Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/2DB1F7AC018A11EF8F2FBD69017001B1.roa
File: 2DB1F7AC018A11EF8F2FBD69017001B1.roa (raw, json)
Hash identifier: SCbXjkwVlsk6jGAt5cx2M7cMh3MgJDtfpZ3xBhA1Y8g=
Subject key identifier: 42:76:1C:0F:91:34:50:8C:C5:2E:D1:F8:76:BE:57:AF:44:15:A6:C8
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: AFA8
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/2DB1F7AC018A11EF8F2FBD69017001B1.roa
Signing time: Tue 23 Apr 2024 15:57:26 +0000
ROA not before: Tue 23 Apr 2024 15:57:22 +0000
ROA not after: Wed 01 May 2024 15:57:22 +0000
asID: 136950
IP address blocks: 154.213.26.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 44968 (0xafa8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 23 15:57:22 2024 GMT
Not After : May 1 15:57:22 2024 GMT
Subject: CN=6627da65-462e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:0a:83:98:35:40:b6:c4:e4:f2:cc:c5:f1:64:
5e:71:2c:88:42:9f:73:ef:5e:c6:96:eb:83:61:18:
b1:80:4b:d5:48:90:23:f8:6a:d3:4f:af:f7:40:19:
03:26:58:99:9f:92:d9:2c:b5:38:26:20:b8:32:62:
ea:15:f5:c7:36:58:8d:1c:66:2b:21:50:b7:6f:e0:
e3:a0:6a:98:71:85:4b:c0:5a:f1:f5:d8:cc:2d:2c:
a3:e7:08:88:b8:bf:85:6a:39:1a:7a:a5:a9:2a:1d:
c2:bb:b5:5d:1c:e7:ea:24:6c:c2:d0:ef:4a:6c:57:
c6:e2:0b:af:c2:68:69:ad:0e:55:96:63:72:f0:31:
69:97:ad:fc:19:04:f4:e6:07:0c:36:13:eb:7c:cc:
ff:32:8b:6b:3f:72:03:a0:7b:0b:d0:08:24:1b:93:
67:ab:a1:27:02:8b:12:21:43:94:5b:01:9f:c0:8b:
a9:f9:9f:ec:d4:d1:4a:49:67:fa:b4:84:00:95:8c:
3e:7b:9d:0f:97:9c:45:95:bf:e0:03:a9:9d:c2:fa:
94:70:6d:69:33:73:ca:bd:66:88:61:55:69:d2:07:
eb:47:33:fb:e7:bb:99:d8:b5:eb:cc:4b:9f:cd:3c:
f8:d7:78:fb:1e:e1:a8:fd:28:58:7e:8e:84:fb:17:
2f:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:76:1C:0F:91:34:50:8C:C5:2E:D1:F8:76:BE:57:AF:44:15:A6:C8
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/2DB1F7AC018A11EF8F2FBD69017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.213.26.0/24
Signature Algorithm: sha256WithRSAEncryption
0e:6d:ee:7d:56:09:76:32:12:3c:5f:f7:96:ae:19:dd:22:5f:
91:9c:8b:5c:02:e5:ad:c3:cf:74:af:e0:07:e4:fa:fc:66:5b:
11:b2:54:63:a2:1d:2b:83:68:65:5d:50:db:ac:cf:5d:ee:e9:
0b:65:94:02:7b:ba:ab:6f:86:1e:7a:a6:f1:c8:10:c8:fd:29:
cd:5f:12:b7:72:db:3a:0b:0e:fb:31:f5:60:53:46:4f:cb:68:
f3:50:30:b8:45:48:bd:01:76:c5:2b:a8:ea:d4:f6:c5:0d:47:
b2:d1:d6:89:19:be:5f:cf:11:6c:17:5a:c4:c7:23:dd:ae:bc:
62:b5:60:58:0e:75:0b:a6:66:c8:bd:60:8e:06:50:b8:df:01:
ef:65:5d:ad:ae:0c:a4:a8:96:5f:35:fd:f9:88:04:6b:a0:81:
13:1d:f9:46:04:93:35:ef:3e:49:e5:29:2b:51:12:1d:c7:49:
d0:c0:f8:88:97:5c:91:b6:c4:ad:a1:4a:a4:56:3c:39:30:25:
75:84:47:54:c7:8f:9a:4f:cd:c1:5c:48:69:0f:2c:07:da:7a:
0f:f1:21:6c:fb:2e:66:e7:61:9c:4f:94:8c:b0:45:6b:71:12:
f6:81:59:c1:13:df:57:28:77:7b:71:68:a6:30:0f:da:a8:5c:
5e:da:8a:84
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAK+oMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQwNDIzMTU1NzIyWhcNMjQwNTAxMTU1NzIyWjAYMRYw
FAYDVQQDEw02NjI3ZGE2NS00NjJlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAmgqDmDVAtsTk8szF8WRecSyIQp9z717GluuDYRixgEvVSJAj+GrTT6/3
QBkDJliZn5LZLLU4JiC4MmLqFfXHNliNHGYrIVC3b+DjoGqYcYVLwFrx9djMLSyj
5wiIuL+FajkaeqWpKh3Cu7VdHOfqJGzC0O9KbFfG4guvwmhprQ5VlmNy8DFpl638
GQT05gcMNhPrfMz/MotrP3IDoHsL0AgkG5Nnq6EnAosSIUOUWwGfwIup+Z/s1NFK
SWf6tIQAlYw+e50Pl5xFlb/gA6mdwvqUcG1pM3PKvWaIYVVp0gfrRzP757uZ2LXr
zEufzTz413j7HuGo/ShYfo6E+xcv4wIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFEJ2
HA+RNFCMxS7R+Ha+V69EFabIMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC8yREIxRjdBQzAxOEExMUVGOEYyRkJENjkwMTcwMDFCMS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmtUaMA0GCSqGSIb3DQEB
CwUAA4IBAQAObe59Vgl2MhI8X/eWrhndIl+RnItcAuWtw890r+AH5Pr8ZlsRslRj
oh0rg2hlXVDbrM9d7ukLZZQCe7qrb4YeeqbxyBDI/SnNXxK3cts6Cw77MfVgU0ZP
y2jzUDC4RUi9AXbFK6jq1PbFDUey0daJGb5fzxFsF1rExyPdrrxitWBYDnULpmbI
vWCOBlC43wHvZV2trgykqJZfNf35iARroIETHflGBJM17z5J5SkrURIdx0nQwPiI
l1yRtsStoUqkVjw5MCV1hEdUx4+aT83BXEhpDywH2noP8SFs+y5m52GcT5SMsEVr
cRL2gVnBE99XKHd7cWimMA/aqFxe2oqE
-----END CERTIFICATE-----
Generated at Thu May 2 04:47:49 2024 by rpki-client on console-fra.rpki-client.org