Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/B38FC24E999711EC8EBA0C715A40D577.roa
File: B38FC24E999711EC8EBA0C715A40D577.roa (raw, json)
Hash identifier: QHiNWNozjwyMpcyWpIrkHhzA82kUVIT28jHpgSDkhNg=
Subject key identifier: 87:07:6E:E4:64:5F:0F:30:F8:13:5D:2A:71:50:C3:8D:AE:73:35:CD
Certificate issuer: /CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Certificate serial: 07DD
Authority key identifier: 09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/B38FC24E999711EC8EBA0C715A40D577.roa
Signing time: Tue 01 Mar 2022 19:42:17 +0000
ROA not before: Tue 01 Mar 2022 19:42:13 +0000
ROA not after: Fri 01 Mar 2024 19:42:13 +0000
asID: 397423
IP address blocks: 154.16.137.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2013 (0x7dd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Validity
Not Before: Mar 1 19:42:13 2022 GMT
Not After : Mar 1 19:42:13 2024 GMT
Subject: CN=621e7719-a0e7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:40:1f:fa:a5:f4:71:06:50:90:52:7e:a8:53:
86:81:62:d1:ff:30:aa:cf:c9:a7:69:1d:d3:f7:fd:
c2:3d:cf:b4:2a:11:05:b1:f0:7b:55:c8:d9:27:4d:
b8:8a:c6:4d:ba:c8:c2:a6:e6:89:3b:f5:7f:52:a2:
ce:10:97:c8:e0:dd:52:ba:91:ae:51:e4:89:ca:cb:
fc:5a:33:d9:3d:c0:fc:80:99:6f:51:88:a5:54:2d:
78:a7:f4:42:ef:e6:15:cd:61:8e:fd:64:1c:25:08:
71:de:73:bb:d5:c0:49:5a:2b:5b:8e:54:32:86:7f:
4a:26:e6:01:6f:f4:c8:6c:44:9d:75:d2:e4:23:5d:
da:63:be:66:5b:69:15:a8:d1:ec:64:54:8b:08:b0:
13:75:2b:f5:3e:78:7d:63:aa:f1:f4:04:01:7b:2b:
62:e0:77:1d:b9:f1:ac:ad:8d:30:cb:3a:66:46:b2:
10:b7:51:1e:ce:c8:12:7d:90:e9:d9:8c:4d:ea:46:
fb:17:a0:3a:01:bd:fd:65:ff:6b:c5:fb:ad:16:b2:
ef:e2:4d:86:2e:43:7f:08:33:22:2a:f4:a7:88:a6:
f1:0d:34:78:27:3a:cf:18:02:c8:d0:66:d1:1d:39:
94:fc:5f:e7:e3:0b:4f:5e:e0:21:4b:d2:59:42:74:
76:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:07:6E:E4:64:5F:0F:30:F8:13:5D:2A:71:50:C3:8D:AE:73:35:CD
X509v3 Authority Key Identifier:
keyid:09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/B38FC24E999711EC8EBA0C715A40D577.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.16.137.0/24
Signature Algorithm: sha256WithRSAEncryption
74:ef:b7:e0:e9:a6:f2:bd:21:81:7b:9d:49:44:ca:b1:ec:7c:
55:a0:e3:88:8c:94:c3:db:a0:35:6a:56:0a:17:4b:3e:d1:06:
5c:51:39:1c:92:08:40:d1:02:c9:7d:b4:a2:f0:fc:73:bf:c0:
a7:95:f5:d7:9b:b9:29:6f:67:7a:1b:62:03:ee:9d:a3:56:ae:
32:22:7d:99:e9:49:fa:26:91:34:64:b4:a6:ef:bf:3f:5b:44:
ed:ef:f5:dc:29:97:19:23:66:26:52:6c:00:e5:fc:33:e1:85:
