Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C63A7ED8037C11EFB5C3D151017001B1.roa
File: C63A7ED8037C11EFB5C3D151017001B1.roa (raw, json)
Hash identifier: Wq9zs0TSBdiE8GS/qjZrVud8PyL4BpfYDPILPwvyo9c=
Subject key identifier: 11:EB:94:EB:8D:9E:1E:CB:02:F0:D2:3F:9B:4D:BA:A2:2B:5A:C8:B4
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: B12E
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C63A7ED8037C11EFB5C3D151017001B1.roa
Signing time: Fri 26 Apr 2024 03:26:31 +0000
ROA not before: Fri 26 Apr 2024 03:26:27 +0000
ROA not after: Sun 26 May 2024 03:26:27 +0000
asID: 62240
IP address blocks: 154.195.128.0/18 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 45358 (0xb12e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 26 03:26:27 2024 GMT
Not After : May 26 03:26:27 2024 GMT
Subject: CN=662b1ee7-78a9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:60:bb:50:bf:d4:67:53:ed:26:97:b6:bf:9e:
b2:61:03:2a:38:09:f0:96:d8:07:5c:35:44:6b:6c:
2b:c8:ab:27:36:64:4b:19:4f:d4:b3:ae:42:1b:e6:
77:6e:5f:55:80:22:89:5c:1b:f2:ea:8b:69:a9:9e:
8c:82:5c:05:8c:7f:eb:9f:36:ae:cf:47:5a:d0:ad:
a3:48:66:e2:1b:19:39:be:e7:6b:79:be:65:7a:d9:
db:0f:6c:fd:bc:26:b9:d0:ad:a4:31:f4:55:b2:39:
e7:9b:0c:35:03:78:14:9c:1f:eb:fb:53:a3:15:40:
68:99:8e:2b:14:1f:a7:4e:b0:f3:1b:47:ef:e0:8a:
91:b5:4f:70:0e:11:f4:a1:8b:36:ba:6a:e4:42:4f:
7b:8a:ad:d2:01:e4:4d:f3:0d:ea:79:c7:97:b8:e6:
15:15:90:7a:f8:55:21:08:2f:94:13:94:5e:c6:41:
dd:24:56:47:42:d0:1e:6f:1b:55:e4:22:fb:5d:f6:
ae:d6:eb:b8:87:31:c9:d4:67:a7:2f:1e:f5:c2:48:
61:9b:56:1f:15:a9:38:ab:f3:e5:b3:1d:c5:86:ef:
ea:a6:ef:06:64:7e:68:38:90:81:5f:30:70:a0:c7:
3f:90:4f:27:20:62:cd:ad:f5:ae:8a:6a:ff:59:68:
20:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:EB:94:EB:8D:9E:1E:CB:02:F0:D2:3F:9B:4D:BA:A2:2B:5A:C8:B4
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C63A7ED8037C11EFB5C3D151017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.195.128.0/18
Signature Algorithm: sha256WithRSAEncryption
0b:dc:df:96:f7:dd:d7:c4:d0:3b:90:93:85:03:2f:24:de:a2:
79:e4:01:d8:34:56:e8:2b:3e:f3:99:5b:af:8a:38:6d:38:e6:
5e:8a:45:83:32:d5:7f:63:db:40:0f:b0:0d:9a:64:fa:5a:bb:
57:08:d0:e1:14:55:6d:b3:04:48:35:f9:f8:68:20:92:10:0b:
22:95:fd:40:15:57:15:19:cc:3e:24:40:bd:5c:15:07:56:77:
fb:1f:8f:4c:ee:49:a7:03:43:fb:a5:a6:28:1c:52:93:4a:0e:
18:79:fb:e9:17:2c:2d:5a:cf:63:25:dc:e8:a4:4b:49:1a:26:
f8:49:fb:51:0f:8c:9d:91:34:d6:45:7e:bd:6a:21:64:9e:2c:
21:4e:ee:62:a9:5e:db:01:cc:94:7a:9d:93:8e:84:1a:ad:5d:
73:d6:34:fc:e2:b2:e3:e8:ec:07:4c:03:4d:90:7f:33:e9:05:
04:5a:78:5d:c3:ad:d1:e3:5f:97:50:e6:ad:a1:af:e2:60:aa:
4d:21:d5:f9:fb:85:d0:a4:66:63:f5:dd:e8:fe:42:48:df:7d:
28:3c:7c:85:ae:07:ea:ee:a3:00:01:71:6e:01:ae:20:59:58:
e9:3f:46:9b:18:cb:fa:8f:6b:f0:60:d4:b9:bf:a8:af:20:df:
b5:fb:58:1a
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDALEuMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQwNDI2MDMyNjI3WhcNMjQwNTI2MDMyNjI3WjAYMRYw
FAYDVQQDEw02NjJiMWVlNy03OGE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAt2C7UL/UZ1PtJpe2v56yYQMqOAnwltgHXDVEa2wryKsnNmRLGU/Us65C
G+Z3bl9VgCKJXBvy6otpqZ6MglwFjH/rnzauz0da0K2jSGbiGxk5vudreb5letnb
D2z9vCa50K2kMfRVsjnnmww1A3gUnB/r+1OjFUBomY4rFB+nTrDzG0fv4IqRtU9w
DhH0oYs2umrkQk97iq3SAeRN8w3qeceXuOYVFZB6+FUhCC+UE5RexkHdJFZHQtAe
bxtV5CL7Xfau1uu4hzHJ1GenLx71wkhhm1YfFak4q/Plsx3Fhu/qpu8GZH5oOJCB
XzBwoMc/kE8nIGLNrfWuimr/WWggXwIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFBHr
lOuNnh7LAvDSP5tNuqIrWsi0MB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC9DNjNBN0VEODAzN0MxMUVGQjVDM0QxNTEwMTcwMDFCMS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQGmsOAMA0GCSqGSIb3DQEB
CwUAA4IBAQAL3N+W993XxNA7kJOFAy8k3qJ55AHYNFboKz7zmVuvijhtOOZeikWD
MtV/Y9tAD7ANmmT6WrtXCNDhFFVtswRINfn4aCCSEAsilf1AFVcVGcw+JEC9XBUH
Vnf7H49M7kmnA0P7paYoHFKTSg4YefvpFywtWs9jJdzopEtJGib4SftRD4ydkTTW
RX69aiFkniwhTu5iqV7bAcyUep2TjoQarV1z1jT84rLj6OwHTANNkH8z6QUEWnhd
w63R41+XUOatoa/iYKpNIdX5+4XQpGZj9d3o/kJI330oPHyFrgfq7qMAAXFuAa4g
WVjpP0abGMv6j2vwYNS5v6ivIN+1+1ga
-----END CERTIFICATE-----
Generated at Mon May 27 03:45:17 2024 by rpki-client on console-ams.rpki-client.org