:e7:55:a5:91:92:c9:ec:5f:06:07:
38:cd:f0:da:ca:89:35:70:af:fb:da:bc:a8:70:e0:
a5:46:90:e7:7a:9c:65:8f:73:21:e6:c2:81:eb:31:
a0:54:0f:de:9c:48:f5:35:54:8e:24:35:98:7a:ea:
1e:54:53:f4:6e:9a:9e:94:f7:10:f4:e3:cf:a4:90:
ea:9c:ad:86:f6:1a:b3:57:43:a3:86:3c:34:a0:ee:
aa:1c:3f:31:2e:ea:52:bf:89:20:c8:3f:97:f9:db:
95:4c:e2:6f:03:4b:2c:5e:61:20:82:7f:52:fc:16:
d4:b7:ce:ea:d6:be:58:d0:c1:c5:18:94:d0:30:44:
6f:84:0d:37:77:b1:be:f6:8f:77:e5:f9:9e:d5:13:
33:dc:bc:e2:4a:73:fc:3c:68:db:d1:7a:7d:d7:83:
a2:5c:9b:d2:1f:71:05:b2:7a:2c:2c:7f:e9:a6:cf:
fb:a6:35:09:d9:44:27:2c:8d:e4:98:a0:9d:04:df:
27:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:31:B6:48:B1:6A:04:01:EA:97:D8:CC:C6:42:6F:F1:3B:9F:B8:73
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/9621B5ECCCB111EEA92E3171775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.216.217.0/24
Signature Algorithm: sha256WithRSAEncryption
3e:2a:b3:8b:af:8a:3f:e4:d4:f3:f5:80:91:79:65:e2:d9:46:
df:47:37:56:0e:57:0e:38:95:d0:52:54:d9:d6:1c:77:1d:88:
c4:4c:4b:1a:38:04:91:25:fa:b7:d1:e5:76:cc:e4:e7:a5:69:
dc:f3:f5:cc:07:a0:7c:1d:e3:6e:23:6e:4e:c1:d2:a7:2e:d9:
67:f4:bf:38:a8:f1:28:06:56:56:43:a0:9e:1d:8f:27:a1:80:
97:36:77:6f:c0:2f:6a:3a:f4:46:23:ab:b0:d4:09:f4:f8:f6:
b7:57:2f:34:9b:c2:f7:2e:f1:02:03:5f:e7:ab:60:4a:e5:20:
7d:21:4f:c0:0f:d2:21:d7:47:a1:02:76:cc:9c:54:33:8b:30:
9b:62:80:a4:33:2f:38:59:00:53:09:59:41:61:f0:3f:12:7b:
0a:30:63:e0:06:40:8d:9f:01:2d:ae:ca:30:50:94:1d:4c:ae:
58:35:b7:11:e1:60:66:68:db:aa:5d:0a:b5:57:af:42:a6:fe:
bb:33:0f:00:65:51:e0:e9:eb:96:93:c6:a5:52:35:27:68:c4:
7b:9b:eb:1c:8a:7a:32:73:9e:ce:73:b3:76:1b:dd:8b:41:ba:
9d:fb:57:2f:cb:cb:a2:04:bd:07:91:a6:8f:44:71:5e:47:73:
2b:6a:8f:d8
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAIqfMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQwMjE2MDk1NTU2WhcNMjQwNDI2MDk1NTU2WjAYMRYw
FAYDVQQDEw02NWNmMzEyZi02YzY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEA3GHolfrOm7ylOhH00elXF294h76aztut1WfHhYHEV2n8lS7JJiAzlVsZ
eWh5qW0+icXHzERQb4YVbo+H/kmP6+dVpZGSyexfBgc4zfDayok1cK/72ryocOCl
RpDnepxlj3Mh5sKB6zGgVA/enEj1NVSOJDWYeuoeVFP0bpqelPcQ9OPPpJDqnK2G
9hqzV0Ojhjw0oO6qHD8xLupSv4kgyD+X+duVTOJvA0ssXmEggn9S/BbUt87q1r5Y
0MHFGJTQMERvhA03d7G+9o935fme1RMz3LziSnP8PGjb0Xp914OiXJvSH3EFsnos
LH/pps/7pjUJ2UQnLI3kmKCdBN8nIQIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFJEx
tkixagQB6pfYzMZCb/E7n7hzMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC85NjIxQjVFQ0NDQjExMUVFQTkyRTMxNzE3NzU0MTJFNi5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmtjZMA0GCSqGSIb3DQEB
CwUAA4IBAQA+KrOLr4o/5NTz9YCReWXi2UbfRzdWDlcOOJXQUlTZ1hx3HYjETEsa
OASRJfq30eV2zOTnpWnc8/XMB6B8HeNuI25OwdKnLtln9L84qPEoBlZWQ6CeHY8n
oYCXNndvwC9qOvRGI6uw1An0+Pa3Vy80m8L3LvECA1/nq2BK5SB9IU/AD9Ih10eh
AnbMnFQzizCbYoCkMy84WQBTCVlBYfA/EnsKMGPgBkCNnwEtrsowUJQdTK5YNbcR
4WBmaNuqXQq1V69Cpv67Mw8AZVHg6euWk8alUjUnaMR7m+scinoyc57Oc7N2G92L
Qbqd+1cvy8uiBL0HkaaPRHFeR3Mrao/Y
-----END CERTIFICATE-----
Generated at Fri Apr 26 11:01:43 2024 by rpki-client on console-ams.rpki-client.org