Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0643167EA44411EC890BF2CD5A40D577.roa
File: 0643167EA44411EC890BF2CD5A40D577.roa (raw, json)
Hash identifier: 1I9NlbxhmMhRVmjowx0ctXcXkjug5Er61BM0ORLGRkQ=
Subject key identifier: BC:33:3A:E1:65:69:25:D1:4A:96:32:EA:00:43:E2:73:D2:FB:EC:26
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 1536
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0643167EA44411EC890BF2CD5A40D577.roa
Signing time: Tue 15 Mar 2022 09:41:01 +0000
ROA not before: Tue 15 Mar 2022 09:40:58 +0000
ROA not after: Sat 31 Dec 2022 09:40:58 +0000
asID: 135097
IP address blocks: 154.205.32.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5430 (0x1536)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 15 09:40:58 2022 GMT
Not After : Dec 31 09:40:58 2022 GMT
Subject: CN=62305f2d-dcff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:51:e4:0d:e6:da:6c:3c:ae:fc:37:b9:da:1c:
6d:77:1d:87:82:ee:d5:45:80:75:9d:22:46:d6:55:
ca:b0:89:2c:38:8c:fb:c3:46:89:23:c2:db:32:94:
af:eb:93:09:75:22:cf:ad:48:c2:bf:c6:98:d2:0a:
e0:c2:f8:11:bb:9c:07:43:6d:25:61:5e:97:43:43:
e1:ac:b1:9c:e1:f0:e5:e1:18:29:0f:56:12:24:a5:
6b:d2:f5:a3:50:f8:58:2f:02:02:41:d5:21:a4:a8:
40:69:ce:e8:49:63:b7:26:0d:42:88:94:08:6f:ad:
38:15:aa:3b:64:05:ae:ef:1a:95:d2:b3:de:07:d5:
b5:23:33:ff:f3:22:de:89:80:30:91:0b:8b:26:b3:
d7:bc:44:4f:11:32:73:ad:b0:02:a8:bf:bf:d9:ea:
1c:59:23:ee:16:17:7a:cd:9a:3d:de:39:4f:c1:4e:
1c:d7:c1:b2:c1:7f:68:6f:1e:b5:e8:93:87:cc:a3:
4b:06:b2:af:af:38:0d:d6:64:30:02:16:6a:2a:fd:
87:00:3b:55:ff:16:d0:14:71:11:a3:37:58:18:47:
1d:ce:7e:bd:f5:9b:0e:9a:c6:92:68:99:b7:cd:97:
8f:e0:6c:df:01:e9:2d:cf:bb:25:53:f2:26:51:4e:
26:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:33:3A:E1:65:69:25:D1:4A:96:32:EA:00:43:E2:73:D2:FB:EC:26
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0643167EA44411EC890BF2CD5A40D577.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.205.32.0/21
Signature Algorithm: sha256WithRSAEncryption
0c:a2:ee:74:bf:75:b9:2c:fa:a4:49:3d:2f:06:77:2a:7b:e3:
27:66:8a:21:47:95:2c:a0:ba:dc:e6:97:e1:25:f8:43:0a:30:
7c:b8:27:44:87:4a:69:05:9c:ca:30:23:e3:47:31:0c:86:12:
49:08:b1:f4:2f:97:29:d4:3d:7b:d3:a0:8b:b3:8b:8a:61:e1:
48:25:bf:21:4d:1d:da:1c:0f:1f:fa:b7:d4:bc:02:6d:f2:5d:
da:25:5d:b6:6f:8d:00:77:3a:2d:92:e8:28:52:9e:13:d4:b2:
76:f6:c0:70:54:43:c0:7c:d1:eb:5c:84:1e:16:11:84:79:51:
dc:de:0e:a0:67:80:1a:77:c8:c7:71:66:8e:42:c7:e6:71:9f:
