Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/4226B3A0D81311ECB00574A6F1222468.roa
File: 4226B3A0D81311ECB00574A6F1222468.roa (raw, json)
Hash identifier: ETrDOnFOT4k/EME7vVLH+exH+wiTFn3e6vyUvFmNtJE=
Subject key identifier: 57:94:9D:A6:92:7A:56:3C:CC:50:13:4F:5D:D5:1A:F6:EF:B0:62:3C
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 1661
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/4226B3A0D81311ECB00574A6F1222468.roa
Signing time: Fri 20 May 2022 08:02:57 +0000
ROA not before: Fri 20 May 2022 08:02:53 +0000
ROA not after: Fri 30 Jun 2023 08:02:53 +0000
asID: 137510
IP address blocks: 154.205.187.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5729 (0x1661)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 20 08:02:53 2022 GMT
Not After : Jun 30 08:02:53 2023 GMT
Subject: CN=62874b31-ecce
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ee:e4:06:43:5e:f9:23:f2:b1:6e:a9:19:3c:c0:
08:5c:d5:8e:09:4e:5a:30:f1:54:bb:6e:0a:d9:00:
8d:f5:40:f0:63:c7:99:41:21:80:e5:00:a3:c9:c1:
f9:c7:c2:37:de:92:fe:af:eb:72:2c:e3:e8:e9:3a:
7c:0b:17:f8:1a:a2:54:48:33:de:b6:08:17:77:96:
90:0c:8c:35:02:3c:af:54:10:5c:77:d3:ab:61:1a:
ba:ec:59:57:a1:72:cc:e0:ef:83:67:84:62:6b:9f:
31:ab:66:cd:d2:12:9d:e2:13:ab:32:df:a3:4b:23:
69:b7:aa:3f:1c:ca:46:d4:73:a6:e7:d5:c6:19:56:
3e:9b:dc:eb:cb:06:23:1e:10:f2:d7:49:19:1f:7f:
4e:3b:b3:c2:c8:f9:07:80:f4:12:58:b7:31:49:08:
ba:d1:95:8e:2f:ce:15:c0:20:f0:55:b3:52:e1:57:
5f:e2:b4:aa:75:f7:d7:a3:08:ec:e5:fc:d0:44:a5:
76:a2:e4:b9:dc:09:cf:99:de:02:0e:20:10:bc:69:
de:3d:78:a9:e4:01:85:e5:d0:97:db:a1:be:bf:df:
55:9a:1e:a5:a7:dc:66:fc:2f:84:de:97:15:98:65:
98:c0:16:99:f6:93:2e:26:f8:2b:9e:23:6c:68:aa:
ac:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:94:9D:A6:92:7A:56:3C:CC:50:13:4F:5D:D5:1A:F6:EF:B0:62:3C
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/4226B3A0D81311ECB00574A6F1222468.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.205.187.0/24
Signature Algorithm: sha256WithRSAEncryption
08:fe:6c:9a:29:da:2d:58:eb:97:f0:f3:75:d7:95:16:57:4a:
d4:9e:a1:74:63:71:8e:c6:22:39:eb:31:84:90:0b:61:b1:12:
c4:71:00:11:47:8f:ee:47:bf:4e:b8:67:5c:06:6f:dd:ff:89:
bb:21:57:96:34:21:ec:5b:3e:89:ab:85:3d:81:7f:96:bf:ab:
8a:ea:c3:86:a9:a0:a4:7b:8b:b0:56:ca:5b:4c:cf:86:d8:0d:
b5:eb:cb:ef:c6:2d:f0:16:3e:7b:9c:18:40:45:08:e6:c0:04:
89:45:43:f4:14:45:e4:8f:81:11:5d:37:31:b3:ed:27:73:e2:
