Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/976F366ECCA611EE9668F95F775412E6.roa
File: 976F366ECCA611EE9668F95F775412E6.roa (raw, json)
Hash identifier: xUVLGCrCD527zBzyFFhFsL/aaaHuWT2v8U8MKeSU+48=
Subject key identifier: F0:B9:12:BA:02:38:22:35:38:B2:DE:3E:60:09:FE:7C:F7:12:FB:3C
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 8A39
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/976F366ECCA611EE9668F95F775412E6.roa
Signing time: Fri 16 Feb 2024 08:37:17 +0000
ROA not before: Fri 16 Feb 2024 08:37:14 +0000
ROA not after: Fri 26 Apr 2024 08:37:14 +0000
asID: 9009
IP address blocks: 154.218.204.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 35385 (0x8a39)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Feb 16 08:37:14 2024 GMT
Not After : Apr 26 08:37:14 2024 GMT
Subject: CN=65cf1ebd-969e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:08:ff:95:5d:65:07:84:17:13:bb:d3:fa:2e:
e3:e4:4d:e1:2a:ef:ac:05:1d:72:a7:90:56:ba:e9:
31:ce:86:75:d7:dd:c3:b8:54:66:5e:5d:2e:27:8c:
3a:41:29:58:5a:a9:ce:5b:95:e9:ba:75:10:42:81:
28:50:51:4b:a0:c8:81:fc:d6:24:91:eb:a4:48:2e:
8d:3a:3b:f9:70:f8:71:e7:b5:ec:d0:7f:10:21:c6:
f0:b9:be:a4:7f:a4:21:19:92:f3:e7:39:2f:e7:c9:
f5:5e:ca:fb:41:a3:36:b9:c5:f2:f3:ec:10:8b:5a:
26:f4:0e:55:76:e0:85:04:02:02:19:7a:0a:ea:2e:
94:d9:5d:89:41:31:01:19:91:81:d0:f9:ad:e2:bc:
de:e7:f7:c2:ec:a3:92:dc:4d:aa:59:97:b5:eb:f5:
bf:8b:81:c2:43:5a:e2:ba:d0:29:a0:fa:57:0d:98:
f5:b3:eb:48:02:37:90:f6:f7:49:95:d5:46:1b:c3:
64:6b:3a:c1:b0:56:f2:7d:14:a4:81:0c:96:bb:dc:
db:53:6d:41:8f:e4:5c:06:d3:76:8c:f3:26:87:11:
f7:ef:bd:a6:c7:d9:0d:de:14:fe:83:62:2c:a9:b0:
ca:81:66:63:f3:81:07:85:f6:a6:5e:be:e5:3c:40:
87:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:B9:12:BA:02:38:22:35:38:B2:DE:3E:60:09:FE:7C:F7:12:FB:3C
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/976F366ECCA611EE9668F95F775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.218.204.0/24
Signature Algorithm: sha256WithRSAEncryption
b4:9c:3f:41:51:6a:89:2f:11:98:4e:54:1e:fd:92:ae:06:7d:
69:3e:c0:46:96:bd:86:1f:06:27:24:ef:d1:2e:96:9c:88:61:
b5:9c:6b:c3:9a:eb:8a:2d:68:fe:8f:ff:40:3b:87:dc:3e:69:
97:57:74:ae:3e:b4:78:a4:ab:28:6f:20:0b:51:93:8d:a0:c2:
da:f1:1e:3a:88:62:4b:53:f6:61:1f:97:b8:ae:75:48:15:a9:
88:a3:0f:5e:6e:f2:5d:4e:14:6b:0b:44:a9:73:9e:67:fd:1b:
a1:7f:51:23:df:f7:9d:78:ca:55:76:83:98:f8:97:c0:ab:f1:
ac:19:3e:89:06:86:ab:86:ff:10:13:df:9e:91:38:74:01:ae:
e3:b9:d0:45:2a:83:74:d8:a6:32:61:36:77:3d:e9:f2:3b:d8:
82:4c:81:b7:ff:e2:d6:f3:7d:2e:d8:56:57:5d:58:b5:e8:4d:
c8:24:92:56:4f:a9:74:b4:50:c8:e2:45:8f:67:87:eb:f6:6c:
44:d2:7c:3b:5b:6c:d1:30:48:15:e2:5f:7c:8a:69:6f:c6:8a:
b5:fb:7f:52:82:a3:b2:4a:4a:32:06:16:f1:94:d7:b2:a1:14:
3c:4f:6b:86:d2:d7:94:76:a0:d2:74:53:0a:03:08:b0:11:0f:
fd:41:50:90
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAIo5MA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQwMjE2MDgzNzE0WhcNMjQwNDI2MDgzNzE0WjAYMRYw
FAYDVQQDEw02NWNmMWViZC05NjllMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAowj/lV1lB4QXE7vT+i7j5E3hKu+sBR1yp5BWuukxzoZ1193DuFRmXl0u
J4w6QSlYWqnOW5XpunUQQoEoUFFLoMiB/NYkkeukSC6NOjv5cPhx57Xs0H8QIcbw
ub6kf6QhGZLz5zkv58n1Xsr7QaM2ucXy8+wQi1om9A5VduCFBAICGXoK6i6U2V2J
QTEBGZGB0Pmt4rze5/fC7KOS3E2qWZe16/W/i4HCQ1riutApoPpXDZj1s+tIAjeQ
9vdJldVGG8NkazrBsFbyfRSkgQyWu9zbU21Bj+RcBtN2jPMmhxH3772mx9kN3hT+
g2IsqbDKgWZj84EHhfamXr7lPECHowIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFPC5
EroCOCI1OLLePmAJ/nz3Evs8MB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC85NzZGMzY2RUNDQTYxMUVFOTY2OEY5NUY3NzU0MTJFNi5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmtrMMA0GCSqGSIb3DQEB
CwUAA4IBAQC0nD9BUWqJLxGYTlQe/ZKuBn1pPsBGlr2GHwYnJO/RLpaciGG1nGvD
muuKLWj+j/9AO4fcPmmXV3SuPrR4pKsobyALUZONoMLa8R46iGJLU/ZhH5e4rnVI
FamIow9ebvJdThRrC0Spc55n/Ruhf1Ej3/edeMpVdoOY+JfAq/GsGT6JBoarhv8Q
E9+ekTh0Aa7judBFKoN02KYyYTZ3PenyO9iCTIG3/+LW830u2FZXXVi16E3IJJJW
T6l0tFDI4kWPZ4fr9mxE0nw7W2zRMEgV4l98imlvxoq1+39SgqOySkoyBhbxlNey
oRQ8T2uG0teUdqDSdFMKAwiwEQ/9QVCQ
-----END CERTIFICATE-----
Generated at Fri Apr 26 11:01:43 2024 by rpki-client on console-ams.rpki-client.org