Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0012E1361A3A11EE8D4EBC0F4AD9E6FC.roa
File: 0012E1361A3A11EE8D4EBC0F4AD9E6FC.roa (raw, json)
Hash identifier: s0IdNoAbsNodaU9MdazQxyS1I3goM1oTFwJLatBzLCY=
Subject key identifier: D0:2D:D3:1D:3F:50:B4:3F:82:ED:3C:20:9F:43:82:54:36:25:3E:4F
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 3001
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0012E1361A3A11EE8D4EBC0F4AD9E6FC.roa
Signing time: Tue 04 Jul 2023 07:11:31 +0000
ROA not before: Tue 04 Jul 2023 07:11:27 +0000
ROA not after: Wed 24 Apr 2024 07:11:27 +0000
asID: 63888
IP address blocks: 154.205.43.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 12289 (0x3001)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jul 4 07:11:27 2023 GMT
Not After : Apr 24 07:11:27 2024 GMT
Subject: CN=64a3c623-5816
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:54:b8:40:02:bc:ae:3c:0b:b4:f7:fc:31:28:
1b:b2:d7:84:98:ba:ac:fb:89:6b:3e:5c:9d:41:ec:
16:f1:c3:f1:c3:50:52:6e:ee:68:be:40:c8:41:1a:
fb:09:f0:e6:2c:20:a0:fe:ae:e2:9b:02:99:5d:62:
f7:fa:97:b5:6c:64:61:58:67:16:b5:89:a0:54:28:
64:99:af:fb:44:67:ad:7c:b3:cc:4f:e0:13:28:9e:
69:cc:34:0d:06:9e:d6:16:ac:75:7d:1a:34:b6:06:
5f:9c:bc:84:4c:cd:b8:a6:6f:b7:dc:55:17:b4:63:
5a:0c:e1:2e:12:ee:62:0c:d7:6b:98:f9:b4:18:60:
5e:de:a5:d0:80:8d:8e:43:68:8a:2d:22:04:e9:fd:
e0:88:79:d1:57:35:69:ef:74:c9:80:2f:a7:02:67:
fd:67:2d:bd:61:55:36:fc:7c:c3:eb:4a:e3:29:9e:
ba:19:c0:77:a7:d3:6c:5e:bd:c8:1c:6f:03:91:4c:
7a:9b:98:53:6c:51:cb:c2:64:14:26:0f:e4:eb:3a:
c4:31:5e:17:04:dc:bb:87:a0:15:29:c9:89:a7:4c:
3a:71:05:0f:13:de:f7:10:53:2f:23:e1:51:48:b0:
d7:14:38:ba:4d:95:b6:c1:a7:67:ae:38:fc:ac:7c:
12:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:2D:D3:1D:3F:50:B4:3F:82:ED:3C:20:9F:43:82:54:36:25:3E:4F
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0012E1361A3A11EE8D4EBC0F4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.205.43.0/24
Signature Algorithm: sha256WithRSAEncryption
05:55:a8:d0:7d:75:dc:07:86:41:42:11:0b:8a:36:31:88:b6:
12:4b:7b:5e:c4:01:c5:03:75:18:d1:20:86:4d:2a:8a:f6:95:
a3:0a:1d:d8:b7:d0:eb:c6:38:cc:6c:8c:b4:67:8f:3b:d5:29:
f8:d4:05:ca:fa:42:3e:fd:47:31:3b:03:a0:e9:24:a0:5f:8e:
8e:95:c3:85:4c:d5:7e:22:4d:3d:9b:70:62:78:77:d6:cb:8d:
9d:c2:54:1e:ab:74:34:17:c8:55:77:32:7b:f8:4b:26:e3:e1:
be:37:a7:e1:e3:c8:d8:b6:cc:44:91:53:a7:74:2c:8c:98:02:
e7:19:c5:af:cc:23:16:08:38:fe:21:aa:a2:56:4b:9e:8d:b9:
