Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/3100AA68FB9311EE8853C949017001B1.roa
File: 3100AA68FB9311EE8853C949017001B1.roa (raw, json)
Hash identifier: ITqY9PtqlOePGFoKiCoaNUFr9KX2t7+ZDcwTwJk8cvk=
Subject key identifier: EB:05:82:5E:14:A3:2C:2A:F8:99:29:EE:B2:AC:23:AA:6A:B4:58:2D
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: ACF3
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/3100AA68FB9311EE8853C949017001B1.roa
Signing time: Tue 16 Apr 2024 01:46:50 +0000
ROA not before: Tue 16 Apr 2024 01:46:46 +0000
ROA not after: Mon 29 Apr 2024 01:46:46 +0000
asID: 141883
IP address blocks: 154.212.128.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 44275 (0xacf3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 16 01:46:46 2024 GMT
Not After : Apr 29 01:46:46 2024 GMT
Subject: CN=661dd889-b4ca
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:70:fe:c8:1d:ac:5a:f5:79:7c:2d:ea:73:4c:
81:d5:be:c9:34:04:57:51:75:d1:e4:61:5f:16:21:
e4:04:4d:ef:b5:84:63:7b:ed:98:2d:d5:61:f1:0f:
e2:7c:d5:a6:48:6c:9f:e2:4f:86:02:01:dc:fc:c7:
db:e8:a3:b9:78:92:37:47:20:96:12:f2:92:5e:24:
72:d9:7b:51:9d:7b:ef:33:99:03:f6:31:d7:9f:47:
e2:53:85:41:d4:e4:a3:c5:a9:54:dd:1c:cc:4f:b4:
58:85:3d:2f:28:b5:b4:4a:7e:64:34:b8:8f:e6:dd:
2a:06:5f:17:27:2a:0a:31:42:ec:8d:83:6e:a1:40:
d4:22:b6:71:bc:1a:2f:68:d1:fa:fb:a7:ce:e9:f9:
c2:e6:2e:86:3a:06:37:0d:ff:e2:b3:84:ad:3b:b1:
78:a2:de:83:73:d7:65:9e:fc:d4:5f:59:eb:66:b3:
44:58:bc:ff:43:c4:19:7e:fb:26:70:f6:5d:e7:9b:
0a:42:5e:b5:5d:c6:85:08:47:3a:e0:93:11:98:35:
42:9c:af:ef:f6:69:47:52:75:65:e0:66:b7:19:64:
b9:9e:6e:e4:e3:48:af:bf:17:7e:3c:50:ee:9b:fd:
8e:82:09:46:3c:d5:de:9a:26:d8:5e:d1:1a:ce:83:
7f:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:05:82:5E:14:A3:2C:2A:F8:99:29:EE:B2:AC:23:AA:6A:B4:58:2D
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/3100AA68FB9311EE8853C949017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.212.128.0/24
Signature Algorithm: sha256WithRSAEncryption
41:2f:bf:bd:f8:bc:6e:52:e2:d4:05:00:2f:8a:c7:59:0d:af:
dc:8a:c0:b1:f3:94:0f:df:11:75:e3:90:ca:3c:81:c2:76:fe:
2f:de:4b:7c:67:05:55:6f:6a:f0:f2:32:75:d1:fe:1f:58:b9:
56:5f:24:14:49:9d:bb:28:a8:f9:22:ac:ce:03:a7:34:8a:f6:
a4:4a:28:6e:32:45:f1:46:a9:c4:2c:6a:1f:00:30:87:31:b9:
2f:59:98:b7:a9:2e:33:1a:60:39:88:93:19:09:08:9e:5c:a6:
bc:a5:58:20:d4:6c:f0:2f:c0:2d:0c:e0:e8:85:2e:b7:de:fa:
04:52:3a:1c:9d:61:c1:2c:98:ec:04:bb:da:0f:18:07:2b:00:
92:5f:f4:9a:85:1d:14:ba:46:c4:c4:bf:ad:a2:f1:41:e8:38:
f0:86:8f:7b:ba:f5:0f:87:d7:32:4d:bb:b1:db:59:1f:a9:22:
56:2c:38:b6:b9:e8:3e:3d:c0:25:27:5a:50:45:6d:5f:0b:e9:
1a:8a:1a:b2:90:d3:a6:2c:a2:44:c1:64:bd:d8:c2:39:4b:d8:
84:94:a9:9a:c3:f1:fe:ec:07:bd:91:73:8d:a0:76:31:7f:fe:
26:3c:01:fa:4e:fa:b9:48:0a:2d:4f:05:a6:e0:b1:a6:55:a7:
a0:d8:cf:aa
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAKzzMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQwNDE2MDE0NjQ2WhcNMjQwNDI5MDE0NjQ2WjAYMRYw
FAYDVQQDEw02NjFkZDg4OS1iNGNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAx3D+yB2sWvV5fC3qc0yB1b7JNARXUXXR5GFfFiHkBE3vtYRje+2YLdVh
8Q/ifNWmSGyf4k+GAgHc/Mfb6KO5eJI3RyCWEvKSXiRy2XtRnXvvM5kD9jHXn0fi
U4VB1OSjxalU3RzMT7RYhT0vKLW0Sn5kNLiP5t0qBl8XJyoKMULsjYNuoUDUIrZx
vBovaNH6+6fO6fnC5i6GOgY3Df/is4StO7F4ot6Dc9dlnvzUX1nrZrNEWLz/Q8QZ
fvsmcPZd55sKQl61XcaFCEc64JMRmDVCnK/v9mlHUnVl4Ga3GWS5nm7k40ivvxd+
PFDum/2OgglGPNXemibYXtEazoN/4wIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFOsF
gl4Uoywq+Jkp7rKsI6pqtFgtMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC8zMTAwQUE2OEZCOTMxMUVFODg1M0M5NDkwMTcwMDFCMS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmtSAMA0GCSqGSIb3DQEB
CwUAA4IBAQBBL7+9+LxuUuLUBQAvisdZDa/cisCx85QP3xF145DKPIHCdv4v3kt8
ZwVVb2rw8jJ10f4fWLlWXyQUSZ27KKj5IqzOA6c0ivakSihuMkXxRqnELGofADCH
MbkvWZi3qS4zGmA5iJMZCQieXKa8pVgg1GzwL8AtDODohS633voEUjocnWHBLJjs
BLvaDxgHKwCSX/SahR0UukbExL+tovFB6Djwho97uvUPh9cyTbux21kfqSJWLDi2
ueg+PcAlJ1pQRW1fC+kaihqykNOmLKJEwWS92MI5S9iElKmaw/H+7Ae9kXONoHYx
f/4mPAH6Tvq5SAotTwWm4LGmVaeg2M+q
-----END CERTIFICATE-----
Generated at Mon Apr 29 03:01:01 2024 by rpki-client on console-ams.rpki-client.org