Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F20320AA08FF11EFBDDDA846017001B1.roa
File: F20320AA08FF11EFBDDDA846017001B1.roa (raw, json)
Hash identifier: dfNEbYQfvKxwXIdMufhICnxUPZ7y0RgnchrAteZ/rCE=
Subject key identifier: C2:E7:40:3A:73:1A:B6:B2:75:09:2D:63:EB:B9:87:9D:0F:F1:8B:A9
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: B419
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F20320AA08FF11EFBDDDA846017001B1.roa
Signing time: Fri 03 May 2024 03:48:04 +0000
ROA not before: Fri 03 May 2024 03:48:01 +0000
ROA not after: Sat 11 May 2024 03:48:01 +0000
asID: 39600
IP address blocks: 154.90.16.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 46105 (0xb419)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 3 03:48:01 2024 GMT
Not After : May 11 03:48:01 2024 GMT
Subject: CN=66345e74-d3b0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:42:c1:94:3b:0f:89:be:51:ec:ff:ad:2b:e0:
9f:75:e5:54:62:77:bc:1f:4a:e7:37:7e:2e:0a:2b:
13:8b:6c:9f:8f:e9:2f:99:ce:05:97:9a:8a:d0:4e:
1d:cc:b4:0b:16:e4:8f:b8:82:67:fe:ec:83:f4:fe:
cc:6a:0a:39:a7:c9:13:24:db:44:26:86:0b:7f:4a:
38:c9:b5:67:d7:70:e8:40:b3:e1:98:9a:a1:53:1f:
e5:3e:b9:d8:cd:66:11:87:02:1f:ff:0f:f3:84:f7:
10:b2:ce:1a:94:18:69:73:94:c9:c2:84:e4:3b:d6:
36:73:5e:34:3d:d2:cb:05:4b:4f:e2:e7:7d:b1:a0:
8c:fa:7d:0e:cb:61:89:93:76:47:83:85:a4:89:b5:
03:d1:cb:02:ee:76:80:58:d0:b4:e6:03:28:39:83:
eb:34:03:f1:9c:fd:93:8a:ad:e2:74:40:1a:43:e8:
55:08:d8:6d:27:b9:ca:ec:02:2c:ce:23:0b:0a:e8:
55:b9:0f:a6:e4:0a:d2:a9:a4:b7:c8:cb:a6:e4:d7:
01:9c:35:3b:b0:ce:69:cc:13:6c:6c:b2:b2:30:66:
a1:7b:5b:b5:28:f5:b0:68:b3:fd:7b:4a:99:24:9d:
3f:91:43:48:34:ac:eb:40:93:19:26:4c:43:00:04:
fd:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:E7:40:3A:73:1A:B6:B2:75:09:2D:63:EB:B9:87:9D:0F:F1:8B:A9
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F20320AA08FF11EFBDDDA846017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.90.16.0/21
Signature Algorithm: sha256WithRSAEncryption
77:80:88:44:4a:78:ff:fc:09:94:fc:8b:54:52:fd:fe:1d:32:
42:9f:87:43:b7:2f:e8:59:7c:d4:c4:2f:8c:c5:ca:da:a8:7f:
7a:b0:26:0d:6d:93:df:2e:7f:63:d7:0e:3a:30:14:42:3d:e5:
55:15:ca:4a:d2:07:9e:98:58:5f:59:f5:bf:a0:f5:51:04:bb:
0e:bf:df:ee:04:2d:20:3d:21:86:bf:b9:29:ac:82:0f:b6:b6:
9c:23:4a:3c:c1:3f:80:03:f6:12:1b:69:92:d7:93:79:3c:22:
1f:fa:7e:48:3f:06:8a:08:40:fd:cd:11:23:9b:6f:8b:5e:1f:
7f:b4:81:3e:1a:3d:38:ad:64:b0:55:ee:01:b5:e6:74:96:30:
c9:dc:d8:55:a9:1f:ba:e0:5d:95:a5:6e:f4:ab:4b:7a:97:17:
ba:0f:4b:1d:a3:fd:5a:f3:c8:ad:5f:96:dc:09:48:93:5b:26:
6b:bc:cb:88:a3:3c:bf:43:33:af:b2:66:cd:6d:68:13:84:f3:
25:7a:13:1d:5d:08:18:8b:40:35:15:d0:18:35:2e:95:af:36:
6f:1a:9c:c2:b7:01:51:cc:bb:f9:0c:7e:ab:4f:ff:05:23:e1:
81:be:8d:8b:a6:2b:46:26:dd:97:bc:da:cd:63:ac:c0:a3:f1:
48:39:5e:26
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDALQZMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQwNTAzMDM0ODAxWhcNMjQwNTExMDM0ODAxWjAYMRYw
FAYDVQQDEw02NjM0NWU3NC1kM2IwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAmkLBlDsPib5R7P+tK+CfdeVUYne8H0rnN34uCisTi2yfj+kvmc4Fl5qK
0E4dzLQLFuSPuIJn/uyD9P7Mago5p8kTJNtEJoYLf0o4ybVn13DoQLPhmJqhUx/l
PrnYzWYRhwIf/w/zhPcQss4alBhpc5TJwoTkO9Y2c140PdLLBUtP4ud9saCM+n0O
y2GJk3ZHg4WkibUD0csC7naAWNC05gMoOYPrNAPxnP2Tiq3idEAaQ+hVCNhtJ7nK
7AIsziMLCuhVuQ+m5ArSqaS3yMum5NcBnDU7sM5pzBNsbLKyMGahe1u1KPWwaLP9
e0qZJJ0/kUNINKzrQJMZJkxDAAT9awIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFMLn
QDpzGraydQktY+u5h50P8YupMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC9GMjAzMjBBQTA4RkYxMUVGQkREREE4NDYwMTcwMDFCMS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQDmloQMA0GCSqGSIb3DQEB
CwUAA4IBAQB3gIhESnj//AmU/ItUUv3+HTJCn4dDty/oWXzUxC+MxcraqH96sCYN
bZPfLn9j1w46MBRCPeVVFcpK0geemFhfWfW/oPVRBLsOv9/uBC0gPSGGv7kprIIP
tracI0o8wT+AA/YSG2mS15N5PCIf+n5IPwaKCED9zREjm2+LXh9/tIE+Gj04rWSw
Ve4BteZ0ljDJ3NhVqR+64F2VpW70q0t6lxe6D0sdo/1a88itX5bcCUiTWyZrvMuI
ozy/QzOvsmbNbWgThPMlehMdXQgYi0A1FdAYNS6VrzZvGpzCtwFRzLv5DH6rT/8F
I+GBvo2LpitGJt2XvNrNY6zAo/FIOV4m
-----END CERTIFICATE-----
Generated at Sun May 12 02:36:22 2024 by rpki-client on console-ams.rpki-client.org