Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E7B58510CCB011EEB8373870775412E6.roa
File: E7B58510CCB011EEB8373870775412E6.roa (raw, json)
Hash identifier: XxokFByWvMuXM7j+v7JeltPeVzrczQ4buhndqj/viF4=
Subject key identifier: 3F:16:D8:90:CB:5A:60:D8:5D:65:B2:85:65:90:17:AB:04:57:C5:00
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 8A99
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E7B58510CCB011EEB8373870775412E6.roa
Signing time: Fri 16 Feb 2024 09:51:07 +0000
ROA not before: Fri 16 Feb 2024 09:51:04 +0000
ROA not after: Fri 26 Apr 2024 09:51:04 +0000
asID: 9009
IP address blocks: 154.218.228.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 35481 (0x8a99)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Feb 16 09:51:04 2024 GMT
Not After : Apr 26 09:51:04 2024 GMT
Subject: CN=65cf300b-bcc1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:3c:ca:3a:36:fe:3e:24:fe:ac:d6:4f:85:12:
b2:d3:2b:4e:92:97:32:28:0b:83:c2:27:b4:71:f4:
8c:45:28:12:f5:18:e2:47:a7:1e:3d:87:ca:a1:17:
7a:2d:e7:34:37:79:9a:5c:0f:32:51:90:ba:89:b1:
39:b0:1f:d7:45:dd:fe:1a:79:e4:ba:a1:1a:ed:6a:
28:7b:65:b7:a5:51:72:37:e4:e0:84:25:98:16:40:
4f:37:15:cf:db:e8:08:c8:96:0f:45:f9:81:5b:8b:
ad:ac:fd:25:d4:89:62:ed:28:68:6e:bd:8d:3a:66:
53:c5:be:35:4a:9d:f1:c8:68:1e:e5:68:5b:d7:8d:
0b:a0:00:e1:7d:61:10:cc:4e:b1:cf:7f:5f:b2:73:
54:98:24:4a:de:4f:02:87:0e:2c:6e:53:01:d0:76:
6a:98:9b:bc:60:10:15:c4:01:2f:04:dc:c7:fe:42:
08:af:a7:c4:3b:59:db:78:23:8c:d0:e6:13:52:01:
6a:e4:d2:32:fc:9d:e9:66:89:2a:62:8c:28:29:08:
2f:18:3f:c5:82:77:0b:69:76:fa:99:6c:ab:33:af:
bd:dc:75:3b:1e:62:80:d7:b9:02:e1:8d:a2:c8:ab:
21:b5:b3:2b:b4:0c:3a:9a:56:42:84:0a:01:cc:95:
81:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:16:D8:90:CB:5A:60:D8:5D:65:B2:85:65:90:17:AB:04:57:C5:00
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E7B58510CCB011EEB8373870775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.218.228.0/24
Signature Algorithm: sha256WithRSAEncryption
60:be:ae:10:92:e6:64:9c:6e:91:14:58:c0:f3:22:0b:9e:40:
11:71:05:29:f3:2b:e5:d7:fc:fe:a2:77:68:db:e0:23:6e:0f:
2e:d9:6b:18:36:5f:cc:c7:16:bf:a1:1c:1f:8c:7c:4f:18:89:
cf:e8:53:a0:d2:25:b7:0c:3f:d3:13:24:c8:d8:dd:be:ec:26:
6b:c7:f2:31:b5:d4:7a:97:38:f5:70:f1:b4:63:a0:59:83:32:
13:d8:28:2e:eb:b6:a0:0f:f0:42:3d:d8:8d:3f:be:1e:fb:f7:
e6:08:3f:09:db:2b:c2:0f:8f:58:01:85:52:50:83:6d:ba:8f:
bf:6d:bd:7c:83:5c:8e:86:e4:15:b9:f9:b9:57:cb:8f:5c:ce:
2c:5c:08:4b:b6:7d:e9:0a:15:35:8c:bb:1e:d6:54:49:97:5f:
7f:b0:94:dc:33:8d:cf:5d:b6:a0:66:5f:2f:f7:67:bf:89:fb:
ae:30:3d:66:ae:0b:96:78:98:9e:3b:62:04:ce:31:34:a1:9c:
23:09:af:da:ab:64:64:60:ee:c2:79:ef:9a:f0:71:2a:5b:1c:
53:72:c3:74:b0:93:3f:07:b5:19:10:b3:2a:a5:da:b5:2e:63:
19:9b:71:66:2e:43:e2:49:c5:5d:7f:e0:80:37:e3:98:80:c0:
20:3e:b4:6d
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAIqZMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQwMjE2MDk1MTA0WhcNMjQwNDI2MDk1MTA0WjAYMRYw
FAYDVQQDEw02NWNmMzAwYi1iY2MxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAvjzKOjb+PiT+rNZPhRKy0ytOkpcyKAuDwie0cfSMRSgS9RjiR6cePYfK
oRd6Lec0N3maXA8yUZC6ibE5sB/XRd3+GnnkuqEa7Wooe2W3pVFyN+TghCWYFkBP
NxXP2+gIyJYPRfmBW4utrP0l1Ili7Shobr2NOmZTxb41Sp3xyGge5Whb140LoADh
fWEQzE6xz39fsnNUmCRK3k8Chw4sblMB0HZqmJu8YBAVxAEvBNzH/kIIr6fEO1nb
eCOM0OYTUgFq5NIy/J3pZokqYowoKQgvGD/FgncLaXb6mWyrM6+93HU7HmKA17kC
4Y2iyKshtbMrtAw6mlZChAoBzJWBvwIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFD8W
2JDLWmDYXWWyhWWQF6sEV8UAMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC9FN0I1ODUxMENDQjAxMUVFQjgzNzM4NzA3NzU0MTJFNi5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmtrkMA0GCSqGSIb3DQEB
CwUAA4IBAQBgvq4QkuZknG6RFFjA8yILnkARcQUp8yvl1/z+ondo2+Ajbg8u2WsY
Nl/Mxxa/oRwfjHxPGInP6FOg0iW3DD/TEyTI2N2+7CZrx/IxtdR6lzj1cPG0Y6BZ
gzIT2Cgu67agD/BCPdiNP74e+/fmCD8J2yvCD49YAYVSUINtuo+/bb18g1yOhuQV
ufm5V8uPXM4sXAhLtn3pChU1jLse1lRJl19/sJTcM43PXbagZl8v92e/ifuuMD1m
rguWeJieO2IEzjE0oZwjCa/aq2RkYO7Cee+a8HEqWxxTcsN0sJM/B7UZELMqpdq1
LmMZm3FmLkPiScVdf+CAN+OYgMAgPrRt
-----END CERTIFICATE-----
Generated at Fri Apr 26 11:01:49 2024 by rpki-client on console-ams.rpki-client.org