Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/52DCFE7E9F9011EFB9A201B3762E951A.roa
File: 52DCFE7E9F9011EFB9A201B3762E951A.roa (raw, json)
Hash identifier: Y/ykfjmg5438cHApFyLOBk/S2RAS01fTYiMTbvjpk9M=
Subject key identifier: 08:CD:27:AE:AF:9C:41:A9:4E:8B:DE:C5:05:E5:31:C8:2F:11:E7:39
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 010B74
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/52DCFE7E9F9011EFB9A201B3762E951A.roa
Signing time: Sun 10 Nov 2024 18:19:29 +0000
ROA not before: Sun 10 Nov 2024 18:19:25 +0000
ROA not after: Thu 21 Nov 2024 18:19:25 +0000
asID: 44559
IP address blocks: 154.205.248.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 68468 (0x10b74)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 10 18:19:25 2024 GMT
Not After : Nov 21 18:19:25 2024 GMT
Subject: CN=6730f930-bf22
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:1c:7c:1f:d5:d2:2a:92:c0:be:1d:c1:1b:4c:
44:9f:a2:da:52:89:8b:fd:e8:f5:1c:a0:3b:53:15:
d4:da:a5:04:44:7c:ef:53:4b:27:8a:01:0b:7d:e4:
23:b0:97:78:57:84:a7:39:e6:02:80:74:cb:8a:85:
8c:df:e0:04:f5:ec:92:2b:50:58:58:4c:e7:26:e2:
06:7a:5b:e3:9f:00:f4:ed:96:1f:b7:24:32:50:05:
94:4d:82:2a:29:21:8f:26:04:26:5c:72:59:1d:51:
1e:f8:e5:e2:c6:bd:c1:b0:d1:1c:2e:a3:9b:e6:51:
d4:83:f7:5e:ce:46:33:3d:cb:da:d9:00:55:3a:77:
86:f8:b9:e0:a4:8d:12:6b:c9:f2:c9:81:9a:df:68:
70:78:26:e3:de:c0:78:ed:cc:b8:3e:36:9e:f6:f2:
74:da:5c:ce:1d:7e:94:35:a9:5f:89:a1:95:dc:22:
68:16:75:2c:0e:8b:7c:13:65:d2:e3:de:72:ee:b1:
09:59:17:2b:95:b4:20:6a:4e:53:af:c9:cc:9f:c0:
63:a1:f7:1e:1b:3e:25:db:0d:2c:57:2b:99:a9:93:
d9:6f:52:df:1a:34:12:8b:6b:1f:8e:74:f4:c5:78:
28:23:74:69:5d:12:0b:77:69:ba:f1:34:5f:e8:0f:
aa:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:CD:27:AE:AF:9C:41:A9:4E:8B:DE:C5:05:E5:31:C8:2F:11:E7:39
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/52DCFE7E9F9011EFB9A201B3762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.205.248.0/24
Signature Algorithm: sha256WithRSAEncryption
cc:96:7e:56:59:21:61:d9:07:0f:78:af:d7:5b:97:2b:d3:27:
ba:1a:09:bd:9d:0a:55:b8:53:e2:60:79:df:2e:bd:67:2e:07:
6d:91:d8:1c:fd:77:20:5d:46:81:56:10:40:50:8a:d7:bd:c3:
32:f5:35:dd:cb:ff:52:cf:cd:2b:03:ce:00:59:49:73:39:b0:
8c:62:72:62:b6:7c:1a:9f:a5:8c:c7:2d:71:07:98:98:9f:8b:
dd:ed:dc:87:bf:eb:74:bc:a8:65:fc:95:20:28:ee:bf:ea:df:
6d:05:8f:e9:a5:6f:ce:03:4f:56:00:23:28:91:dd:0e:23:70:
f3:26:a5:23:99:0b:a9:59:fa:23:ba:d4:0f:b3:72:8d:4a:1d:
25:61:d8:58:b5:29:29:30:bb:99:5d:6d:44:da:41:96:60:0c:
07:9c:fb:3a:76:fa:5b:7a:b7:a0:99:bb:fb:bc:ff:12:b3:42:
57:e8:bb:7e:cb:ec:49:70:f1:b6:72:f4:1c:be:dd:99:f5:70:
da:d6:58:75:77:98:a3:ec:70:43:ba:32:1b:8c:fb:7b:8e:de:
46:01:a2:e9:be:f2:b6:4c:0d:bc:6e:43:e9:3b:1a:87:b5:e2:
43:2e:81:ec:53:6b:71:03:07:d4:92:df:71:75:11:63:64:f1:
7e:02:d0:52
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAQt0MA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQxMTEwMTgxOTI1WhcNMjQxMTIxMTgxOTI1WjAYMRYw
FAYDVQQDEw02NzMwZjkzMC1iZjIyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAvBx8H9XSKpLAvh3BG0xEn6LaUomL/ej1HKA7UxXU2qUERHzvU0snigEL
feQjsJd4V4SnOeYCgHTLioWM3+AE9eySK1BYWEznJuIGelvjnwD07ZYftyQyUAWU
TYIqKSGPJgQmXHJZHVEe+OXixr3BsNEcLqOb5lHUg/dezkYzPcva2QBVOneG+Lng
pI0Sa8nyyYGa32hweCbj3sB47cy4Pjae9vJ02lzOHX6UNalfiaGV3CJoFnUsDot8
E2XS495y7rEJWRcrlbQgak5Tr8nMn8BjofceGz4l2w0sVyuZqZPZb1LfGjQSi2sf
jnT0xXgoI3RpXRILd2m68TRf6A+q1wIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFAjN
J66vnEGpTovexQXlMcgvEec5MB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC81MkRDRkU3RTlGOTAxMUVGQjlBMjAxQjM3NjJFOTUxQS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAms34MA0GCSqGSIb3DQEB
CwUAA4IBAQDMln5WWSFh2QcPeK/XW5cr0ye6Ggm9nQpVuFPiYHnfLr1nLgdtkdgc
/XcgXUaBVhBAUIrXvcMy9TXdy/9Sz80rA84AWUlzObCMYnJitnwan6WMxy1xB5iY
n4vd7dyHv+t0vKhl/JUgKO6/6t9tBY/ppW/OA09WACMokd0OI3DzJqUjmQupWfoj
utQPs3KNSh0lYdhYtSkpMLuZXW1E2kGWYAwHnPs6dvpberegmbv7vP8Ss0JX6Lt+
y+xJcPG2cvQcvt2Z9XDa1lh1d5ij7HBDujIbjPt7jt5GAaLpvvK2TA28bkPpOxqH
teJDLoHsU2txAwfUkt9xdRFjZPF+AtBS
-----END CERTIFICATE-----
Generated at Fri Nov 22 02:47:22 2024 by rpki-client on console-fra.rpki-client.org