Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/2A65E0DC9F9011EFB228D3B2762E951A.roa
File: 2A65E0DC9F9011EFB228D3B2762E951A.roa (raw, json)
Hash identifier: 5QUpq85oJ+xXa3VeD8+Lr2Om3HjHhs5iUOcMUEJCesc=
Subject key identifier: F3:66:A6:EA:37:36:89:96:2C:A4:A6:CA:B2:DF:3C:7E:C7:20:76:E0
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 010B72
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/2A65E0DC9F9011EFB228D3B2762E951A.roa
Signing time: Sun 10 Nov 2024 18:18:21 +0000
ROA not before: Sun 10 Nov 2024 18:18:17 +0000
ROA not after: Thu 21 Nov 2024 18:18:17 +0000
asID: 44559
IP address blocks: 154.205.255.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 68466 (0x10b72)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 10 18:18:17 2024 GMT
Not After : Nov 21 18:18:17 2024 GMT
Subject: CN=6730f8ed-b7f1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:b1:52:bc:8c:13:4f:b1:09:7b:98:56:d9:07:
4d:75:43:09:5d:40:73:00:f1:4f:8c:fb:6c:a8:b6:
e2:de:67:5c:22:e4:92:7f:48:b6:63:41:9f:55:79:
72:bf:99:42:03:e0:19:87:9f:e7:11:ba:4a:5e:27:
4c:45:d3:11:a4:66:dc:10:7c:a9:d3:fc:40:e1:fa:
13:4e:8c:24:a6:b6:67:37:6c:4a:a6:f4:7b:46:df:
0e:a8:75:1f:78:e7:7f:47:8f:e3:81:26:88:87:df:
18:f0:8f:bf:9b:4b:d9:18:c0:d0:cd:df:14:e7:71:
f1:75:0e:c4:11:fe:74:e7:6a:9f:76:1a:75:0d:64:
40:17:6e:44:49:c9:ba:71:9c:c9:55:52:81:5b:b6:
bc:07:15:b1:3b:b6:e9:7a:d4:31:41:81:49:79:91:
d8:98:b8:0d:a4:1f:03:80:65:25:2b:47:a7:ba:dd:
9a:37:7f:ae:61:b8:49:4f:cf:3a:e9:2b:df:4e:04:
2c:21:19:6f:e2:ea:4a:dc:4c:8e:d0:e6:ab:01:72:
07:46:68:84:fa:a8:20:5a:53:c5:6f:e1:cd:1a:f4:
68:dd:36:fd:f3:60:71:ed:29:55:02:4e:af:f2:48:
6a:af:22:61:7c:0d:e2:72:0e:c1:61:0b:32:cc:98:
7e:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:66:A6:EA:37:36:89:96:2C:A4:A6:CA:B2:DF:3C:7E:C7:20:76:E0
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/2A65E0DC9F9011EFB228D3B2762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.205.255.0/24
Signature Algorithm: sha256WithRSAEncryption
2c:b3:ad:87:8b:71:a5:c4:31:59:98:c0:e9:1c:9e:6f:85:b0:
81:ee:ea:31:da:75:87:3b:2d:79:2e:e4:c2:a6:b5:51:83:4a:
01:c7:0b:6b:c9:5c:06:6d:9d:ce:57:fc:7f:76:49:db:b0:b8:
55:62:94:76:0f:bc:51:ac:0a:5e:e2:f7:d8:4a:63:8f:16:bb:
7d:aa:63:5a:8d:b6:e6:a9:c3:4c:2f:b3:bc:0d:c6:ad:03:cc:
ac:e2:89:39:33:61:7f:5b:ed:de:28:b3:6d:8e:e7:ff:d2:e9:
03:74:a3:39:91:50:e6:fb:a2:f0:36:81:54:44:3f:93:c8:d0:
4a:37:0a:d7:26:e1:ec:13:a7:67:29:2b:bb:85:35:93:fd:df:
c2:05:eb:8c:56:23:68:f5:0b:0c:81:6b:50:ac:df:51:aa:21:
db:0e:2c:5d:72:74:1c:03:70:ff:1f:1a:01:b6:bb:dc:c1:ce:
21:65:34:a9:d4:be:26:31:ee:a9:73:f9:2b:58:89:da:5f:3e:
2c:31:c8:22:19:b8:8a:f9:0f:a7:30:38:4e:96:65:fd:ee:10:
36:7a:5c:d1:9e:f3:19:01:36:c6:5f:9d:af:ca:a6:22:87:8d:
32:0c:94:fa:64:05:3b:f5:c2:62:9b:95:71:9f:b4:da:52:8c:
6e:0a:5f:cb
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAQtyMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQxMTEwMTgxODE3WhcNMjQxMTIxMTgxODE3WjAYMRYw
FAYDVQQDEw02NzMwZjhlZC1iN2YxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAuLFSvIwTT7EJe5hW2QdNdUMJXUBzAPFPjPtsqLbi3mdcIuSSf0i2Y0Gf
VXlyv5lCA+AZh5/nEbpKXidMRdMRpGbcEHyp0/xA4foTTowkprZnN2xKpvR7Rt8O
qHUfeOd/R4/jgSaIh98Y8I+/m0vZGMDQzd8U53HxdQ7EEf5052qfdhp1DWRAF25E
Scm6cZzJVVKBW7a8BxWxO7bpetQxQYFJeZHYmLgNpB8DgGUlK0enut2aN3+uYbhJ
T8866SvfTgQsIRlv4upK3EyO0OarAXIHRmiE+qggWlPFb+HNGvRo3Tb982Bx7SlV
Ak6v8khqryJhfA3icg7BYQsyzJh+7wIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFPNm
puo3NomWLKSmyrLfPH7HIHbgMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC8yQTY1RTBEQzlGOTAxMUVGQjIyOEQzQjI3NjJFOTUxQS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAms3/MA0GCSqGSIb3DQEB
CwUAA4IBAQAss62Hi3GlxDFZmMDpHJ5vhbCB7uox2nWHOy15LuTCprVRg0oBxwtr
yVwGbZ3OV/x/dknbsLhVYpR2D7xRrApe4vfYSmOPFrt9qmNajbbmqcNML7O8Dcat
A8ys4ok5M2F/W+3eKLNtjuf/0ukDdKM5kVDm+6LwNoFURD+TyNBKNwrXJuHsE6dn
KSu7hTWT/d/CBeuMViNo9QsMgWtQrN9RqiHbDixdcnQcA3D/HxoBtrvcwc4hZTSp
1L4mMe6pc/krWInaXz4sMcgiGbiK+Q+nMDhOlmX97hA2elzRnvMZATbGX52vyqYi
h40yDJT6ZAU79cJim5Vxn7TaUoxuCl/L
-----END CERTIFICATE-----
Generated at Fri Nov 22 02:47:22 2024 by rpki-client on console-fra.rpki-client.org