fb:90:0b:4b:ad:cf:d1:81:7d:4f:f5:2a:8d:d2:04:71:ad:4e:
83:6a:f3:f8:31:5f:f7:a7:79:e8:bb:eb:63:ff:03:e8:06:b7:
cc:4f:16:3e:84:55:c5:cb:2c:29:78:38:9a:cd:5c:0e:a3:0e:
76:69:46:ba:96:4e:4f:ef:8d:16:25:24:57:c9:06:b6:12:19:
52:cd:55:de:6e:e3:19:aa:cd:7f:b7:b8:b9:51:24:06:14:08:
ba:23:f2:ea:8f:9b:b9:6e:93:da:4e:d0:c2:1c:a1:a4:6e:a3:
71:0d:1f:cf:90:58:f2:58:e9:e2:78:62:75:2f:bc:69:8e:4f:
8b:8f:9e:ed:8d:7b:45:98:ce:cb:cd:eb:b5:1a:a0:08:ce:7b:
07:5f:fa:42
-----BEGIN CERTIFICATE-----
MIIFgzCCBGugAwIBAgICB90wDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAwwKRjM2
ODJCNjVBRjExMC8GA1UEBRMoMDk0MEU2MzgyODMzMzZERTVDOEM1QTQwQTRDMjNC
MzRGM0Y5Q0E1MzAeFw0yMjAzMDExOTQyMTNaFw0yNDAzMDExOTQyMTNaMBgxFjAU
BgNVBAMMDTYyMWU3NzE5LWEwZTcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQClQB/6pfRxBlCQUn6oU4aBYtH/MKrPyadpHdP3/cI9z7QqEQWx8HtVyNkn
TbiKxk26yMKm5ok79X9Sos4Ql8jg3VK6ka5R5InKy/xaM9k9wPyAmW9RiKVULXin
9ELv5hXNYY79ZBwlCHHec7vVwElaK1uOVDKGf0om5gFv9MhsRJ110uQjXdpjvmZb
aRWo0exkVIsIsBN1K/U+eH1jqvH0BAF7K2Lgdx258aytjTDLOmZGshC3UR7OyBJ9
kOnZjE3qRvsXoDoBvf1l/2vF+60Wsu/iTYYuQ38IMyIq9KeIpvENNHgnOs8YAsjQ
ZtEdOZT8X+fjC09e4CFL0llCdHaZAgMBAAGjggKlMIICoTAdBgNVHQ4EFgQUhwdu
5GRfDzD4E10qcVDDja5zNc0wHwYDVR0jBBgwFoAUCUDmOCgzNt5cjFpApMI7NPP5
ylMwDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjgyQjY1LzRFODUxRTM0REI1NTExRTg4NUIyOTk1MUY4QUVBMjI4L0NVRG1P
Q2d6TnQ1Y2pGcEFwTUk3TlBQNXlsTS5jcmwwZwYIKwYBBQUHAQEEWzBZMFcGCCsG
AQUFBzAChktyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hZnJp
bmljL0NVRG1PQ2d6TnQ1Y2pGcEFwTUk3TlBQNXlsTS5jZXIwTwYDVR0gAQH/BEUw
QzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5p
Yy5uZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEF
BQcwC4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJl
cl9yZXBvc2l0b3J5L0YzNjgyQjY1LzRFODUxRTM0REI1NTExRTg4NUIyOTk1MUY4
QUVBMjI4L0IzOEZDMjRFOTk5NzExRUM4RUJBMEM3MTVBNDBENTc3LnJvYTA1Bggr
BgEFBQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54
bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBACaEIkwDQYJKoZIhvcNAQEL
BQADggEBAHTvt+DppvK9IYF7nUlEyrHsfFWg44iMlMPboDVqVgoXSz7RBlxRORyS
CEDRAsl9tKLw/HO/wKeV9debuSlvZ3obYgPunaNWrjIifZnpSfomkTRktKbvvz9b
RO3v9dwplxkjZiZSbADl/DPhhfuQC0utz9GBfU/1Ko3SBHGtToNq8/gxX/eneei7
62P/A+gGt8xPFj6EVcXLLCl4OJrNXA6jDnZpRrqWTk/vjRYlJFfJBrYSGVLNVd5u
4xmqzX+3uLlRJAYUCLoj8uqPm7luk9pO0MIcoaRuo3ENH8+QWPJY6eJ4YnUvvGmO
T4uPnu2Ne0WYzsvN67UaoAjOewdf+kI=
-----END CERTIFICATE-----
Generated at Sat Mar 2 01:43:09 2024 by rpki-client on console-ams.rpki-client.org