Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/2A40A33601B711EDBA68169AF1222468.roa
File: 2A40A33601B711EDBA68169AF1222468.roa (raw, json)
Hash identifier: 6IHy3hjAEshEQvjONdjxbZaD0oho0VpmElB5YX6MToo=
Subject key identifier: B5:83:40:75:32:F2:99:02:A8:CF:4D:AD:B6:70:91:0F:44:80:63:56
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 175E
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/2A40A33601B711EDBA68169AF1222468.roa
Signing time: Tue 12 Jul 2022 07:49:32 +0000
ROA not before: Tue 12 Jul 2022 07:49:28 +0000
ROA not after: Tue 11 Jul 2023 07:49:28 +0000
asID: 138630
IP address blocks: 154.212.158.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5982 (0x175e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jul 12 07:49:28 2022 GMT
Not After : Jul 11 07:49:28 2023 GMT
Subject: CN=62cd278c-cc34
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:c9:19:c2:25:7e:b0:41:bc:7d:0a:1d:ef:46:
d1:db:3a:0c:0f:bb:cb:0d:25:84:9d:df:8e:5c:76:
90:dc:4d:65:fa:ca:80:8b:ba:9a:ab:94:d2:f2:40:
f3:c2:a9:0a:73:8e:2e:6c:86:15:1f:1f:5f:e0:52:
6c:d7:e1:81:64:01:9d:58:9f:1a:cb:44:96:0b:c2:
2e:1f:48:bf:e2:f8:b1:1f:45:1a:8d:07:f2:16:b5:
a6:c8:05:5c:ac:62:b5:1d:99:29:3c:fc:a5:c6:16:
88:18:95:f3:0b:a4:02:d4:82:9b:fd:bf:fc:d7:42:
27:23:e0:ab:9b:57:6c:71:88:7d:ce:a7:4b:e9:b6:
fa:9b:dd:7d:f0:29:06:46:4f:e5:f4:f1:e1:4b:c1:
b4:9e:f3:83:8d:cc:f5:00:ef:f4:9e:07:f7:00:cc:
22:ce:d2:bf:55:64:f2:07:a2:26:3a:8c:e4:93:ae:
73:47:e8:b2:f7:41:4a:72:cc:3c:dc:22:a5:2a:6d:
b8:2e:16:5a:72:a7:b8:4b:81:27:0c:00:41:ff:82:
09:1e:ea:26:b7:ff:6c:cf:fc:c7:71:df:f9:0a:17:
2f:89:00:fc:c2:41:cf:5f:24:7f:2b:b3:cd:22:fa:
89:55:71:64:5e:4b:95:d7:77:4c:21:a1:f9:3f:c9:
45:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:83:40:75:32:F2:99:02:A8:CF:4D:AD:B6:70:91:0F:44:80:63:56
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/2A40A33601B711EDBA68169AF1222468.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.212.158.0/24
Signature Algorithm: sha256WithRSAEncryption
1a:06:11:11:49:b7:c9:ae:cd:78:3b:a1:b6:62:2e:0b:d7:e8:
85:01:c8:da:a5:6b:83:5d:43:7a:ff:af:18:ce:30:5a:ff:a4:
4f:88:4f:1b:c2:39:4a:34:65:6e:85:9f:6d:e8:28:34:6f:74:
d2:cb:34:4a:22:b0:c6:07:aa:39:8b:2f:94:60:fd:4d:14:6a:
83:b2:66:f9:96:91:90:4b:aa:8b:1f:05:43:a9:79:f6:a6:54:
2d:6a:75:aa:1b:98:c9:9e:65:40:b5:44:ad:01:5b:7f:bb:c4:
5f:bd:f1:7d:98:cd:a4:7f:e8:33:2c:9c:74:88:f3:a4:3d:a3:
