Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5135A976441511EFB8815147762E951A.roa
File: 5135A976441511EFB8815147762E951A.roa (raw, json)
Hash identifier: piLZfFMiuuhGw0f4bEBfOt5zewHHZh8vshpqwVAcA2E=
Subject key identifier: 2C:A0:3A:71:64:F1:A2:AD:93:EE:50:40:50:42:A6:2E:B6:07:36:DA
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: D31D
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5135A976441511EFB8815147762E951A.roa
Signing time: Wed 17 Jul 2024 08:19:42 +0000
ROA not before: Wed 17 Jul 2024 08:19:39 +0000
ROA not after: Sat 27 Jul 2024 08:19:39 +0000
asID: 22773
IP address blocks: 154.82.0.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 54045 (0xd31d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jul 17 08:19:39 2024 GMT
Not After : Jul 27 08:19:39 2024 GMT
Subject: CN=66977e9e-7834
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:fa:f4:25:58:ae:f2:a7:9e:78:eb:ee:41:39:07:
8e:71:af:fd:5d:4b:3c:5b:3b:aa:e8:5f:3e:bf:aa:
08:d6:5d:02:57:b4:22:73:28:97:40:46:17:5b:fe:
ed:39:64:10:32:0f:82:95:58:27:32:01:a2:a7:12:
b7:1b:d9:2e:f3:95:8e:26:37:9c:a3:c5:e5:8c:dc:
1d:9b:02:30:bc:a9:f1:c0:38:39:28:e6:f1:3a:13:
39:9b:23:f4:f5:0f:38:c8:23:b2:95:29:6d:ae:a9:
0c:e0:54:1b:a3:63:53:b2:e3:49:11:68:22:d0:b0:
51:e4:3e:7f:0f:f8:57:12:63:0c:64:3f:f2:8f:a5:
ae:78:74:a9:d5:c9:03:43:12:b6:ea:78:2a:c0:5e:
75:62:30:2f:69:ee:04:c7:bf:43:c2:80:09:db:49:
7a:62:08:13:96:a5:e6:ff:89:5a:eb:40:57:47:55:
e2:30:e9:4c:05:30:cb:82:6c:9c:29:ba:4a:03:f3:
b0:49:d0:af:5a:d6:c1:36:f9:6d:9a:a9:f1:b2:64:
7c:96:ae:fd:97:4a:95:0b:48:57:17:db:c3:eb:1b:
2d:1f:5f:37:55:70:ce:88:fd:7d:e3:6c:98:58:c9:
ee:f8:fb:b5:a8:1d:e1:40:95:f4:eb:9f:ae:2b:28:
1b:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:A0:3A:71:64:F1:A2:AD:93:EE:50:40:50:42:A6:2E:B6:07:36:DA
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5135A976441511EFB8815147762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.82.0.0/21
Signature Algorithm: sha256WithRSAEncryption
68:10:35:02:da:ec:f6:dd:f2:ac:e3:9c:52:ef:35:01:c2:60:
28:22:4b:62:0b:dc:ba:43:ac:85:b6:3a:a9:55:23:d3:66:ca:
98:f1:e7:93:0d:96:54:74:33:da:fa:17:4b:8a:49:94:87:f2:
3c:a7:e9:36:ce:d2:68:86:08:b4:61:c9:13:b3:7c:99:e9:3b:
cf:7a:41:8c:b1:77:41:54:e1:86:b6:e7:52:16:29:f4:d1:4e:
16:29:f9:0d:8d:6b:6e:72:fb:e5:cf:6d:45:0b:55:1c:a8:7d:
f3:8c:4a:99:e7:53:ee:5a:42:32:68:12:3b:08:2b:94:95:74:
e6:62:02:03:db:56:17:72:4b:b9:62:ee:b3:16:84:cc:eb:9b:
71:58:9e:7e:19:1e:79:14:d0:b7:d2:0b:0f:cd:3c:5e:ee:58:
f6:6b:6a:48:5d:8a:30:63:d6:70:fa:10:68:b8:7b:31:e3:5c:
eb:bb:75:0c:a9:82:21:f5:8f:b2:20:83:0e:7b:cc:60:ad:7e:
20:cf:d4:7a:ca:f4:2e:90:f2:09:43:7c:4c:4a:14:47:6f:42:
ce:8e:40:45:f4:7e:00:a5:5c:69:69:34:ba:c8:08:c8:8b:37:
8e:02:9d:09:0a:bd:5c:fe:22:66:25:4f:2e:71:25:15:62:50:
69:6f:35:6d
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDANMdMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQwNzE3MDgxOTM5WhcNMjQwNzI3MDgxOTM5WjAYMRYw
FAYDVQQDEw02Njk3N2U5ZS03ODM0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEA+vQlWK7yp5546+5BOQeOca/9XUs8Wzuq6F8+v6oI1l0CV7QicyiXQEYX
W/7tOWQQMg+ClVgnMgGipxK3G9ku85WOJjeco8XljNwdmwIwvKnxwDg5KObxOhM5
myP09Q84yCOylSltrqkM4FQbo2NTsuNJEWgi0LBR5D5/D/hXEmMMZD/yj6WueHSp
1ckDQxK26ngqwF51YjAvae4Ex79DwoAJ20l6YggTlqXm/4la60BXR1XiMOlMBTDL
gmycKbpKA/OwSdCvWtbBNvltmqnxsmR8lq79l0qVC0hXF9vD6xstH183VXDOiP19
42yYWMnu+Pu1qB3hQJX065+uKygb6QIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFCyg
OnFk8aKtk+5QQFBCpi62BzbaMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC81MTM1QTk3NjQ0MTUxMUVGQjg4MTUxNDc3NjJFOTUxQS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQDmlIAMA0GCSqGSIb3DQEB
CwUAA4IBAQBoEDUC2uz23fKs45xS7zUBwmAoIktiC9y6Q6yFtjqpVSPTZsqY8eeT
DZZUdDPa+hdLikmUh/I8p+k2ztJohgi0YckTs3yZ6TvPekGMsXdBVOGGtudSFin0
0U4WKfkNjWtucvvlz21FC1UcqH3zjEqZ51PuWkIyaBI7CCuUlXTmYgID21YXcku5
Yu6zFoTM65txWJ5+GR55FNC30gsPzTxe7lj2a2pIXYowY9Zw+hBouHsx41zru3UM
qYIh9Y+yIIMOe8xgrX4gz9R6yvQukPIJQ3xMShRHb0LOjkBF9H4ApVxpaTS6yAjI
izeOAp0JCr1c/iJmJU8ucSUVYlBpbzVt
-----END CERTIFICATE-----
Generated at Sun Jul 28 03:03:25 2024 by rpki-client on console-ams.rpki-client.org