Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/3BABA70ACFA411EC96661C9FF1222468.roa
File: 3BABA70ACFA411EC96661C9FF1222468.roa (raw, json)
Hash identifier: U76nEVHwwUZG2x9ODJJfMFzl/re9cOXBsLZL/wzvfTU=
Subject key identifier: 5C:C7:80:8F:FA:A8:7D:63:61:17:A0:C1:3A:36:69:A8:15:EA:F9:6C
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 161E
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/3BABA70ACFA411EC96661C9FF1222468.roa
Signing time: Mon 09 May 2022 14:28:02 +0000
ROA not before: Mon 09 May 2022 14:27:58 +0000
ROA not after: Wed 31 May 2023 14:27:58 +0000
asID: 136970
IP address blocks: 154.213.27.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5662 (0x161e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 9 14:27:58 2022 GMT
Not After : May 31 14:27:58 2023 GMT
Subject: CN=627924f2-3fcf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:19:9b:17:8e:2c:66:9a:03:f2:2f:50:c0:54:
67:97:cb:e0:39:4d:a6:ba:51:0f:f9:15:71:c3:ef:
d5:4e:e1:58:94:13:dd:33:d4:13:cf:7c:4e:bc:6b:
5c:7d:b8:fe:62:ce:b2:51:93:0c:b0:f5:11:01:39:
6c:cf:fd:21:3a:ba:e9:78:93:99:2b:86:c7:2d:06:
7b:fa:ab:45:b7:74:d0:f6:fe:bb:43:55:11:99:e2:
e9:77:23:88:21:d7:de:44:28:cc:82:19:de:b8:86:
0a:62:bc:4d:d3:a1:15:78:20:92:ee:48:e2:66:1a:
5f:31:a5:2d:6f:a5:88:4c:e4:1d:3a:c5:df:c3:15:
65:bd:bb:a4:54:85:ef:ee:42:0e:d0:38:7a:a5:5a:
bf:38:01:47:10:e7:c0:29:77:e8:7b:40:b6:2b:4a:
97:01:92:15:a6:b6:de:ea:b1:13:53:1b:2d:64:f3:
66:30:64:d9:3e:41:0a:95:16:f0:83:84:09:c8:c3:
5e:88:24:15:bc:ff:7a:15:a9:6c:fc:82:3e:e5:b8:
25:eb:b2:36:a6:31:12:5f:63:1c:b7:22:5e:88:f7:
c1:50:c0:1e:e6:0a:5c:1d:64:50:c5:c0:cf:20:37:
05:db:b8:5a:88:65:57:97:98:41:17:1c:64:44:4b:
9e:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:C7:80:8F:FA:A8:7D:63:61:17:A0:C1:3A:36:69:A8:15:EA:F9:6C
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/3BABA70ACFA411EC96661C9FF1222468.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.213.27.0/24
Signature Algorithm: sha256WithRSAEncryption
22:36:3f:14:83:fa:bd:c9:04:3d:8e:d0:e5:90:16:c1:af:f7:
f4:6d:ab:a4:fa:b0:4e:83:12:12:32:b5:2b:5f:c8:91:34:da:
a1:a0:e0:58:6c:07:8f:3e:e7:02:7f:10:9d:41:27:2e:4b:81:
e5:70:33:76:f0:95:12:ea:70:eb:1e:78:b7:9b:26:44:d3:40:
4f:77:43:76:a3:ce:c8:5a:aa:ba:d8:5a:0e:e4:e7:64:90:d4:
8a:a0:68:82:0d:ff:39:e6:ff:47:b8:fa:9c:de:13:8f:3a:b8:
f2:ed:ef:58:7a:59:ce:1d:0b:26:71:5e:8b:af:0e:a1:5a:db:
a6:45:7d:0d:57:a1:1a:24:66:9c:b8:bb:0d:41:fa:40:74:39:
