Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/07E4D1D2E46D11EEB2526D4B775412E6.roa
File: 07E4D1D2E46D11EEB2526D4B775412E6.roa (raw, json)
Hash identifier: w81KMP5wW7LGR+6zK3Z2A7Ihq0qxdejn0Lxe/oeh4tI=
Subject key identifier: 16:F8:D9:98:94:F0:4D:E1:0E:62:18:0C:CA:E7:A2:A3:46:43:8A:1A
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A1F7
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/07E4D1D2E46D11EEB2526D4B775412E6.roa
Signing time: Sun 17 Mar 2024 14:45:43 +0000
ROA not before: Sun 17 Mar 2024 14:45:40 +0000
ROA not after: Tue 30 Apr 2024 14:45:40 +0000
asID: 63139
IP address blocks: 154.93.70.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 41463 (0xa1f7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 17 14:45:40 2024 GMT
Not After : Apr 30 14:45:40 2024 GMT
Subject: CN=65f70217-842b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:4e:b6:98:98:f9:14:e1:3a:fc:89:a2:f3:85:
76:92:62:96:da:41:38:d9:be:db:9c:df:54:d0:fe:
2e:6b:ea:c6:d1:55:4e:3a:33:7c:f8:bf:c7:b2:c8:
92:75:96:c3:30:77:81:ea:a3:41:c4:39:7b:33:85:
b7:6e:75:bb:77:e0:89:47:dd:1b:63:d3:41:95:9f:
e1:f9:03:d1:b7:7c:42:25:cd:c2:03:28:d3:7f:86:
2f:7d:6c:25:7f:b0:4d:6d:43:38:94:cb:d5:37:c4:
f4:2b:24:a1:78:fa:88:ea:d9:43:8a:94:dc:5b:86:
87:c4:aa:be:ea:03:3c:12:30:b5:04:7a:8d:4d:3b:
45:62:c4:0f:4c:8d:a9:75:2a:fc:26:85:6a:9c:37:
29:58:7d:ac:fd:3b:fd:bc:fc:c5:0d:b1:85:22:6a:
5d:ad:61:1f:ee:48:5b:99:2a:19:c0:e0:2a:82:51:
58:bd:0c:eb:6b:10:96:2a:54:e0:10:85:32:e0:ed:
b4:f3:ac:65:b0:3a:bf:4b:62:1c:6c:42:bf:0f:da:
7e:30:90:1d:96:b5:32:b5:08:41:a1:9c:98:94:a8:
6d:47:3b:7c:b5:f1:d8:c9:65:e0:e4:05:a2:6d:b2:
b1:e8:c0:f4:9b:45:90:c6:1d:ed:ea:c7:c4:c1:b9:
9f:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:F8:D9:98:94:F0:4D:E1:0E:62:18:0C:CA:E7:A2:A3:46:43:8A:1A
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/07E4D1D2E46D11EEB2526D4B775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.93.70.0/24
Signature Algorithm: sha256WithRSAEncryption
06:f4:90:56:df:36:b5:de:ba:dd:6d:5a:a7:23:40:9a:6c:ed:
1e:7d:5c:34:31:fb:32:8e:d3:ff:00:7f:bc:e1:31:af:53:59:
f9:6b:2e:89:68:74:d3:88:58:3c:13:12:b4:8b:a1:55:a4:eb:
8f:83:3f:74:36:e9:fb:06:16:d6:91:71:6c:91:c9:c6:4c:b6:
96:d0:44:47:6b:f4:18:03:9e:5e:cc:69:52:a9:48:4f:f1:2a:
58:95:bf:35:e2:1c:b9:d4:41:8f:3b:b8:a4:88:9b:6e:e8:f2:
2e:54:5d:4f:f7:71:51:bd:44:86:c4:70:22:98:47:85:c1:43:
e3:2a:26:b6:6a:14:83:c8:bc:08:ac:d0:6d:ed:61:1c:b5:9b:
b6:1f:78:a2:e2:06:e9:0c:15:b0:2e:af:a1:99:a4:75:97:5a:
8d:75:b5:46:31:7d:2d:91:6e:1e:21:33:b6:8f:3e:e0:69:10:
b5:fb:39:9c:a3:8e:6f:62:19:05:56:10:fe:af:05:e8:40:8a:
b7:f1:46:5b:0a:3a:c9:42:7f:5d:16:9f:29:48:14:8c:d5:a7:
d5:ff:d4:9b:3b:42:27:1e:1f:ca:c7:cf:65:83:66:ac:2a:86:
2f:5b:d6:6f:27:a9:2a:75:74:ef:4d:72:41:da:53:84:78:56:
d2:5e:b7:14
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAKH3MA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQwMzE3MTQ0NTQwWhcNMjQwNDMwMTQ0NTQwWjAYMRYw
FAYDVQQDEw02NWY3MDIxNy04NDJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAuk62mJj5FOE6/Imi84V2kmKW2kE42b7bnN9U0P4ua+rG0VVOOjN8+L/H
ssiSdZbDMHeB6qNBxDl7M4W3bnW7d+CJR90bY9NBlZ/h+QPRt3xCJc3CAyjTf4Yv
fWwlf7BNbUM4lMvVN8T0KyShePqI6tlDipTcW4aHxKq+6gM8EjC1BHqNTTtFYsQP
TI2pdSr8JoVqnDcpWH2s/Tv9vPzFDbGFImpdrWEf7khbmSoZwOAqglFYvQzraxCW
KlTgEIUy4O2086xlsDq/S2IcbEK/D9p+MJAdlrUytQhBoZyYlKhtRzt8tfHYyWXg
5AWibbKx6MD0m0WQxh3t6sfEwbmf4wIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFBb4
2ZiU8E3hDmIYDMrnoqNGQ4oaMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC8wN0U0RDFEMkU0NkQxMUVFQjI1MjZENEI3NzU0MTJFNi5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAml1GMA0GCSqGSIb3DQEB
CwUAA4IBAQAG9JBW3za13rrdbVqnI0CabO0efVw0MfsyjtP/AH+84TGvU1n5ay6J
aHTTiFg8ExK0i6FVpOuPgz90Nun7BhbWkXFskcnGTLaW0ERHa/QYA55ezGlSqUhP
8SpYlb814hy51EGPO7ikiJtu6PIuVF1P93FRvUSGxHAimEeFwUPjKia2ahSDyLwI
rNBt7WEctZu2H3ii4gbpDBWwLq+hmaR1l1qNdbVGMX0tkW4eITO2jz7gaRC1+zmc
o45vYhkFVhD+rwXoQIq38UZbCjrJQn9dFp8pSBSM1afV/9SbO0InHh/Kx89lg2as
KoYvW9ZvJ6kqdXTvTXJB2lOEeFbSXrcU
-----END CERTIFICATE-----
Generated at Wed May 1 02:03:19 2024 by rpki-client on console-ams.rpki-client.org