Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/4D83308EFAE411EEB78DEE3F017001B1.roa
File: 4D83308EFAE411EEB78DEE3F017001B1.roa (raw, json)
Hash identifier: KEa95bmoOXWRm6yPUHv94dEYYlEQBWkZnnHN03Ejfjc=
Subject key identifier: 0A:44:DA:17:80:9D:37:E0:04:4F:0D:4A:8C:85:47:29:C6:BF:E7:55
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: AC60
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/4D83308EFAE411EEB78DEE3F017001B1.roa
Signing time: Mon 15 Apr 2024 04:54:56 +0000
ROA not before: Mon 15 Apr 2024 04:54:52 +0000
ROA not after: Thu 25 Apr 2024 04:54:52 +0000
asID: 21859
IP address blocks: 154.94.42.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 44128 (0xac60)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 15 04:54:52 2024 GMT
Not After : Apr 25 04:54:52 2024 GMT
Subject: CN=661cb320-a220
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:66:33:91:64:86:d4:43:5e:9a:e8:c6:cf:00:
a7:a5:2e:cc:8c:ba:9c:0a:43:01:b4:a5:d5:de:29:
56:c3:86:25:b6:db:11:80:67:2e:e7:a2:f9:fe:44:
df:94:2d:ea:14:95:db:40:d0:aa:bf:1f:a7:2c:cb:
4a:79:a7:41:e7:06:d5:a2:5e:5d:fe:c8:5e:47:c6:
d7:75:9a:be:0b:e7:37:87:54:ad:fd:87:bb:2a:b9:
cd:05:32:60:02:df:17:27:e2:a3:e7:fc:a6:5c:18:
42:42:06:8f:9d:d3:bc:77:22:49:e7:29:e2:77:25:
3f:79:6f:83:00:d1:33:12:4d:f3:9b:44:18:f5:26:
e4:3f:1a:c9:f8:12:0e:a4:88:6e:8f:6e:ad:22:3c:
9a:1d:bf:89:f2:2e:c5:08:3a:a1:8b:23:3b:be:78:
f2:13:5f:4e:b4:f6:41:f6:5d:59:ca:31:00:54:44:
c1:f9:eb:74:12:38:d1:c2:9a:9d:b8:a5:9c:fa:3d:
46:32:51:f4:13:54:62:bc:29:d7:75:54:96:b2:4b:
6e:19:26:2d:0e:6b:4e:3f:06:34:71:d5:83:e3:6e:
2e:46:25:b8:37:cf:a4:8e:18:27:ba:cf:e3:60:31:
6a:78:d7:57:18:de:7e:f4:95:19:3c:aa:4d:67:a3:
0b:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:44:DA:17:80:9D:37:E0:04:4F:0D:4A:8C:85:47:29:C6:BF:E7:55
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/4D83308EFAE411EEB78DEE3F017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.94.42.0/24
Signature Algorithm: sha256WithRSAEncryption
57:c4:d1:41:a3:f0:54:6b:68:ba:e2:ac:9f:a9:14:a3:c2:4e:
d9:5d:12:d1:2a:01:d0:8f:88:c3:3f:1a:3d:09:2f:ea:5f:5e:
e7:39:97:27:72:12:96:42:cf:23:6e:b3:30:74:62:17:b1:be:
d6:33:2d:bf:9d:8f:67:a2:e0:ea:8f:ab:36:db:b5:4a:2a:4c:
8a:ea:43:18:54:0f:0e:04:ac:fd:19:5a:35:73:0e:2f:f0:73:
3a:9f:77:39:a2:6f:0c:cd:e0:cd:70:e9:dd:83:3f:94:26:3f:
98:b1:f1:08:25:4d:bc:89:f4:74:0e:cd:10:51:4c:af:8c:8a:
bd:c3:37:62:dc:2b:1b:7b:21:f7:70:e0:5f:31:7f:f4:a3:cc:
80:d8:96:2d:f0:b8:d3:d9:09:8d:0f:35:2b:98:3a:4e:24:9f:
d8:b2:20:95:21:78:29:4e:fa:e2:1f:95:f9:f6:28:8a:f6:de:
49:f5:4a:f0:78:5c:54:09:a8:89:9e:2d:21:92:0b:b0:d8:29:
f1:a7:29:41:96:de:c8:e2:ea:22:d3:8a:fa:b0:57:ea:63:a2:
7c:7d:0e:6d:aa:b1:21:48:60:75:2a:0a:65:8d:2f:8a:48:8a:
20:a7:e3:1e:f9:77:b6:d4:6c:8e:bc:65:8e:3c:29:50:55:4e:
9e:4e:ca:02
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAKxgMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQwNDE1MDQ1NDUyWhcNMjQwNDI1MDQ1NDUyWjAYMRYw
FAYDVQQDEw02NjFjYjMyMC1hMjIwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAmGYzkWSG1ENemujGzwCnpS7MjLqcCkMBtKXV3ilWw4YlttsRgGcu56L5
/kTflC3qFJXbQNCqvx+nLMtKeadB5wbVol5d/sheR8bXdZq+C+c3h1St/Ye7KrnN
BTJgAt8XJ+Kj5/ymXBhCQgaPndO8dyJJ5ynidyU/eW+DANEzEk3zm0QY9SbkPxrJ
+BIOpIhuj26tIjyaHb+J8i7FCDqhiyM7vnjyE19OtPZB9l1ZyjEAVETB+et0EjjR
wpqduKWc+j1GMlH0E1RivCnXdVSWsktuGSYtDmtOPwY0cdWD424uRiW4N8+kjhgn
us/jYDFqeNdXGN5+9JUZPKpNZ6MLhwIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFApE
2heAnTfgBE8NSoyFRynGv+dVMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC80RDgzMzA4RUZBRTQxMUVFQjc4REVFM0YwMTcwMDFCMS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAml4qMA0GCSqGSIb3DQEB
CwUAA4IBAQBXxNFBo/BUa2i64qyfqRSjwk7ZXRLRKgHQj4jDPxo9CS/qX17nOZcn
chKWQs8jbrMwdGIXsb7WMy2/nY9nouDqj6s227VKKkyK6kMYVA8OBKz9GVo1cw4v
8HM6n3c5om8MzeDNcOndgz+UJj+YsfEIJU28ifR0Ds0QUUyvjIq9wzdi3CsbeyH3
cOBfMX/0o8yA2JYt8LjT2QmNDzUrmDpOJJ/YsiCVIXgpTvriH5X59iiK9t5J9Urw
eFxUCaiJni0hkguw2CnxpylBlt7I4uoi04r6sFfqY6J8fQ5tqrEhSGB1KgpljS+K
SIogp+Me+Xe21GyOvGWOPClQVU6eTsoC
-----END CERTIFICATE-----
Generated at Thu Apr 25 10:41:10 2024 by rpki-client on console-ams.rpki-client.org