35:e9:5f:22:2f:a7:65:ea:54:e9:19:f9:cc:0d:eb:e6:47:d1:
46:85:19:5d:d9:dd:a4:30:50:c9:83:4f:6f:d7:c3:9e:20:f2:
f8:f4:f8:7a:45:27:a6:64:3c:ce:5a:96:be:f7:23:64:74:94:
d2:4d:f5:d5:07:d2:96:d6:3e:fe:fd:0c:24:0f:85:a4:11:9e:
3b:16:43:a0:dd:a5:a9:af:55:3d:1c:24:7c:ad:0a:a9:5e:d5:
c4:66:9b:33:9b:2a:80:01:5e:e9:45:e7:ef:6e:e6:5c:8e:fe:
18:f7:e6:54
-----BEGIN CERTIFICATE-----
MIIFgzCCBGugAwIBAgICFh4wDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAwwKRjM2
OEYyRDBBRjExMC8GA1UEBRMoMjVENjNFMDhFQUJFN0NGQTY3ODVENEMxRDZEMzQx
MTZERTE1QjNEQzAeFw0yMjA1MDkxNDI3NThaFw0yMzA1MzExNDI3NThaMBgxFjAU
BgNVBAMMDTYyNzkyNGYyLTNmY2YwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQC8GZsXjixmmgPyL1DAVGeXy+A5Taa6UQ/5FXHD79VO4ViUE90z1BPPfE68
a1x9uP5izrJRkwyw9REBOWzP/SE6uul4k5krhsctBnv6q0W3dND2/rtDVRGZ4ul3
I4gh195EKMyCGd64hgpivE3ToRV4IJLuSOJmGl8xpS1vpYhM5B06xd/DFWW9u6RU
he/uQg7QOHqlWr84AUcQ58Apd+h7QLYrSpcBkhWmtt7qsRNTGy1k82YwZNk+QQqV
FvCDhAnIw16IJBW8/3oVqWz8gj7luCXrsjamMRJfYxy3Il6I98FQwB7mClwdZFDF
wM8gNwXbuFqIZVeXmEEXHGRES57TAgMBAAGjggKlMIICoTAdBgNVHQ4EFgQUXMeA
j/qofWNhF6DBOjZpqBXq+WwwHwYDVR0jBBgwFoAUJdY+COq+fPpnhdTB1tNBFt4V
s9wwDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjhGMkQwLzdGNEE5OEVBNkUwNTExRTg5QzBENkU0QkY4QUVBMjI4L0pkWS1D
T3EtZlBwbmhkVEIxdE5CRnQ0VnM5dy5jcmwwZwYIKwYBBQUHAQEEWzBZMFcGCCsG
AQUFBzAChktyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hZnJp
bmljL0pkWS1DT3EtZlBwbmhkVEIxdE5CRnQ0VnM5dy5jZXIwTwYDVR0gAQH/BEUw
QzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5p
Yy5uZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEF
BQcwC4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJl
cl9yZXBvc2l0b3J5L0YzNjhGMkQwLzdGNEE5OEVBNkUwNTExRTg5QzBENkU0QkY4
QUVBMjI4LzNCQUJBNzBBQ0ZBNDExRUM5NjY2MUM5RkYxMjIyNDY4LnJvYTA1Bggr
BgEFBQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54
bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBACa1RswDQYJKoZIhvcNAQEL
BQADggEBACI2PxSD+r3JBD2O0OWQFsGv9/Rtq6T6sE6DEhIytStfyJE02qGg4Fhs
B48+5wJ/EJ1BJy5LgeVwM3bwlRLqcOseeLebJkTTQE93Q3ajzshaqrrYWg7k52SQ
1IqgaIIN/znm/0e4+pzeE486uPLt71h6Wc4dCyZxXouvDqFa26ZFfQ1XoRokZpy4
uw1B+kB0OTXpXyIvp2XqVOkZ+cwN6+ZH0UaFGV3Z3aQwUMmDT2/Xw54g8vj0+HpF
J6ZkPM5alr73I2R0lNJN9dUH0pbWPv79DCQPhaQRnjsWQ6DdpamvVT0cJHytCqle
1cRmmzObKoABXulF5+9u5lyO/hj35lQ=
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:22:06 2023 by rpki-client on console-ams.rpki-client.org