Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/EB480E20014211EF8837C029017001B1.roa
File: EB480E20014211EF8837C029017001B1.roa (raw, json)
Hash identifier: Gae7AtXaWD0p69/0fV9ZtQJpWbuneTad9j1zajQEbQM=
Subject key identifier: DC:7D:0E:C3:E3:DF:07:36:1F:FA:B1:4F:80:E0:80:F1:56:ED:57:6F
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: AEDD
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/EB480E20014211EF8837C029017001B1.roa
Signing time: Tue 23 Apr 2024 07:27:20 +0000
ROA not before: Tue 23 Apr 2024 07:27:16 +0000
ROA not after: Sat 18 May 2024 07:27:16 +0000
asID: 62864
IP address blocks: 154.194.32.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 44765 (0xaedd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 23 07:27:16 2024 GMT
Not After : May 18 07:27:16 2024 GMT
Subject: CN=662762d8-0e62
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:3b:4f:75:1a:1d:6c:1a:06:75:55:ff:44:24:
6b:ea:11:a1:a4:ce:dd:ee:22:fe:b7:ce:4f:04:aa:
3f:c9:c8:db:5d:13:11:5b:8c:5d:b7:7f:b1:06:3e:
cd:d0:be:43:a9:6c:04:9e:e5:0b:b7:7d:bf:09:a1:
ca:61:2e:03:fd:63:50:58:ee:33:5e:c7:2e:b7:87:
6d:a0:28:01:ce:56:42:26:c6:20:34:8c:77:ae:6a:
3b:bf:ed:de:a1:e7:61:ad:77:c8:a7:50:14:66:f0:
25:3e:20:b1:96:4a:f6:aa:ad:b9:d5:75:79:1a:a2:
22:d4:66:3c:12:cf:b1:f4:cc:23:d6:c6:e3:f4:ea:
8a:b0:f1:a4:9d:37:8b:e2:18:c5:2f:0f:31:01:a3:
6e:99:e2:61:45:a8:30:7c:58:aa:3f:df:56:35:fc:
7c:ec:f6:92:c3:9b:0b:f9:f2:25:63:d6:3d:17:15:
bf:00:0a:eb:9c:9d:9d:51:c2:92:e1:28:3f:90:5e:
99:78:d3:88:37:9a:d9:8f:f6:f6:40:0e:b3:77:57:
55:3a:5d:00:c3:3d:f1:14:e6:a9:37:fd:41:73:87:
73:a8:aa:bc:d0:d7:42:10:ee:f1:62:c8:bb:07:96:
65:1b:0b:6f:9a:0f:bb:53:7b:1a:7d:52:f9:28:3d:
66:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:7D:0E:C3:E3:DF:07:36:1F:FA:B1:4F:80:E0:80:F1:56:ED:57:6F
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/EB480E20014211EF8837C029017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.194.32.0/24
Signature Algorithm: sha256WithRSAEncryption
83:6a:8f:bf:21:7d:3b:10:74:ad:82:41:64:a0:e9:d8:fa:0b:
fb:c0:95:3b:98:aa:1c:2a:bb:63:46:8e:eb:7b:4d:5b:37:45:
78:26:0e:4f:95:87:aa:16:e7:19:64:f4:5e:c1:b5:0e:31:6b:
48:0e:eb:22:75:a6:98:09:fc:fe:17:4a:b2:bf:e8:63:d6:30:
a4:2c:ff:21:73:50:ed:22:4b:19:14:ad:be:f4:0c:2f:3e:6b:
cd:66:91:68:b1:cd:91:b6:15:de:6d:44:21:ea:26:cb:66:9d:
af:89:84:fd:10:7f:d8:1c:92:3e:6f:e6:60:89:f9:9b:ec:8a:
a0:2b:3b:17:47:6d:ff:f3:a7:10:e7:56:fb:ed:3d:e9:1a:b9:
65:63:a7:73:22:0d:c2:8d:ce:61:9d:1d:c6:ab:86:01:ed:f6:
45:c7:07:f2:5b:70:0c:01:9c:0c:6f:bd:2f:16:9e:62:e7:4d:
dc:f4:76:89:5e:a9:f7:8a:7f:f0:2f:43:71:6e:b3:81:da:79:
b2:74:57:7a:8e:0f:3e:59:d7:c0:d0:e9:f6:2f:c4:fe:f2:e4:
51:2f:5c:d3:29:ab:22:00:00:33:73:11:d0:9b:0d:71:12:d2:
dd:88:59:ed:66:7b:55:21:27:dd:28:ec:4f:1b:a9:03:43:43:
d6:40:e9:83
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAK7dMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQwNDIzMDcyNzE2WhcNMjQwNTE4MDcyNzE2WjAYMRYw
FAYDVQQDEw02NjI3NjJkOC0wZTYyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEA6jtPdRodbBoGdVX/RCRr6hGhpM7d7iL+t85PBKo/ycjbXRMRW4xdt3+x
Bj7N0L5DqWwEnuULt32/CaHKYS4D/WNQWO4zXscut4dtoCgBzlZCJsYgNIx3rmo7
v+3eoedhrXfIp1AUZvAlPiCxlkr2qq251XV5GqIi1GY8Es+x9Mwj1sbj9OqKsPGk
nTeL4hjFLw8xAaNumeJhRagwfFiqP99WNfx87PaSw5sL+fIlY9Y9FxW/AArrnJ2d
UcKS4Sg/kF6ZeNOIN5rZj/b2QA6zd1dVOl0Awz3xFOapN/1Bc4dzqKq80NdCEO7x
Ysi7B5ZlGwtvmg+7U3safVL5KD1mPwIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFNx9
DsPj3wc2H/qxT4DggPFW7VdvMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC9FQjQ4MEUyMDAxNDIxMUVGODgzN0MwMjkwMTcwMDFCMS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmsIgMA0GCSqGSIb3DQEB
CwUAA4IBAQCDao+/IX07EHStgkFkoOnY+gv7wJU7mKocKrtjRo7re01bN0V4Jg5P
lYeqFucZZPRewbUOMWtIDusidaaYCfz+F0qyv+hj1jCkLP8hc1DtIksZFK2+9Awv
PmvNZpFosc2RthXebUQh6ibLZp2viYT9EH/YHJI+b+Zgifmb7IqgKzsXR23/86cQ
51b77T3pGrllY6dzIg3Cjc5hnR3Gq4YB7fZFxwfyW3AMAZwMb70vFp5i503c9HaJ
Xqn3in/wL0NxbrOB2nmydFd6jg8+WdfA0On2L8T+8uRRL1zTKasiAAAzcxHQmw1x
EtLdiFntZntVISfdKOxPG6kDQ0PWQOmD
-----END CERTIFICATE-----
Generated at Sun May 19 02:08:29 2024 by rpki-client on console-ams.rpki-client.org