Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/51525A4CE47711EEB614BB8E775412E6.roa
File: 51525A4CE47711EEB614BB8E775412E6.roa (raw, json)
Hash identifier: fSUNdqWeZ21eWN91zckyHxsTmU3hiVMFpybqARH32G4=
Subject key identifier: AA:78:27:71:0B:C4:E6:9D:EE:CE:36:42:C8:9C:1C:BA:3A:1B:C2:2A
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A263
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/51525A4CE47711EEB614BB8E775412E6.roa
Signing time: Sun 17 Mar 2024 15:59:21 +0000
ROA not before: Sun 17 Mar 2024 15:59:18 +0000
ROA not after: Tue 30 Apr 2024 15:59:18 +0000
asID: 63139
IP address blocks: 154.94.97.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 41571 (0xa263)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 17 15:59:18 2024 GMT
Not After : Apr 30 15:59:18 2024 GMT
Subject: CN=65f71359-be0c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:fb:3e:b3:2c:3e:3f:bb:c9:d6:a6:0e:28:df:
0c:68:e9:02:e4:d5:3d:51:b4:0f:6a:c8:9a:f8:b1:
76:64:e7:42:37:7d:9f:3e:75:6c:c4:95:4e:7e:2f:
4b:91:c4:34:8a:ec:82:2e:3a:3f:bd:a2:e9:e1:44:
07:17:42:d9:c7:58:e6:78:6e:3d:82:70:45:d4:32:
7a:63:e5:23:f8:f2:94:66:d8:79:77:4a:e1:66:74:
01:ad:5c:1d:21:82:88:b1:f9:5a:46:3f:e3:d0:d4:
cf:18:1c:01:42:10:87:d0:31:aa:66:ae:66:90:a7:
aa:d0:c9:dd:b4:73:40:0f:95:a5:59:1c:7d:97:8c:
7f:60:c6:99:81:e7:1a:b2:ba:0a:fb:84:68:4e:fc:
88:3c:9c:0e:26:c6:8f:bc:8d:3e:68:0b:a6:06:d9:
65:53:ad:a2:51:a5:17:4d:bf:c3:28:ea:c8:9c:f0:
c6:fc:cd:96:d0:b3:1f:f1:f2:81:b8:a0:ee:8b:b0:
78:06:e0:be:77:47:f7:03:cc:89:0a:85:f3:21:1a:
9a:f7:6a:d6:82:b1:84:8b:69:c5:09:ed:38:c0:71:
45:74:48:11:f7:d4:da:97:45:a0:97:20:8a:cb:03:
7b:17:cd:7c:53:fd:a1:88:d7:7e:9b:5d:6d:23:f0:
93:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:78:27:71:0B:C4:E6:9D:EE:CE:36:42:C8:9C:1C:BA:3A:1B:C2:2A
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/51525A4CE47711EEB614BB8E775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.94.97.0/24
Signature Algorithm: sha256WithRSAEncryption
09:67:de:f5:ff:2a:a4:5a:1d:50:89:8e:8d:14:3e:50:06:7a:
ae:ba:22:0b:27:12:85:4e:0a:25:2e:b6:74:39:62:99:07:d2:
26:2e:18:4e:54:97:98:07:99:ab:66:76:d2:5e:7d:6b:55:7a:
1c:60:00:9f:69:94:fe:62:b5:3b:d4:6f:0e:50:bb:7d:25:db:
15:cf:1c:d5:5a:86:2e:f9:fe:64:8c:f3:ef:0b:cb:4b:51:31:
c2:8f:be:c3:3e:84:7d:60:2c:16:08:02:67:9b:d4:b7:8e:14:
4d:88:a1:b6:a2:bb:92:55:58:18:59:24:b5:39:25:cc:a5:cd:
74:ae:96:47:16:a6:03:a9:05:eb:a9:ab:2f:af:28:5a:e5:6d:
7b:52:51:f2:2e:f2:6a:62:a2:43:1c:6f:a5:df:a9:45:a2:d5:
b9:38:c0:59:5d:dd:47:93:6c:6d:9b:e1:dc:61:f6:55:2b:be:
ec:1c:91:4e:b5:14:e6:9b:69:7c:01:c0:94:15:c4:4b:a7:c5:
33:ee:81:af:bb:d7:33:9f:a8:10:8b:bf:60:b0:d4:f6:16:4a:
d4:18:f9:0b:86:83:d7:94:c8:a8:3a:5d:5d:fc:42:5f:4c:d8:
4d:b0:68:b5:af:3c:13:bc:f5:ab:62:db:04:2d:26:90:87:92:
bb:9b:bb:6c
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAKJjMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQwMzE3MTU1OTE4WhcNMjQwNDMwMTU1OTE4WjAYMRYw
FAYDVQQDEw02NWY3MTM1OS1iZTBjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEApfs+syw+P7vJ1qYOKN8MaOkC5NU9UbQPasia+LF2ZOdCN32fPnVsxJVO
fi9LkcQ0iuyCLjo/vaLp4UQHF0LZx1jmeG49gnBF1DJ6Y+Uj+PKUZth5d0rhZnQB
rVwdIYKIsflaRj/j0NTPGBwBQhCH0DGqZq5mkKeq0MndtHNAD5WlWRx9l4x/YMaZ
gecasroK+4RoTvyIPJwOJsaPvI0+aAumBtllU62iUaUXTb/DKOrInPDG/M2W0LMf
8fKBuKDui7B4BuC+d0f3A8yJCoXzIRqa92rWgrGEi2nFCe04wHFFdEgR99Tal0Wg
lyCKywN7F818U/2hiNd+m11tI/CTkQIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFKp4
J3ELxOad7s42QsicHLo6G8IqMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC81MTUyNUE0Q0U0NzcxMUVFQjYxNEJCOEU3NzU0MTJFNi5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAml5hMA0GCSqGSIb3DQEB
CwUAA4IBAQAJZ971/yqkWh1QiY6NFD5QBnquuiILJxKFTgolLrZ0OWKZB9ImLhhO
VJeYB5mrZnbSXn1rVXocYACfaZT+YrU71G8OULt9JdsVzxzVWoYu+f5kjPPvC8tL
UTHCj77DPoR9YCwWCAJnm9S3jhRNiKG2oruSVVgYWSS1OSXMpc10rpZHFqYDqQXr
qasvryha5W17UlHyLvJqYqJDHG+l36lFotW5OMBZXd1Hk2xtm+HcYfZVK77sHJFO
tRTmm2l8AcCUFcRLp8Uz7oGvu9czn6gQi79gsNT2FkrUGPkLhoPXlMioOl1d/EJf
TNhNsGi1rzwTvPWrYtsELSaQh5K7m7ts
-----END CERTIFICATE-----
Generated at Wed May 1 02:03:19 2024 by rpki-client on console-ams.rpki-client.org