4f:38:75:23:d3:04:02:26:b4:f4:41:f9:e0:1a:f6:a0:f0:f7:
28:fc:99:1b:1b:18:cb:3b:37:e4:22:e3:d0:45:50:05:0a:69:
2f:dc:e3:59:04:67:ae:c4:66:35:81:31:32:7c:94:9f:e2:14:
38:b9:83:07:c1:1c:2a:82:19:01:fd:46:48:6d:2c:2f:2a:31:
df:6e:39:b9:61:23:52:b1:29:ea:e7:bf:b4:60:4a:81:52:ae:
a4:8d:90:50:e6:ee:d1:91:da:3e:b6:f8:3c:a5:2b:bb:a5:23:
05:d4:5f:34:93:9c:98:74:df:57:98:68:7e:a1:59:7b:78:3d:
69:07:6b:25
-----BEGIN CERTIFICATE-----
MIIFgzCCBGugAwIBAgICFmEwDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAwwKRjM2
OEYyRDBBRjExMC8GA1UEBRMoMjVENjNFMDhFQUJFN0NGQTY3ODVENEMxRDZEMzQx
MTZERTE1QjNEQzAeFw0yMjA1MjAwODAyNTNaFw0yMzA2MzAwODAyNTNaMBgxFjAU
BgNVBAMMDTYyODc0YjMxLWVjY2UwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQDu5AZDXvkj8rFuqRk8wAhc1Y4JTlow8VS7bgrZAI31QPBjx5lBIYDlAKPJ
wfnHwjfekv6v63Is4+jpOnwLF/gaolRIM962CBd3lpAMjDUCPK9UEFx306thGrrs
WVehcszg74NnhGJrnzGrZs3SEp3iE6sy36NLI2m3qj8cykbUc6bn1cYZVj6b3OvL
BiMeEPLXSRkff047s8LI+QeA9BJYtzFJCLrRlY4vzhXAIPBVs1LhV1/itKp199ej
COzl/NBEpXai5LncCc+Z3gIOIBC8ad49eKnkAYXl0Jfbob6/31WaHqWn3Gb8L4Te
lxWYZZjAFpn2ky4m+CueI2xoqqzLAgMBAAGjggKlMIICoTAdBgNVHQ4EFgQUV5Sd
ppJ6VjzMUBNPXdUa9u+wYjwwHwYDVR0jBBgwFoAUJdY+COq+fPpnhdTB1tNBFt4V
s9wwDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjhGMkQwLzdGNEE5OEVBNkUwNTExRTg5QzBENkU0QkY4QUVBMjI4L0pkWS1D
T3EtZlBwbmhkVEIxdE5CRnQ0VnM5dy5jcmwwZwYIKwYBBQUHAQEEWzBZMFcGCCsG
AQUFBzAChktyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hZnJp
bmljL0pkWS1DT3EtZlBwbmhkVEIxdE5CRnQ0VnM5dy5jZXIwTwYDVR0gAQH/BEUw
QzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5p
Yy5uZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEF
BQcwC4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJl
cl9yZXBvc2l0b3J5L0YzNjhGMkQwLzdGNEE5OEVBNkUwNTExRTg5QzBENkU0QkY4
QUVBMjI4LzQyMjZCM0EwRDgxMzExRUNCMDA1NzRBNkYxMjIyNDY4LnJvYTA1Bggr
BgEFBQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54
bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBACazbswDQYJKoZIhvcNAQEL
BQADggEBAAj+bJop2i1Y65fw83XXlRZXStSeoXRjcY7GIjnrMYSQC2GxEsRxABFH
j+5Hv064Z1wGb93/ibshV5Y0IexbPomrhT2Bf5a/q4rqw4apoKR7i7BWyltMz4bY
DbXry+/GLfAWPnucGEBFCObABIlFQ/QUReSPgRFdNzGz7Sdz4k84dSPTBAImtPRB
+eAa9qDw9yj8mRsbGMs7N+Qi49BFUAUKaS/c41kEZ67EZjWBMTJ8lJ/iFDi5gwfB
HCqCGQH9RkhtLC8qMd9uOblhI1KxKernv7RgSoFSrqSNkFDm7tGR2j62+DylK7ul
IwXUXzSTnJh031eYaH6hWXt4PWkHayU=
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:22:06 2023 by rpki-client on console-ams.rpki-client.org