Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D53523C4060C11EF9BC7893B017001B1.roa
File: D53523C4060C11EF9BC7893B017001B1.roa (raw, json)
Hash identifier: 3Yunw30bf5kFHqtaVMHX61MDvO8eS2OuEcYQfloP5u4=
Subject key identifier: 85:11:29:F5:2C:F8:5B:3A:DA:46:B8:17:90:D1:94:F8:69:5F:E9:89
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: B206
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D53523C4060C11EF9BC7893B017001B1.roa
Signing time: Mon 29 Apr 2024 09:42:46 +0000
ROA not before: Mon 29 Apr 2024 09:42:42 +0000
ROA not after: Wed 15 May 2024 09:42:42 +0000
asID: 5065
IP address blocks: 154.81.12.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 45574 (0xb206)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 29 09:42:42 2024 GMT
Not After : May 15 09:42:42 2024 GMT
Subject: CN=662f6b96-7944
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:74:e8:ce:9d:2e:fa:c8:de:c6:30:c2:e2:69:
9e:ef:1f:06:df:01:41:cb:d0:c3:66:a6:3a:f9:23:
b1:b6:c4:23:a3:74:dc:09:e1:c8:1d:05:a6:19:a4:
0f:03:66:a5:3a:e8:ac:9d:b0:cd:33:4b:b1:7d:de:
90:9c:d3:20:20:07:e9:ec:f1:1a:b0:33:f3:56:33:
fb:43:b0:93:07:d9:28:fc:53:48:e4:1a:4d:9d:eb:
c2:5d:7c:3b:fb:49:e7:2b:ad:25:0c:d2:2f:06:91:
b2:0a:fc:22:b6:8d:2a:9a:09:3a:db:76:d5:8b:78:
3f:d7:d6:8c:84:51:4c:77:4c:2f:6c:64:cf:6f:25:
16:92:6b:f8:4a:ef:0c:a2:22:ab:cc:42:b6:5e:98:
cf:5e:c5:42:a4:1d:96:43:76:6d:22:26:5f:cb:94:
f0:01:29:b9:74:2e:9f:da:bb:2c:74:bd:6b:4e:e7:
e6:b1:25:c8:0c:1d:eb:bc:0f:51:5e:ea:1b:bd:bf:
3f:84:53:b1:c9:1c:60:fb:1b:0b:b2:3d:01:cd:a2:
49:45:4d:b0:66:b1:de:c4:45:2e:3b:9d:c4:2f:0f:
c1:3d:53:08:ba:a3:7a:95:2c:22:44:df:87:a6:7f:
3d:41:70:ad:23:20:ff:7f:77:09:c2:e9:a2:73:15:
c1:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:11:29:F5:2C:F8:5B:3A:DA:46:B8:17:90:D1:94:F8:69:5F:E9:89
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D53523C4060C11EF9BC7893B017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.81.12.0/22
Signature Algorithm: sha256WithRSAEncryption
83:a4:17:d4:71:bd:e0:90:c1:6a:00:f8:1f:64:e2:70:26:5a:
93:dc:d7:e1:42:0c:54:9e:88:d5:4c:ed:b4:85:ed:e2:a3:f9:
66:fe:19:c8:34:46:1e:90:e7:85:d2:e3:1e:98:3e:a3:45:54:
92:dc:43:ca:db:ba:eb:ed:5e:b8:f6:90:28:51:ec:37:dc:c3:
6c:6c:3e:9e:b6:a2:bd:4f:aa:79:4d:08:f1:b2:59:08:77:6f:
25:c0:07:99:98:7d:74:27:cb:b1:51:61:2d:4e:3f:bb:7f:1f:
d4:4a:c8:4f:ac:e3:e9:e9:e2:d4:5d:2c:51:d3:10:67:c0:b8:
c5:6d:49:90:2a:24:f4:9a:16:2d:e7:91:80:ed:62:53:82:af:
75:32:14:d5:41:57:b5:2f:63:9f:06:4f:b2:fd:93:30:c5:65:
c6:28:65:8d:94:d7:33:1f:38:a2:cb:27:f7:64:81:cb:1d:74:
61:f7:cd:ca:d6:00:2c:b4:e0:ae:df:ec:3a:92:3b:e9:01:2a:
c5:c9:f7:ca:aa:3a:f3:46:c1:51:56:42:ea:95:dd:95:26:58:
af:8e:e5:78:cf:33:d7:ee:b2:26:16:59:45:e4:d5:0a:82:4e:
1b:c0:bb:42:3c:ca:5d:23:30:b7:33:59:e4:62:2d:17:2c:c8:
41:7a:4e:ee
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDALIGMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQwNDI5MDk0MjQyWhcNMjQwNTE1MDk0MjQyWjAYMRYw
FAYDVQQDEw02NjJmNmI5Ni03OTQ0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEA3XTozp0u+sjexjDC4mme7x8G3wFBy9DDZqY6+SOxtsQjo3TcCeHIHQWm
GaQPA2alOuisnbDNM0uxfd6QnNMgIAfp7PEasDPzVjP7Q7CTB9ko/FNI5BpNnevC
XXw7+0nnK60lDNIvBpGyCvwito0qmgk623bVi3g/19aMhFFMd0wvbGTPbyUWkmv4
Su8MoiKrzEK2XpjPXsVCpB2WQ3ZtIiZfy5TwASm5dC6f2rssdL1rTufmsSXIDB3r
vA9RXuobvb8/hFOxyRxg+xsLsj0BzaJJRU2wZrHexEUuO53ELw/BPVMIuqN6lSwi
RN+Hpn89QXCtIyD/f3cJwumicxXBOQIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFIUR
KfUs+Fs62ka4F5DRlPhpX+mJMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC9ENTM1MjNDNDA2MEMxMUVGOUJDNzg5M0IwMTcwMDFCMS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCmlEMMA0GCSqGSIb3DQEB
CwUAA4IBAQCDpBfUcb3gkMFqAPgfZOJwJlqT3NfhQgxUnojVTO20he3io/lm/hnI
NEYekOeF0uMemD6jRVSS3EPK27rr7V649pAoUew33MNsbD6etqK9T6p5TQjxslkI
d28lwAeZmH10J8uxUWEtTj+7fx/USshPrOPp6eLUXSxR0xBnwLjFbUmQKiT0mhYt
55GA7WJTgq91MhTVQVe1L2OfBk+y/ZMwxWXGKGWNlNczHziiyyf3ZIHLHXRh983K
1gAstOCu3+w6kjvpASrFyffKqjrzRsFRVkLqld2VJlivjuV4zzPX7rImFllF5NUK
gk4bwLtCPMpdIzC3M1nkYi0XLMhBek7u
-----END CERTIFICATE-----
Generated at Thu May 16 02:12:10 2024 by rpki-client on console-ams.rpki-client.org