Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E60463A4077411EFAB33A132017001B1.roa
File: E60463A4077411EFAB33A132017001B1.roa (raw, json)
Hash identifier: xitfesJBJPAPjcWqB67h9Kk7j5D26uzSIwXnom44Wzc=
Subject key identifier: 0F:DF:22:C5:49:5D:37:6A:C2:BF:11:B3:12:03:7D:A7:C8:2F:86:0B
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: B31C
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E60463A4077411EFAB33A132017001B1.roa
Signing time: Wed 01 May 2024 04:40:13 +0000
ROA not before: Wed 01 May 2024 04:40:09 +0000
ROA not after: Sat 11 May 2024 04:40:09 +0000
asID: 142062
IP address blocks: 154.206.211.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 45852 (0xb31c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 1 04:40:09 2024 GMT
Not After : May 11 04:40:09 2024 GMT
Subject: CN=6631c7ad-a328
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:6f:c6:5d:48:69:4f:c1:43:74:67:15:47:a2:
16:74:78:ca:e8:dd:d1:7f:4c:7a:da:fa:bb:4d:59:
79:6e:92:21:49:8c:88:58:c8:3e:fc:8d:3f:4c:be:
ce:f6:7b:b5:09:7b:62:8b:67:eb:68:bd:e1:a3:f7:
cc:2b:db:ed:1f:f7:9b:e1:4d:46:a0:9d:92:79:21:
8f:13:f8:90:b9:df:ee:7c:74:f7:f8:17:7d:e6:79:
6f:60:22:72:b2:18:31:7c:c0:49:24:5a:27:2c:30:
86:71:9f:6f:b7:56:d1:e5:85:28:8d:75:7c:7f:05:
3c:c0:d2:d8:49:c6:6f:43:45:70:a3:01:27:9f:a4:
77:b3:ea:d8:f0:64:df:eb:ec:e8:a8:65:72:e2:f8:
43:98:91:77:8d:5b:a8:2d:46:bb:60:37:8f:97:e1:
09:ca:99:17:f9:0d:64:d8:83:7f:e8:0e:76:75:55:
46:8d:ca:e6:f2:cd:0c:a7:1b:58:0a:12:ec:59:87:
a2:11:a0:06:b3:77:bb:dc:5e:5e:8c:06:06:06:ff:
c6:b2:f6:5f:6b:9a:86:92:d8:42:c6:eb:42:0b:d4:
50:79:fd:37:74:de:ee:39:17:69:64:07:72:d1:0a:
62:c2:45:e9:8e:c8:7f:57:c9:e8:e3:6e:c5:9c:c0:
bc:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:DF:22:C5:49:5D:37:6A:C2:BF:11:B3:12:03:7D:A7:C8:2F:86:0B
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E60463A4077411EFAB33A132017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.206.211.0/24
Signature Algorithm: sha256WithRSAEncryption
7c:97:46:f8:aa:b8:d0:d6:78:b0:71:01:e6:09:5d:9e:7f:3e:
7c:7c:2e:b4:ec:f6:4e:e6:45:82:01:8d:9a:fb:9c:a9:dd:49:
8c:19:df:a8:92:10:4a:be:ab:0c:58:05:49:4b:33:1e:86:80:
75:a0:3d:19:bd:6e:95:ed:6d:9b:9e:55:c7:7a:e9:c3:cd:77:
e8:c6:15:97:92:8a:58:c0:c7:c5:08:a1:6e:2b:4f:fe:73:bf:
b9:d3:e4:c7:44:d9:b2:f3:42:9a:8a:aa:5d:bc:17:51:55:08:
6d:4a:86:01:2a:94:36:27:59:e8:a5:22:19:30:d8:75:e4:ff:
b9:23:33:ac:b9:b2:71:c7:65:aa:4e:25:b0:ce:c2:e3:48:1c:
0f:17:f5:85:25:4b:9a:dc:f8:df:82:8f:81:60:8c:14:55:18:
fa:d9:fa:81:fc:e5:1f:b2:90:aa:94:c3:c5:19:86:1d:3b:5b:
69:3b:d2:43:f3:71:d4:c0:15:14:78:43:68:47:34:9b:58:61:
01:e5:ba:9e:0a:96:39:f4:c9:60:5b:94:3e:97:5d:b7:46:62:
f0:a8:1b:04:93:76:2e:c6:5d:e3:ab:a0:6a:48:bd:99:7f:2e:
3a:0e:9b:6c:94:72:d3:b1:56:59:c1:a6:fc:f0:e8:b6:22:89:
cd:b7:1c:c9
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDALMcMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQwNTAxMDQ0MDA5WhcNMjQwNTExMDQ0MDA5WjAYMRYw
FAYDVQQDEw02NjMxYzdhZC1hMzI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAzm/GXUhpT8FDdGcVR6IWdHjK6N3Rf0x62vq7TVl5bpIhSYyIWMg+/I0/
TL7O9nu1CXtii2fraL3ho/fMK9vtH/eb4U1GoJ2SeSGPE/iQud/ufHT3+Bd95nlv
YCJyshgxfMBJJFonLDCGcZ9vt1bR5YUojXV8fwU8wNLYScZvQ0VwowEnn6R3s+rY
8GTf6+zoqGVy4vhDmJF3jVuoLUa7YDePl+EJypkX+Q1k2IN/6A52dVVGjcrm8s0M
pxtYChLsWYeiEaAGs3e73F5ejAYGBv/GsvZfa5qGkthCxutCC9RQef03dN7uORdp
ZAdy0QpiwkXpjsh/V8no427FnMC8aQIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFA/f
IsVJXTdqwr8RsxIDfafIL4YLMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC9FNjA0NjNBNDA3NzQxMUVGQUIzM0ExMzIwMTcwMDFCMS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAms7TMA0GCSqGSIb3DQEB
CwUAA4IBAQB8l0b4qrjQ1niwcQHmCV2efz58fC607PZO5kWCAY2a+5yp3UmMGd+o
khBKvqsMWAVJSzMehoB1oD0ZvW6V7W2bnlXHeunDzXfoxhWXkopYwMfFCKFuK0/+
c7+50+THRNmy80KaiqpdvBdRVQhtSoYBKpQ2J1nopSIZMNh15P+5IzOsubJxx2Wq
TiWwzsLjSBwPF/WFJUua3Pjfgo+BYIwUVRj62fqB/OUfspCqlMPFGYYdO1tpO9JD
83HUwBUUeENoRzSbWGEB5bqeCpY59MlgW5Q+l123RmLwqBsEk3Yuxl3jq6BqSL2Z
fy46DptslHLTsVZZwab88Oi2IonNtxzJ
-----END CERTIFICATE-----
Generated at Sun May 12 01:39:49 2024 by rpki-client on console-fra.rpki-client.org