47:d2:51:06:58:58:83:52:80:f1:db:80:51:a2:2d:85:e3:b1:
14:73:41:08:c7:97:cb:49:c4:c3:9a:9c:a3:c0:fb:d4:31:6b:
ac:67:f6:79:de:35:19:9e:dd:f5:e8:d5:4e:3c:7f:51:49:ae:
f4:bc:ca:8e:e8:d8:26:bb:ba:cc:05:36:39:e6:7a:ac:16:bc:
ab:58:80:02:de:e9:0d:f0:0b:7b:cc:21:d1:fd:e1:5c:46:77:
f2:ed:aa:3c:aa:fe:96:d4:03:95:55:d4:3c:7a:ae:55:aa:87:
34:12:9c:11
-----BEGIN CERTIFICATE-----
MIIFgzCCBGugAwIBAgICFTYwDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAwwKRjM2
OEYyRDBBRjExMC8GA1UEBRMoMjVENjNFMDhFQUJFN0NGQTY3ODVENEMxRDZEMzQx
MTZERTE1QjNEQzAeFw0yMjAzMTUwOTQwNThaFw0yMjEyMzEwOTQwNThaMBgxFjAU
BgNVBAMMDTYyMzA1ZjJkLWRjZmYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQDYUeQN5tpsPK78N7naHG13HYeC7tVFgHWdIkbWVcqwiSw4jPvDRokjwtsy
lK/rkwl1Is+tSMK/xpjSCuDC+BG7nAdDbSVhXpdDQ+GssZzh8OXhGCkPVhIkpWvS
9aNQ+FgvAgJB1SGkqEBpzuhJY7cmDUKIlAhvrTgVqjtkBa7vGpXSs94H1bUjM//z
It6JgDCRC4sms9e8RE8RMnOtsAKov7/Z6hxZI+4WF3rNmj3eOU/BThzXwbLBf2hv
HrXok4fMo0sGsq+vOA3WZDACFmoq/YcAO1X/FtAUcRGjN1gYRx3Ofr31mw6axpJo
mbfNl4/gbN8B6S3PuyVT8iZRTiYHAgMBAAGjggKlMIICoTAdBgNVHQ4EFgQUvDM6
4WVpJdFKljLqAEPic9L77CYwHwYDVR0jBBgwFoAUJdY+COq+fPpnhdTB1tNBFt4V
s9wwDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjhGMkQwLzdGNEE5OEVBNkUwNTExRTg5QzBENkU0QkY4QUVBMjI4L0pkWS1D
T3EtZlBwbmhkVEIxdE5CRnQ0VnM5dy5jcmwwZwYIKwYBBQUHAQEEWzBZMFcGCCsG
AQUFBzAChktyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hZnJp
bmljL0pkWS1DT3EtZlBwbmhkVEIxdE5CRnQ0VnM5dy5jZXIwTwYDVR0gAQH/BEUw
QzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5p
Yy5uZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEF
BQcwC4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJl
cl9yZXBvc2l0b3J5L0YzNjhGMkQwLzdGNEE5OEVBNkUwNTExRTg5QzBENkU0QkY4
QUVBMjI4LzA2NDMxNjdFQTQ0NDExRUM4OTBCRjJDRDVBNDBENTc3LnJvYTA1Bggr
BgEFBQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54
bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAOazSAwDQYJKoZIhvcNAQEL
BQADggEBAAyi7nS/dbks+qRJPS8Gdyp74ydmiiFHlSygutzml+El+EMKMHy4J0SH
SmkFnMowI+NHMQyGEkkIsfQvlynUPXvToIuzi4ph4UglvyFNHdocDx/6t9S8Am3y
XdolXbZvjQB3Oi2S6ChSnhPUsnb2wHBUQ8B80etchB4WEYR5UdzeDqBngBp3yMdx
Zo5Cx+Zxn0fSUQZYWINSgPHbgFGiLYXjsRRzQQjHl8tJxMOanKPA+9Qxa6xn9nne
NRme3fXo1U48f1FJrvS8yo7o2Ca7uswFNjnmeqwWvKtYgALe6Q3wC3vMIdH94VxG
d/Ltqjyq/pbUA5VV1Dx6rlWqhzQSnBE=
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:22:04 2023 by rpki-client on console-ams.rpki-client.org