Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/EEA92B0ECCB211EE8DA96073775412E6.roa
File: EEA92B0ECCB211EE8DA96073775412E6.roa (raw, json)
Hash identifier: O7yFIjhuuQdvDTVgIL88c1e++xZTKjprNy55pSb96Zg=
Subject key identifier: E8:9F:CD:5D:A8:ED:42:36:EC:2D:C5:1C:80:18:14:D2:0F:8B:DC:54
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 8AAD
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/EEA92B0ECCB211EE8DA96073775412E6.roa
Signing time: Fri 16 Feb 2024 10:05:38 +0000
ROA not before: Fri 16 Feb 2024 10:05:34 +0000
ROA not after: Fri 26 Apr 2024 10:05:34 +0000
asID: 9009
IP address blocks: 154.218.233.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 35501 (0x8aad)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Feb 16 10:05:34 2024 GMT
Not After : Apr 26 10:05:34 2024 GMT
Subject: CN=65cf3371-4fef
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:e1:8e:cd:be:04:26:39:4f:be:71:60:65:d7:
24:26:8f:ce:d9:3c:02:49:c4:f9:ea:c4:76:56:b4:
17:2f:37:0d:ac:66:86:3f:0f:be:ff:e8:94:4e:68:
84:5b:d5:e3:97:bb:7d:4a:f6:e4:33:68:ee:fb:95:
05:a3:9a:e7:3a:bd:84:6f:fa:50:37:80:36:49:1b:
a0:2c:69:6a:45:ca:52:b4:3d:e8:e7:61:e0:36:7e:
d8:61:99:8a:0a:92:35:5f:a7:7d:c0:c1:08:03:9d:
18:58:44:e9:3b:ab:ca:0c:d4:a8:70:a5:db:34:b5:
96:bc:86:e7:dc:50:56:79:78:67:09:31:a2:6a:be:
30:ce:3a:60:16:e5:57:7b:82:11:fb:ad:95:90:53:
24:b3:d5:d7:1d:2e:23:f2:79:53:6f:4e:ea:36:92:
d8:77:93:48:e4:d9:05:6a:ed:9c:36:e6:21:59:ce:
6a:ae:95:e3:05:24:1e:93:36:6d:96:c9:8a:79:6d:
88:c5:30:bc:5e:de:e6:20:c4:88:49:b9:ce:da:f8:
01:94:6e:24:02:7a:8b:a6:46:14:7c:f0:fb:3d:9e:
1d:8d:a1:2f:40:32:13:14:e2:8e:3c:e2:e2:76:5a:
ef:6f:2f:f6:61:12:f9:cd:0d:79:e2:eb:45:86:96:
a7:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:9F:CD:5D:A8:ED:42:36:EC:2D:C5:1C:80:18:14:D2:0F:8B:DC:54
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/EEA92B0ECCB211EE8DA96073775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.218.233.0/24
Signature Algorithm: sha256WithRSAEncryption
5f:08:cb:96:69:5f:49:fd:34:42:24:3d:53:b4:ed:d7:fd:19:
b2:e0:c2:ca:fe:ef:70:c9:28:17:8c:0a:8b:86:f3:64:bf:9c:
a0:8a:9b:21:d2:43:1c:43:36:47:be:26:fc:52:7e:5f:58:de:
5d:9d:a1:d4:95:a9:fa:93:f2:12:bd:04:3b:bf:7e:d2:5b:3f:
58:d9:97:13:5b:96:01:72:89:0e:f5:c7:79:60:ff:19:e7:3c:
7f:6d:a9:cd:02:b4:b8:84:63:54:8c:f4:2b:c2:6d:fe:1f:3e:
08:0d:1c:0e:48:7d:bd:12:f1:e2:ac:41:e8:f6:36:a5:f6:c6:
30:43:93:37:18:22:c4:d2:65:93:07:5e:72:f6:ee:85:58:13:
df:dd:f8:78:7f:2c:04:06:4f:a1:30:be:65:2c:1d:53:7d:b2:
8a:ea:73:8f:47:1a:fb:0b:b4:e0:ec:0a:21:90:62:0d:16:7f:
78:66:ab:bb:ec:e0:9a:f0:1f:d8:7d:1c:78:3e:60:fd:f4:c0:
b2:80:42:55:75:6e:95:14:08:ee:7c:37:fd:1f:95:60:4b:ef:
70:bc:24:ab:6c:83:48:5b:ab:ee:fe:d2:c5:05:15:71:9a:d4:
20:97:55:b3:50:8f:64:c8:07:93:f3:c9:9f:94:f2:9b:41:d5:
3d:a5:01:10
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAIqtMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQwMjE2MTAwNTM0WhcNMjQwNDI2MTAwNTM0WjAYMRYw
FAYDVQQDEw02NWNmMzM3MS00ZmVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAweGOzb4EJjlPvnFgZdckJo/O2TwCScT56sR2VrQXLzcNrGaGPw++/+iU
TmiEW9Xjl7t9SvbkM2ju+5UFo5rnOr2Eb/pQN4A2SRugLGlqRcpStD3o52HgNn7Y
YZmKCpI1X6d9wMEIA50YWETpO6vKDNSocKXbNLWWvIbn3FBWeXhnCTGiar4wzjpg
FuVXe4IR+62VkFMks9XXHS4j8nlTb07qNpLYd5NI5NkFau2cNuYhWc5qrpXjBSQe
kzZtlsmKeW2IxTC8Xt7mIMSISbnO2vgBlG4kAnqLpkYUfPD7PZ4djaEvQDITFOKO
POLidlrvby/2YRL5zQ154utFhpancQIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFOif
zV2o7UI27C3FHIAYFNIPi9xUMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC9FRUE5MkIwRUNDQjIxMUVFOERBOTYwNzM3NzU0MTJFNi5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmtrpMA0GCSqGSIb3DQEB
CwUAA4IBAQBfCMuWaV9J/TRCJD1TtO3X/Rmy4MLK/u9wySgXjAqLhvNkv5ygipsh
0kMcQzZHvib8Un5fWN5dnaHUlan6k/ISvQQ7v37SWz9Y2ZcTW5YBcokO9cd5YP8Z
5zx/banNArS4hGNUjPQrwm3+Hz4IDRwOSH29EvHirEHo9jal9sYwQ5M3GCLE0mWT
B15y9u6FWBPf3fh4fywEBk+hML5lLB1TfbKK6nOPRxr7C7Tg7AohkGINFn94Zqu7
7OCa8B/YfRx4PmD99MCygEJVdW6VFAjufDf9H5VgS+9wvCSrbINIW6vu/tLFBRVx
mtQgl1WzUI9kyAeT88mflPKbQdU9pQEQ
-----END CERTIFICATE-----
Generated at Fri Apr 26 11:01:50 2024 by rpki-client on console-ams.rpki-client.org