Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/AF32F9DACCAA11EE87696966775412E6.roa
File: AF32F9DACCAA11EE87696966775412E6.roa (raw, json)
Hash identifier: McdAao4ShOwYulDR6hXvxs5I30TmyQDwglncWV0q6Q8=
Subject key identifier: E3:24:EF:EB:6C:05:59:29:16:9A:27:B6:87:EC:E0:B3:A3:71:3B:D2
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 8A63
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/AF32F9DACCAA11EE87696966775412E6.roa
Signing time: Fri 16 Feb 2024 09:06:35 +0000
ROA not before: Fri 16 Feb 2024 09:06:32 +0000
ROA not after: Fri 26 Apr 2024 09:06:32 +0000
asID: 9009
IP address blocks: 154.216.202.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 35427 (0x8a63)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Feb 16 09:06:32 2024 GMT
Not After : Apr 26 09:06:32 2024 GMT
Subject: CN=65cf259b-6c96
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:16:f6:a7:6e:9f:71:56:e0:45:af:53:fd:3c:
4b:99:37:f8:ad:d9:d7:f8:41:ef:8d:ef:f8:0b:38:
e7:48:65:d7:ab:9c:a6:62:76:6c:4c:e7:e8:74:26:
64:e6:f1:dd:99:9d:51:58:61:26:a9:6e:bd:11:cd:
64:72:88:60:f1:77:7d:7f:11:1c:93:67:af:04:3f:
36:56:cf:db:0e:0d:64:43:3b:1d:ae:12:cc:01:73:
ff:2f:63:eb:10:9c:8c:7a:c1:71:9c:4a:1e:4d:3c:
ad:b8:f8:a5:55:b5:80:42:2f:8b:a4:0a:37:63:fc:
5d:c2:b4:97:a3:6e:4d:9a:77:fc:92:63:7a:d6:0a:
61:6d:70:83:32:f4:ae:33:9a:0e:b1:b2:20:e4:66:
4b:1d:ce:a3:81:4f:e0:e5:f6:67:e4:70:98:31:9a:
2c:90:7e:30:76:07:c1:3c:17:0f:59:bf:05:f1:ee:
70:4e:ca:30:19:2b:19:61:39:8d:7a:4b:ca:c4:1a:
d3:b9:1f:30:2d:1c:c6:a4:4d:87:60:e5:fc:ea:5e:
a9:2c:53:36:8d:a2:b9:56:11:4c:e2:f8:b4:3d:60:
33:5c:20:59:7f:e0:41:4e:5c:fe:cf:5e:eb:e5:55:
65:3b:28:04:4d:d7:16:61:ba:13:5f:00:0b:e8:2a:
78:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:24:EF:EB:6C:05:59:29:16:9A:27:B6:87:EC:E0:B3:A3:71:3B:D2
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/AF32F9DACCAA11EE87696966775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.216.202.0/24
Signature Algorithm: sha256WithRSAEncryption
b9:53:bf:f3:4a:59:28:d6:ad:df:67:06:9f:01:04:30:b2:e1:
a7:4a:d3:45:73:5f:66:13:b1:b6:a8:d5:0c:0a:54:d9:1f:f3:
7d:db:a0:45:61:a7:a4:04:c9:d7:d6:fc:27:ed:65:ba:f7:15:
59:0b:0b:46:1e:77:ea:3a:05:cc:3f:c9:45:61:6c:2b:50:fd:
74:7b:80:52:ec:51:aa:5a:12:83:8e:46:11:a8:cd:80:ee:df:
90:01:4a:5d:63:13:04:14:5a:fa:c9:2c:e8:c9:a3:10:23:bf:
b9:3d:b7:54:f6:51:1f:95:b2:d1:19:fc:64:36:30:b9:6c:08:
7a:85:d9:6f:78:b3:4c:5d:a2:32:9f:a2:bd:68:af:8c:ca:d3:
9b:9f:e2:6f:9e:3c:79:6d:91:69:e1:6c:bd:02:ca:fa:c9:3a:
bb:3e:64:ac:3c:61:78:4a:02:59:e5:2f:78:6c:16:58:d9:c1:
2f:b9:25:f2:56:89:a6:3b:b2:78:5c:0e:42:41:59:71:7f:97:
4e:fe:b4:7e:aa:e5:66:da:2b:32:96:99:c6:02:37:06:31:cf:
33:96:c3:a9:e8:61:bd:08:3f:6b:66:df:48:9a:54:e3:a4:e2:
70:7a:5d:c0:90:a5:94:2c:21:67:d7:c1:a9:e8:52:a1:be:d7:
1c:1e:b8:4c
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAIpjMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQwMjE2MDkwNjMyWhcNMjQwNDI2MDkwNjMyWjAYMRYw
FAYDVQQDEw02NWNmMjU5Yi02Yzk2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAtBb2p26fcVbgRa9T/TxLmTf4rdnX+EHvje/4CzjnSGXXq5ymYnZsTOfo
dCZk5vHdmZ1RWGEmqW69Ec1kcohg8Xd9fxEck2evBD82Vs/bDg1kQzsdrhLMAXP/
L2PrEJyMesFxnEoeTTytuPilVbWAQi+LpAo3Y/xdwrSXo25Nmnf8kmN61gphbXCD
MvSuM5oOsbIg5GZLHc6jgU/g5fZn5HCYMZoskH4wdgfBPBcPWb8F8e5wTsowGSsZ
YTmNekvKxBrTuR8wLRzGpE2HYOX86l6pLFM2jaK5VhFM4vi0PWAzXCBZf+BBTlz+
z17r5VVlOygETdcWYboTXwAL6Cp47wIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFOMk
7+tsBVkpFpontofs4LOjcTvSMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC9BRjMyRjlEQUNDQUExMUVFODc2OTY5NjY3NzU0MTJFNi5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmtjKMA0GCSqGSIb3DQEB
CwUAA4IBAQC5U7/zSlko1q3fZwafAQQwsuGnStNFc19mE7G2qNUMClTZH/N926BF
YaekBMnX1vwn7WW69xVZCwtGHnfqOgXMP8lFYWwrUP10e4BS7FGqWhKDjkYRqM2A
7t+QAUpdYxMEFFr6ySzoyaMQI7+5PbdU9lEflbLRGfxkNjC5bAh6hdlveLNMXaIy
n6K9aK+MytObn+Jvnjx5bZFp4Wy9Asr6yTq7PmSsPGF4SgJZ5S94bBZY2cEvuSXy
VommO7J4XA5CQVlxf5dO/rR+quVm2isylpnGAjcGMc8zlsOp6GG9CD9rZt9ImlTj
pOJwel3AkKWULCFn18Gp6FKhvtccHrhM
-----END CERTIFICATE-----
Generated at Fri Apr 26 11:01:46 2024 by rpki-client on console-ams.rpki-client.org