Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/3853A188010011ED9FB6B7D2F1222468.roa
File: 3853A188010011ED9FB6B7D2F1222468.roa (raw, json)
Hash identifier: DcRUa5vaKcBRQ6qrxkPbPP3RUogFI6YLKPSxeSfVjRk=
Subject key identifier: 5F:72:B3:BA:85:0D:7B:3E:55:FA:70:B7:52:97:75:14:A5:E2:8A:68
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 1743
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/3853A188010011ED9FB6B7D2F1222468.roa
Signing time: Mon 11 Jul 2022 09:59:57 +0000
ROA not before: Mon 11 Jul 2022 09:59:54 +0000
ROA not after: Tue 11 Jul 2023 09:59:54 +0000
asID: 136778
IP address blocks: 154.212.145.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5955 (0x1743)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jul 11 09:59:54 2022 GMT
Not After : Jul 11 09:59:54 2023 GMT
Subject: CN=62cbf49d-2600
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:c3:cc:62:fb:37:5c:38:1d:5c:08:e2:01:63:
8e:b3:74:81:73:64:90:e2:47:4e:2c:f5:c4:25:a6:
da:a2:e7:35:d8:fd:73:13:5b:66:3b:34:3b:c6:85:
4f:6d:81:4d:e3:70:79:ba:ef:68:9a:e1:64:a8:dc:
8f:e4:5d:ec:6f:00:e9:6e:93:32:d5:7b:8a:de:ac:
6d:56:26:f1:9b:3a:f0:25:cd:40:3c:6c:5a:96:d8:
b3:93:8e:9b:45:ec:37:d0:76:4f:6c:05:cc:99:72:
b8:02:b1:3f:ec:e6:7a:a5:31:db:41:4a:c2:fe:4f:
a1:67:89:9e:1e:44:5f:b0:69:37:24:5a:0f:1e:81:
15:9f:70:85:b1:e2:04:13:da:21:b8:f9:11:d1:12:
cc:58:2e:5b:e2:92:10:31:84:dd:5b:c3:93:37:70:
92:36:43:d3:a6:8c:45:ff:25:fc:ce:96:4d:3c:f8:
bb:39:12:b2:27:a9:b5:6a:01:5b:81:7c:92:ca:6b:
af:fd:c5:e5:3a:9b:34:5b:12:a6:b9:33:3f:6f:1f:
8c:c1:e0:55:70:fb:98:3c:30:58:9e:07:0d:5a:d4:
20:13:0d:d4:66:de:31:59:1b:b2:11:ba:a2:3f:6b:
15:1c:bd:5b:2c:e7:65:38:6b:9a:2e:86:ff:9d:54:
c8:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:72:B3:BA:85:0D:7B:3E:55:FA:70:B7:52:97:75:14:A5:E2:8A:68
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/3853A188010011ED9FB6B7D2F1222468.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.212.145.0/24
Signature Algorithm: sha256WithRSAEncryption
5f:fa:7f:3c:c3:ae:82:76:15:96:08:5d:d4:b3:2f:ca:a6:14:
62:0e:75:e8:18:ef:7b:4a:c1:f2:8d:f6:54:b1:62:41:b8:4d:
1a:62:76:09:64:ef:2f:69:26:dc:00:fb:3f:13:c6:86:f8:7f:
85:bc:c8:ee:a8:9b:40:69:05:59:a8:44:30:e0:b8:6d:66:36:
22:7f:d8:09:bc:73:31:90:13:1d:e7:60:58:45:ca:20:44:98:
56:d8:5d:a9:a9:d8:6c:c4:e7:1d:4e:84:b0:ed:cd:fc:e1:d4:
94:0c:05:9b:14:56:9c:85:b0:a8:3d:e8:9b:a4:3a:e4:1b:08:
