Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/2366EB02038F11EFA64A7369017001B1.roa
File: 2366EB02038F11EFA64A7369017001B1.roa (raw, json)
Hash identifier: 06iuNRQoT3sDMo4vF4YmziOqJ8V4Tuiw0+gUK6/uBD0=
Subject key identifier: 68:C0:F1:87:C9:90:AC:F9:71:BB:30:52:D9:3F:25:E9:0A:1E:5B:48
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: B17E
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/2366EB02038F11EFA64A7369017001B1.roa
Signing time: Fri 26 Apr 2024 05:37:58 +0000
ROA not before: Fri 26 Apr 2024 05:37:54 +0000
ROA not after: Sun 05 May 2024 05:37:54 +0000
asID: 139646
IP address blocks: 154.208.12.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 45438 (0xb17e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 26 05:37:54 2024 GMT
Not After : May 5 05:37:54 2024 GMT
Subject: CN=662b3db6-4f09
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:54:e6:9f:5b:19:9f:6e:31:d0:e1:87:d8:d3:
e3:0e:27:ce:ef:ec:23:ff:47:fc:70:1c:4d:fc:57:
2f:13:09:93:42:4d:df:b0:53:29:a7:a4:44:0a:62:
df:61:90:c6:69:bf:a7:36:2a:b4:bc:47:6a:c5:31:
fd:2f:70:7b:83:09:68:5e:55:5f:d7:09:bd:25:13:
0a:73:82:d3:c0:e6:96:2c:22:d5:d5:30:02:ff:2b:
fd:d2:aa:71:d5:6a:74:e5:f9:01:51:d5:36:2e:3b:
87:87:6e:c7:fa:6e:ca:1b:d4:7c:96:b0:36:b8:53:
28:35:bf:08:bc:15:70:86:54:65:fd:2d:cf:cd:f6:
26:7f:a3:58:cc:19:29:52:84:ba:31:36:07:82:1d:
16:8a:49:6d:79:73:57:f1:72:8b:48:e2:6d:f3:1b:
40:e4:31:c4:b1:08:67:d1:0d:c1:b8:92:f0:53:e3:
6f:56:c2:70:bc:37:1f:a1:e2:76:49:78:29:fa:3d:
e9:29:f9:05:33:de:9f:ae:02:3c:8a:9a:23:8d:98:
37:d3:1d:05:c1:3f:30:0d:05:62:0f:bf:4b:a7:68:
45:66:1f:4b:4e:3c:5e:79:7f:91:a3:68:49:10:74:
0d:ca:ae:f5:ef:0b:c3:47:3c:8c:bf:ad:6d:81:37:
57:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:C0:F1:87:C9:90:AC:F9:71:BB:30:52:D9:3F:25:E9:0A:1E:5B:48
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/2366EB02038F11EFA64A7369017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.208.12.0/23
Signature Algorithm: sha256WithRSAEncryption
d4:74:7f:e1:4a:cb:b8:97:b2:35:e6:f6:cf:60:02:22:a8:44:
9f:b6:f3:8a:66:3d:43:8e:28:18:b1:84:93:6c:07:13:e6:21:
a5:eb:cd:2f:2f:42:c1:59:f0:0d:90:d0:85:4b:ad:c2:c3:39:
db:9c:59:70:f1:51:bd:5f:4a:9c:bf:ba:1c:16:7e:0f:d0:38:
38:2e:fb:c1:cf:51:59:90:40:b6:b9:85:9e:62:b1:f2:6d:99:
80:72:ee:63:4d:35:7b:ca:d3:67:c7:87:51:d9:5d:f6:0a:02:
0d:66:51:4f:89:69:a3:21:cf:46:42:94:f5:8d:65:96:92:af:
14:8a:48:a5:ee:2f:82:a5:c5:79:51:95:2b:cb:bd:a0:e4:1e:
50:68:cd:1b:51:23:74:91:bd:77:62:a9:c9:cb:de:60:8e:86:
c9:91:cd:62:e9:75:3e:32:09:09:b2:38:02:4a:62:d9:9d:37:
00:c8:6f:27:bb:41:09:04:55:a2:76:cf:e0:1f:90:9b:fa:6f:
13:c3:b1:84:eb:0b:c2:d4:9f:b0:80:c6:ef:c3:da:49:00:5d:
d7:2d:28:df:7d:a1:5d:5b:1d:ed:87:10:32:e1:b6:86:f5:52:
5f:ab:a9:c7:3a:f3:a0:f6:f6:76:cb:b3:cf:49:43:38:b0:73:
4b:79:6c:ca
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDALF+MA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQwNDI2MDUzNzU0WhcNMjQwNTA1MDUzNzU0WjAYMRYw
FAYDVQQDEw02NjJiM2RiNi00ZjA5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAyFTmn1sZn24x0OGH2NPjDifO7+wj/0f8cBxN/FcvEwmTQk3fsFMpp6RE
CmLfYZDGab+nNiq0vEdqxTH9L3B7gwloXlVf1wm9JRMKc4LTwOaWLCLV1TAC/yv9
0qpx1Wp05fkBUdU2LjuHh27H+m7KG9R8lrA2uFMoNb8IvBVwhlRl/S3PzfYmf6NY
zBkpUoS6MTYHgh0WiklteXNX8XKLSOJt8xtA5DHEsQhn0Q3BuJLwU+NvVsJwvDcf
oeJ2SXgp+j3pKfkFM96frgI8ipojjZg30x0FwT8wDQViD79Lp2hFZh9LTjxeeX+R
o2hJEHQNyq717wvDRzyMv61tgTdXEwIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFGjA
8YfJkKz5cbswUtk/JekKHltIMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC8yMzY2RUIwMjAzOEYxMUVGQTY0QTczNjkwMTcwMDFCMS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBmtAMMA0GCSqGSIb3DQEB
CwUAA4IBAQDUdH/hSsu4l7I15vbPYAIiqESftvOKZj1DjigYsYSTbAcT5iGl680v
L0LBWfANkNCFS63CwznbnFlw8VG9X0qcv7ocFn4P0Dg4LvvBz1FZkEC2uYWeYrHy
bZmAcu5jTTV7ytNnx4dR2V32CgINZlFPiWmjIc9GQpT1jWWWkq8Uikil7i+CpcV5
UZUry72g5B5QaM0bUSN0kb13YqnJy95gjobJkc1i6XU+MgkJsjgCSmLZnTcAyG8n
u0EJBFWids/gH5Cb+m8Tw7GE6wvC1J+wgMbvw9pJAF3XLSjffaFdWx3thxAy4baG
9VJfq6nHOvOg9vZ2y7PPSUM4sHNLeWzK
-----END CERTIFICATE-----
Generated at Mon May 6 02:18:23 2024 by rpki-client on console-ams.rpki-client.org