f9:a4:fe:3c:c7:54:cd:5f:3c:45:c5:b2:33:00:e4:33:ae:d9:
99:15:7c:4f:89:44:02:cc:ee:3d:49:f3:90:a0:ea:96:1a:ca:
59:c7:b4:82:bf:2a:75:c4:2c:db:a0:2d:a0:4a:93:f9:b9:81:
da:9e:36:0f:14:5f:68:0d:ff:c4:a6:ef:94:7f:be:97:ec:9a:
10:1d:dd:19:af:70:3b:05:46:77:5b:16:d4:23:a4:b9:95:56:
e8:56:60:00:33:93:76:19:e2:9b:20:f5:55:8d:46:5c:bb:4d:
8e:cc:0c:68:91:89:41:a5:4d:99:e5:bb:47:8c:2c:65:8a:84:
19:f0:d5:fe
-----BEGIN CERTIFICATE-----
MIIFgzCCBGugAwIBAgICF14wDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAwwKRjM2
OEYyRDBBRjExMC8GA1UEBRMoMjVENjNFMDhFQUJFN0NGQTY3ODVENEMxRDZEMzQx
MTZERTE1QjNEQzAeFw0yMjA3MTIwNzQ5MjhaFw0yMzA3MTEwNzQ5MjhaMBgxFjAU
BgNVBAMMDTYyY2QyNzhjLWNjMzQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQCjyRnCJX6wQbx9Ch3vRtHbOgwPu8sNJYSd345cdpDcTWX6yoCLupqrlNLy
QPPCqQpzji5shhUfH1/gUmzX4YFkAZ1YnxrLRJYLwi4fSL/i+LEfRRqNB/IWtabI
BVysYrUdmSk8/KXGFogYlfMLpALUgpv9v/zXQicj4KubV2xxiH3Op0vptvqb3X3w
KQZGT+X08eFLwbSe84ONzPUA7/SeB/cAzCLO0r9VZPIHoiY6jOSTrnNH6LL3QUpy
zDzcIqUqbbguFlpyp7hLgScMAEH/ggke6ia3/2zP/Mdx3/kKFy+JAPzCQc9fJH8r
s80i+olVcWReS5XXd0whofk/yUVRAgMBAAGjggKlMIICoTAdBgNVHQ4EFgQUtYNA
dTLymQKoz02ttnCRD0SAY1YwHwYDVR0jBBgwFoAUJdY+COq+fPpnhdTB1tNBFt4V
s9wwDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjhGMkQwLzdGNEE5OEVBNkUwNTExRTg5QzBENkU0QkY4QUVBMjI4L0pkWS1D
T3EtZlBwbmhkVEIxdE5CRnQ0VnM5dy5jcmwwZwYIKwYBBQUHAQEEWzBZMFcGCCsG
AQUFBzAChktyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hZnJp
bmljL0pkWS1DT3EtZlBwbmhkVEIxdE5CRnQ0VnM5dy5jZXIwTwYDVR0gAQH/BEUw
QzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5p
Yy5uZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEF
BQcwC4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJl
cl9yZXBvc2l0b3J5L0YzNjhGMkQwLzdGNEE5OEVBNkUwNTExRTg5QzBENkU0QkY4
QUVBMjI4LzJBNDBBMzM2MDFCNzExRURCQTY4MTY5QUYxMjIyNDY4LnJvYTA1Bggr
BgEFBQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54
bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBACa1J4wDQYJKoZIhvcNAQEL
BQADggEBABoGERFJt8muzXg7obZiLgvX6IUByNqla4NdQ3r/rxjOMFr/pE+ITxvC
OUo0ZW6Fn23oKDRvdNLLNEoisMYHqjmLL5Rg/U0UaoOyZvmWkZBLqosfBUOpefam
VC1qdaobmMmeZUC1RK0BW3+7xF+98X2YzaR/6DMsnHSI86Q9o/mk/jzHVM1fPEXF
sjMA5DOu2ZkVfE+JRALM7j1J85Cg6pYaylnHtIK/KnXELNugLaBKk/m5gdqeNg8U
X2gN/8Sm75R/vpfsmhAd3RmvcDsFRndbFtQjpLmVVuhWYAAzk3YZ4psg9VWNRly7
TY7MDGiRiUGlTZnlu0eMLGWKhBnw1f4=
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:22:05 2023 by rpki-client on console-ams.rpki-client.org