Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/30701560FB9911EEB6A8A504017001B1.roa
File: 30701560FB9911EEB6A8A504017001B1.roa (raw, json)
Hash identifier: X8ZS8UmKCuvnBPwvgDfVj4kOCTrv9vwTeo+xC0vcylg=
Subject key identifier: 0A:7C:2B:15:9F:70:B9:2A:53:65:F2:CC:F6:92:BA:46:FE:32:33:3A
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: AD09
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/30701560FB9911EEB6A8A504017001B1.roa
Signing time: Tue 16 Apr 2024 02:29:46 +0000
ROA not before: Tue 16 Apr 2024 02:29:42 +0000
ROA not after: Thu 25 Apr 2024 02:29:42 +0000
asID: 139471
IP address blocks: 154.210.32.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 44297 (0xad09)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 16 02:29:42 2024 GMT
Not After : Apr 25 02:29:42 2024 GMT
Subject: CN=661de29a-47f8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:ec:fe:07:c4:b9:63:5d:d0:3c:e2:37:3f:92:
85:f9:34:15:ed:97:92:2c:46:df:9d:20:ca:41:c2:
6c:b0:97:aa:aa:e6:41:24:b1:19:cb:be:9d:d9:2b:
5c:f9:52:d8:f2:84:4a:a3:24:ff:dc:e2:dc:61:38:
29:3f:75:2c:85:af:bb:e6:8a:5a:92:7c:1f:ec:c1:
0a:9c:e8:64:70:91:f7:06:6c:a1:b2:1f:77:95:eb:
57:21:6e:a7:60:d3:dd:6c:98:13:96:5f:29:1a:dd:
bd:73:5e:81:a0:16:ec:e5:1c:c4:24:9c:5c:82:2a:
88:78:5c:5a:b1:d9:30:52:59:d7:d4:58:82:da:b3:
a2:f8:c8:f1:4f:d8:08:45:a7:fe:ca:b7:1d:46:64:
25:a6:ff:24:07:63:70:8a:a5:ec:4f:0f:8f:00:35:
91:db:ae:7d:c9:37:56:f7:c0:08:48:90:7d:ab:b2:
64:58:53:24:f6:6f:27:09:37:e7:87:b7:85:3f:08:
ac:9c:ed:68:c8:9c:bf:69:93:31:cd:04:35:5e:5c:
25:12:3f:13:dd:a0:28:4b:bd:83:80:3b:31:8e:be:
11:36:69:19:1e:5c:38:81:c2:84:7c:75:8e:ba:cc:
ad:5c:e9:76:00:ad:84:99:71:a9:08:4e:92:64:cc:
f5:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:7C:2B:15:9F:70:B9:2A:53:65:F2:CC:F6:92:BA:46:FE:32:33:3A
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/30701560FB9911EEB6A8A504017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.210.32.0/19
Signature Algorithm: sha256WithRSAEncryption
b5:49:3a:8b:c6:31:3c:37:62:64:be:7f:fa:7f:dc:b8:99:a1:
2c:53:c6:f7:ea:cd:08:8b:5b:55:81:f8:fb:06:75:3a:a7:b5:
f8:67:a0:e8:e0:16:f5:e0:7e:43:98:24:e7:13:ce:7c:6a:a0:
f6:ad:97:42:6c:6e:ab:d5:49:d8:90:0a:f1:16:74:84:f3:ef:
5e:ba:4c:2e:1b:41:ed:b4:f5:28:b8:d5:78:0e:8f:60:36:4a:
9f:01:93:82:f2:fe:97:10:eb:d2:ec:ce:f6:aa:57:4d:59:e4:
a7:6b:22:7c:53:b5:b0:ce:74:fa:52:37:c9:48:61:dc:cc:8e:
5e:02:31:98:e8:8e:8b:8e:c5:eb:c9:74:e4:c8:86:b4:da:d8:
dd:20:b3:4e:36:65:94:66:4a:33:83:d8:b5:48:55:63:69:60:
23:8a:30:6c:ab:e9:ff:f4:00:b1:d1:7c:78:30:0b:67:03:38:
18:4f:c7:a2:37:ef:f5:82:85:c1:c5:10:1d:74:05:c9:16:bd:
15:21:87:a5:f0:d8:61:4a:6f:14:d6:d8:76:fa:9c:35:82:61:
8a:22:37:92:16:6e:7e:e1:6c:56:47:2a:ee:18:94:2c:86:ce:
42:d3:4c:1e:a6:12:bc:0e:21:ca:9b:4f:f7:7e:f4:11:b4:85:
da:12:40:0e
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAK0JMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQwNDE2MDIyOTQyWhcNMjQwNDI1MDIyOTQyWjAYMRYw
FAYDVQQDEw02NjFkZTI5YS00N2Y4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEA6uz+B8S5Y13QPOI3P5KF+TQV7ZeSLEbfnSDKQcJssJeqquZBJLEZy76d
2Stc+VLY8oRKoyT/3OLcYTgpP3Usha+75opaknwf7MEKnOhkcJH3Bmyhsh93letX
IW6nYNPdbJgTll8pGt29c16BoBbs5RzEJJxcgiqIeFxasdkwUlnX1FiC2rOi+Mjx
T9gIRaf+yrcdRmQlpv8kB2NwiqXsTw+PADWR2659yTdW98AISJB9q7JkWFMk9m8n
CTfnh7eFPwisnO1oyJy/aZMxzQQ1XlwlEj8T3aAoS72DgDsxjr4RNmkZHlw4gcKE
fHWOusytXOl2AK2EmXGpCE6SZMz1BQIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFAp8
KxWfcLkqU2XyzPaSukb+MjM6MB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC8zMDcwMTU2MEZCOTkxMUVFQjZBOEE1MDQwMTcwMDFCMS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQFmtIgMA0GCSqGSIb3DQEB
CwUAA4IBAQC1STqLxjE8N2Jkvn/6f9y4maEsU8b36s0Ii1tVgfj7BnU6p7X4Z6Do
4Bb14H5DmCTnE858aqD2rZdCbG6r1UnYkArxFnSE8+9eukwuG0HttPUouNV4Do9g
NkqfAZOC8v6XEOvS7M72qldNWeSnayJ8U7WwznT6UjfJSGHczI5eAjGY6I6LjsXr
yXTkyIa02tjdILNONmWUZkozg9i1SFVjaWAjijBsq+n/9ACx0Xx4MAtnAzgYT8ei
N+/1goXBxRAddAXJFr0VIYel8NhhSm8U1th2+pw1gmGKIjeSFm5+4WxWRyruGJQs
hs5C00wephK8DiHKm0/3fvQRtIXaEkAO
-----END CERTIFICATE-----
Generated at Thu Apr 25 10:41:10 2024 by rpki-client on console-ams.rpki-client.org