15:3c:d6:89:61:d7:52:a9:c7:c7:c9:ef:90:de:f1:7b:6d:73:
a1:f7:a0:f3:35:9a:d0:ff:82:b3:b0:2b:52:2c:6b:91:8a:f5:
8e:17:1a:9d:64:f2:f7:23:cf:a3:42:31:13:7a:d8:c2:c3:03:
7a:92:02:a6:d8:90:a4:2a:e8:7a:1e:3b:02:0a:be:04:53:00:
8b:fe:cc:e5:c1:fe:e2:08:18:31:de:b8:a7:b9:88:bd:96:63:
73:9e:5d:d1:50:06:cc:20:f8:1a:43:ec:fa:b7:74:fb:68:f3:
8b:e0:90:59:6a:f6:e2:14:0d:3f:53:cc:0b:a6:4a:f1:fd:2e:
d4:f3:e9:5e
-----BEGIN CERTIFICATE-----
MIIFgzCCBGugAwIBAgICF0MwDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAwwKRjM2
OEYyRDBBRjExMC8GA1UEBRMoMjVENjNFMDhFQUJFN0NGQTY3ODVENEMxRDZEMzQx
MTZERTE1QjNEQzAeFw0yMjA3MTEwOTU5NTRaFw0yMzA3MTEwOTU5NTRaMBgxFjAU
BgNVBAMMDTYyY2JmNDlkLTI2MDAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQDrw8xi+zdcOB1cCOIBY46zdIFzZJDiR04s9cQlptqi5zXY/XMTW2Y7NDvG
hU9tgU3jcHm672ia4WSo3I/kXexvAOlukzLVe4rerG1WJvGbOvAlzUA8bFqW2LOT
jptF7DfQdk9sBcyZcrgCsT/s5nqlMdtBSsL+T6FniZ4eRF+waTckWg8egRWfcIWx
4gQT2iG4+RHREsxYLlvikhAxhN1bw5M3cJI2Q9OmjEX/JfzOlk08+Ls5ErInqbVq
AVuBfJLKa6/9xeU6mzRbEqa5Mz9vH4zB4FVw+5g8MFieBw1a1CATDdRm3jFZG7IR
uqI/axUcvVss52U4a5ouhv+dVMjpAgMBAAGjggKlMIICoTAdBgNVHQ4EFgQUX3Kz
uoUNez5V+nC3Upd1FKXiimgwHwYDVR0jBBgwFoAUJdY+COq+fPpnhdTB1tNBFt4V
s9wwDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjhGMkQwLzdGNEE5OEVBNkUwNTExRTg5QzBENkU0QkY4QUVBMjI4L0pkWS1D
T3EtZlBwbmhkVEIxdE5CRnQ0VnM5dy5jcmwwZwYIKwYBBQUHAQEEWzBZMFcGCCsG
AQUFBzAChktyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hZnJp
bmljL0pkWS1DT3EtZlBwbmhkVEIxdE5CRnQ0VnM5dy5jZXIwTwYDVR0gAQH/BEUw
QzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5p
Yy5uZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEF
BQcwC4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJl
cl9yZXBvc2l0b3J5L0YzNjhGMkQwLzdGNEE5OEVBNkUwNTExRTg5QzBENkU0QkY4
QUVBMjI4LzM4NTNBMTg4MDEwMDExRUQ5RkI2QjdEMkYxMjIyNDY4LnJvYTA1Bggr
BgEFBQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54
bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBACa1JEwDQYJKoZIhvcNAQEL
BQADggEBAF/6fzzDroJ2FZYIXdSzL8qmFGIOdegY73tKwfKN9lSxYkG4TRpidglk
7y9pJtwA+z8Txob4f4W8yO6om0BpBVmoRDDguG1mNiJ/2Am8czGQEx3nYFhFyiBE
mFbYXamp2GzE5x1OhLDtzfzh1JQMBZsUVpyFsKg96JukOuQbCBU81olh11Kpx8fJ
75De8Xttc6H3oPM1mtD/grOwK1Isa5GK9Y4XGp1k8vcjz6NCMRN62MLDA3qSAqbY
kKQq6HoeOwIKvgRTAIv+zOXB/uIIGDHeuKe5iL2WY3OeXdFQBswg+BpD7Pq3dPto
84vgkFlq9uIUDT9TzAumSvH9LtTz6V4=
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:22:06 2023 by rpki-client on console-ams.rpki-client.org