Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B7A00B42088911EFA394DCF8007001B1.roa
File: B7A00B42088911EFA394DCF8007001B1.roa (raw, json)
Hash identifier: 3Ogrn1tgaTwBq3o6HN0PmIRWjChRWpl3K35tZzsMBUQ=
Subject key identifier: 33:50:8D:2F:31:33:35:8F:99:73:C5:7C:D1:BD:58:FF:AD:24:C2:5B
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: B3EE
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B7A00B42088911EFA394DCF8007001B1.roa
Signing time: Thu 02 May 2024 13:41:46 +0000
ROA not before: Thu 02 May 2024 13:41:42 +0000
ROA not after: Sun 12 May 2024 13:41:42 +0000
asID: 21859
IP address blocks: 154.94.35.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 46062 (0xb3ee)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 2 13:41:42 2024 GMT
Not After : May 12 13:41:42 2024 GMT
Subject: CN=66339819-9ea0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:75:e7:5e:25:88:c6:6a:d5:92:42:60:d8:47:
6a:42:92:c4:9b:bb:66:8f:64:ff:77:f5:4c:89:82:
7c:1d:90:2e:29:1a:ee:8e:d1:65:0e:0f:91:0b:03:
91:69:fc:11:27:2a:9c:a3:0b:4a:0d:5b:e5:e5:14:
52:89:69:b6:95:19:f4:bf:e5:5e:9e:73:f8:12:27:
94:3b:3b:cf:5d:fb:89:cd:86:9c:1a:b0:d1:1d:a7:
a7:31:77:32:2c:9a:e0:3b:cc:13:b1:98:b7:18:a9:
e4:64:00:7a:d0:0c:7d:37:e9:d5:bd:d8:18:8d:08:
fc:65:51:5b:d6:f8:4a:2f:9b:d9:e0:5f:72:fa:77:
ac:cd:b8:d9:15:64:ac:58:bf:2d:7e:b4:d4:5b:21:
ba:42:1e:f6:9c:4a:00:37:78:a6:79:1f:1a:2c:db:
b8:9d:96:87:9f:5e:47:5a:d4:68:01:4b:be:88:c3:
12:b7:5b:b9:b0:6a:05:3e:7e:30:1a:4e:5a:71:74:
00:25:5c:e3:89:f6:b5:6b:6f:30:e5:16:a1:57:b2:
e8:58:2d:a1:31:3f:9c:ff:f2:21:54:f5:bb:f0:e4:
0c:be:f9:93:6c:38:ef:33:0b:22:11:42:0f:9c:52:
f8:e5:cc:bd:c6:94:fd:aa:1a:99:95:4e:25:d0:21:
a4:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:50:8D:2F:31:33:35:8F:99:73:C5:7C:D1:BD:58:FF:AD:24:C2:5B
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B7A00B42088911EFA394DCF8007001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.94.35.0/24
Signature Algorithm: sha256WithRSAEncryption
1d:4a:73:19:85:3b:dc:5c:08:00:ac:dc:d3:aa:f2:4f:be:3c:
ea:6b:82:21:14:cd:09:07:ca:72:18:56:ce:49:d5:68:0f:7d:
43:c5:0b:99:9e:4e:40:a1:58:71:54:00:28:3f:c9:03:5d:4c:
3d:ee:c4:96:85:b6:9b:50:95:d0:29:48:b3:49:4d:17:10:e9:
40:7a:63:1a:8c:55:92:59:e0:9b:db:50:a9:91:f7:4a:b6:02:
7a:be:87:b5:b8:5f:c6:a3:d5:fe:37:1a:5a:ce:11:c3:fd:9b:
74:74:63:e5:da:1e:9a:c2:19:01:83:d8:3d:18:57:9c:25:18:
a5:d5:68:17:a3:03:ab:82:3e:c1:99:8b:d6:fe:fb:03:64:82:
0f:e8:72:cb:0c:28:de:91:9e:67:5b:7f:d6:ba:83:19:cd:10:
f0:05:7b:19:bb:80:3f:19:c9:76:a8:04:b3:6d:85:a3:1d:25:
ef:d6:ac:bf:37:aa:e6:2e:28:23:0a:de:b0:5e:64:33:fb:1c:
53:27:a2:1e:0a:14:c9:57:25:cd:11:a3:52:ae:84:28:3a:96:
a9:f3:3c:4f:af:00:a9:2e:df:67:97:12:19:42:18:1e:57:e2:
e7:06:1f:62:ce:32:7b:14:ba:ae:80:d4:04:a2:d2:14:2f:ba:
c5:4d:58:89
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDALPuMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQwNTAyMTM0MTQyWhcNMjQwNTEyMTM0MTQyWjAYMRYw
FAYDVQQDEw02NjMzOTgxOS05ZWEwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAz3XnXiWIxmrVkkJg2EdqQpLEm7tmj2T/d/VMiYJ8HZAuKRrujtFlDg+R
CwORafwRJyqcowtKDVvl5RRSiWm2lRn0v+VennP4EieUOzvPXfuJzYacGrDRHaen
MXcyLJrgO8wTsZi3GKnkZAB60Ax9N+nVvdgYjQj8ZVFb1vhKL5vZ4F9y+neszbjZ
FWSsWL8tfrTUWyG6Qh72nEoAN3imeR8aLNu4nZaHn15HWtRoAUu+iMMSt1u5sGoF
Pn4wGk5acXQAJVzjifa1a28w5RahV7LoWC2hMT+c//IhVPW78OQMvvmTbDjvMwsi
EUIPnFL45cy9xpT9qhqZlU4l0CGk9wIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFDNQ
jS8xMzWPmXPFfNG9WP+tJMJbMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC9CN0EwMEI0MjA4ODkxMUVGQTM5NERDRjgwMDcwMDFCMS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAml4jMA0GCSqGSIb3DQEB
CwUAA4IBAQAdSnMZhTvcXAgArNzTqvJPvjzqa4IhFM0JB8pyGFbOSdVoD31DxQuZ
nk5AoVhxVAAoP8kDXUw97sSWhbabUJXQKUizSU0XEOlAemMajFWSWeCb21CpkfdK
tgJ6voe1uF/Go9X+NxpazhHD/Zt0dGPl2h6awhkBg9g9GFecJRil1WgXowOrgj7B
mYvW/vsDZIIP6HLLDCjekZ5nW3/WuoMZzRDwBXsZu4A/Gcl2qASzbYWjHSXv1qy/
N6rmLigjCt6wXmQz+xxTJ6IeChTJVyXNEaNSroQoOpap8zxPrwCpLt9nlxIZQhge
V+LnBh9izjJ7FLqugNQEotIUL7rFTViJ
-----END CERTIFICATE-----
Generated at Mon May 13 02:12:06 2024 by rpki-client on console-fra.rpki-client.org