Route Origin Authorization

$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F367D0C5/29E381AEA48911ED81691E87F1222468/92664FEC4D4C11EEB593B73A4AD9E6FC.roa
File:                     92664FEC4D4C11EEB593B73A4AD9E6FC.roa (raw, json)
Hash identifier:          q1PLol8p2UDbnWWu9cPSZVKZGmoDjlNwPhYAfOkwXYk=
Subject key identifier:   A3:EB:D1:57:26:D6:76:8B:69:48:E1:1F:D5:7F:5D:51:2A:36:84:FB
Certificate issuer:       /CN=F367D0C5AF/serialNumber=569245EDF8EF53DD25E0095A12485B170F10EC3E
Certificate serial:       EE
Authority key identifier: 56:92:45:ED:F8:EF:53:DD:25:E0:09:5A:12:48:5B:17:0F:10:EC:3E
Authority info access:    rsync://rpki.afrinic.net/repository/afrinic/VpJF7fjvU90l4AlaEkhbFw8Q7D4.cer
Subject info access:      rsync://rpki.afrinic.net/repository/member_repository/F367D0C5/29E381AEA48911ED81691E87F1222468/92664FEC4D4C11EEB593B73A4AD9E6FC.roa
Signing time:             Thu 07 Sep 2023 07:02:56 +0000
ROA not before:           Thu 07 Sep 2023 07:02:53 +0000
ROA not after:            Sat 31 Aug 2024 07:02:53 +0000
asID:                     37284
IP address blocks:        154.127.64.0/20 maxlen: 24

Validation:               Failed, certificate has expired

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 238 (0xee)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=F367D0C5AF/serialNumber=569245EDF8EF53DD25E0095A12485B170F10EC3E
        Validity
            Not Before: Sep  7 07:02:53 2023 GMT
            Not After : Aug 31 07:02:53 2024 GMT
        Subject: CN=64f975a0-94a1
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:f2:42:3e:00:a6:63:21:77:ad:43:6e:34:56:f6:
                    21:f9:fa:63:88:8b:c3:ff:1a:ad:27:db:cc:68:ef:
                    5e:04:82:42:ec:1e:3b:42:25:d0:41:e9:df:f4:cf:
                    5d:80:4b:7c:05:85:df:22:12:a9:cf:ad:72:8f:c7:
                    db:a7:26:d6:82:ab:f1:58:15:e3:48:1d:2e:d7:71:
                    b5:2d:0a:b7:68:ba:09:dc:e8:98:90:8c:51:06:fc:
                    ac:b3:78:52:d7:99:e8:f3:0a:87:ce:03:92:18:dc:
                    54:9c:26:ef:b1:ef:4f:f3:4c:c4:c6:34:0a:67:f0:
                    0e:c1:5b:c7:be:88:76:c1:2e:bc:a4:22:3d:5a:c1:
                    de:72:7a:45:3f:b8:b1:24:b1:97:10:5b:98:a1:49:
                    9d:71:f5:cb:ca:8b:49:dc:a9:ed:70:b3:43:27:ee:
                    8f:e6:42:fa:28:b4:7b:8f:e5:6a:83:e1:67:f3:df:
                    94:6c:b5:37:cd:7b:b7:4d:88:33:ad:7a:6c:33:95:
                    6a:94:c4:b1:f1:0b:b1:8a:c1:90:71:ef:5a:d4:ac:
                    7a:67:16:b5:58:0b:bd:54:07:a1:27:e2:a1:75:b8:
                    80:82:b3:0a:af:ee:d6:71:92:75:47:ed:c3:58:7c:
                    48:63:b3:a5:ff:f7:a9:1d:b6:84:77:b8:b1:30:22:
                    1d:2f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                A3:EB:D1:57:26:D6:76:8B:69:48:E1:1F:D5:7F:5D:51:2A:36:84:FB
            X509v3 Authority Key Identifier:
                keyid:56:92:45:ED:F8:EF:53:DD:25:E0:09:5A:12:48:5B:17:0F:10:EC:3E

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.afrinic.net/repository/member_repository/F367D0C5/29E381AEA48911ED81691E87F1222468/VpJF7fjvU90l4AlaEkhbFw8Q7D4.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/VpJF7fjvU90l4AlaEkhbFw8Q7D4.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://rpki.afrinic.net/policy/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F367D0C5/29E381AEA48911ED81691E87F1222468/92664FEC4D4C11EEB593B73A4AD9E6FC.roa
                RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  154.127.64.0/20

    Signature Algorithm: sha256WithRSAEncryption
         0f:cf:20:fd:47:0e:af:7c:3a:15:40:05:a0:4a:b1:ad:c3:86:
         6c:23:8c:c2:91:a5:20:7e:e5:bd:5b:6c:60:7c:76:6a:e3:a5:
         11:a0:1d:ea:8f:d5:48:b4:7b:6f:1c:3e:df:a1:92:c9:8d:ac:
         64:f1:f3:b5:4d:89:a1:19:3d:a0:1d:a5:92:1b:21:e3:25:70:
         cd:3f:da:7e:71:20:25:9e:f5:97:d2:73:67:72:11:46:cc:56:
         43:01:f5:e4:92:7a:6a:b8:79:fb:d2:22:94:36:4e:38:a5:c0:
         fc:73:40:39:b6:c8:6b:d7:3b:07:38:df:88:fa:cd:18:64:59:
         69:fa:23:04:ea:39:ba:82:cc:41:8a:f9:4f:11:7e:05:6b:09:
         92:3e:93:be:1b:8d:ac:d5:fc:d9:6f:05:95:67:bd:a6:c6:eb:
         8c:87:a0:5f:c4:04:8f:6d:ba:55:f4:17:28:20:10:0c:81:91:
         81:14:90:a0:7a:c0:8f:54:78:e7:f9:9e:48:9f:16:3f:68:15:
         b3:b2:f4:e6:39:61:21:9b:a3:9c:e7:b4:eb:fc:38:f1:ef:1b:
         90:62:65:0a:85:75:93:0c:d9:22:1f:2a:6f:32:5e:57:59:9e:
         7c:6f:24:bd:72:ed:64:1b:df:4f:de:ea:b7:22:7e:b8:cd:a4:
         db:a6:33:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 1 03:47:14 2024 by rpki-client on console-fra.rpki-client.org