88:cd:bc:9b:2f:7b:69:51:06:c6:6f:e9:50:92:a6:6a:93:e5:
de:7a:a6:ed:04:99:54:b6:ef:ad:79:4e:90:2d:1c:33:95:3c:
e2:4a:30:e2:60:70:7f:e8:88:a5:7f:35:df:2e:43:22:c7:0d:
90:22:38:26:5a:1d:7f:91:2b:da:14:ee:b1:8a:aa:85:2a:e8:
b4:f8:1c:48:2d:52:3a:ed:b7:0d:3f:92:56:d0:d3:97:89:b8:
06:ab:0d:02:ae:d2:c1:7c:48:e6:cc:35:56:71:93:c1:cc:2f:
e7:ba:80:f5
-----BEGIN CERTIFICATE-----
MIIFgzCCBGugAwIBAgICMAEwDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAwwKRjM2
OEYyRDBBRjExMC8GA1UEBRMoMjVENjNFMDhFQUJFN0NGQTY3ODVENEMxRDZEMzQx
MTZERTE1QjNEQzAeFw0yMzA3MDQwNzExMjdaFw0yNDA0MjQwNzExMjdaMBgxFjAU
BgNVBAMTDTY0YTNjNjIzLTU4MTYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQC3VLhAAryuPAu09/wxKBuy14SYuqz7iWs+XJ1B7Bbxw/HDUFJu7mi+QMhB
GvsJ8OYsIKD+ruKbApldYvf6l7VsZGFYZxa1iaBUKGSZr/tEZ618s8xP4BMonmnM
NA0GntYWrHV9GjS2Bl+cvIRMzbimb7fcVRe0Y1oM4S4S7mIM12uY+bQYYF7epdCA
jY5DaIotIgTp/eCIedFXNWnvdMmAL6cCZ/1nLb1hVTb8fMPrSuMpnroZwHen02xe
vcgcbwORTHqbmFNsUcvCZBQmD+TrOsQxXhcE3LuHoBUpyYmnTDpxBQ8T3vcQUy8j
4VFIsNcUOLpNlbbBp2euOPysfBIFAgMBAAGjggKlMIICoTAdBgNVHQ4EFgQU0C3T
HT9QtD+C7Twgn0OCVDYlPk8wHwYDVR0jBBgwFoAUJdY+COq+fPpnhdTB1tNBFt4V
s9wwDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjhGMkQwLzdGNEE5OEVBNkUwNTExRTg5QzBENkU0QkY4QUVBMjI4L0pkWS1D
T3EtZlBwbmhkVEIxdE5CRnQ0VnM5dy5jcmwwZwYIKwYBBQUHAQEEWzBZMFcGCCsG
AQUFBzAChktyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hZnJp
bmljL0pkWS1DT3EtZlBwbmhkVEIxdE5CRnQ0VnM5dy5jZXIwTwYDVR0gAQH/BEUw
QzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5p
Yy5uZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEF
BQcwC4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJl
cl9yZXBvc2l0b3J5L0YzNjhGMkQwLzdGNEE5OEVBNkUwNTExRTg5QzBENkU0QkY4
QUVBMjI4LzAwMTJFMTM2MUEzQTExRUU4RDRFQkMwRjRBRDlFNkZDLnJvYTA1Bggr
BgEFBQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54
bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBACazSswDQYJKoZIhvcNAQEL
BQADggEBAAVVqNB9ddwHhkFCEQuKNjGIthJLe17EAcUDdRjRIIZNKor2laMKHdi3
0OvGOMxsjLRnjzvVKfjUBcr6Qj79RzE7A6DpJKBfjo6Vw4VM1X4iTT2bcGJ4d9bL
jZ3CVB6rdDQXyFV3Mnv4Sybj4b43p+HjyNi2zESRU6d0LIyYAucZxa/MIxYIOP4h
qqJWS56NuYjNvJsve2lRBsZv6VCSpmqT5d56pu0EmVS27615TpAtHDOVPOJKMOJg
cH/oiKV/Nd8uQyLHDZAiOCZaHX+RK9oU7rGKqoUq6LT4HEgtUjrttw0/klbQ05eJ
uAarDQKu0sF8SObMNVZxk8HML+e6gPU=
-----END CERTIFICATE-----
Generated at Wed Apr 24 12:34:43 2024 by rpki-client on console-ams.rpki-client.org