Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/531081E00EA911EF81C54162017001B1.roa
File: 531081E00EA911EF81C54162017001B1.roa (raw, json)
Hash identifier: BE6pQbojK5yEvtla8gTEGivBdl0Yo8ZdI4oOn0rabho=
Subject key identifier: CF:8A:A9:38:6A:A1:7F:F8:82:C6:6B:91:65:A3:87:2F:BC:42:3F:0C
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: B660
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/531081E00EA911EF81C54162017001B1.roa
Signing time: Fri 10 May 2024 08:43:08 +0000
ROA not before: Fri 10 May 2024 08:43:05 +0000
ROA not after: Mon 20 May 2024 08:43:05 +0000
asID: 142062
IP address blocks: 154.206.202.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 46688 (0xb660)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 10 08:43:05 2024 GMT
Not After : May 20 08:43:05 2024 GMT
Subject: CN=663dde1c-2882
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:54:91:04:45:5e:42:a9:e1:b1:85:82:42:86:
d1:02:a5:3e:d1:d8:58:82:51:f8:aa:fa:20:d1:bf:
2a:9e:0f:b7:65:35:e6:fd:e5:bc:e5:5f:74:80:26:
07:57:11:48:81:89:01:96:dd:92:18:4a:bc:af:b8:
fa:d3:76:f8:ae:ce:09:d4:b3:bf:e7:a7:b6:0f:cd:
01:5b:d9:11:05:09:54:8e:85:39:12:2a:c8:e3:b5:
44:30:79:fb:89:92:c4:cc:a2:0e:39:8c:c2:df:20:
f3:fc:63:4a:5b:d9:bd:5e:f5:cb:bb:89:be:80:85:
63:59:ef:fc:55:0a:2b:62:2a:1e:64:f3:51:2c:4f:
8d:45:8f:a9:18:89:e4:01:0d:cf:bb:81:e3:e8:02:
d7:3d:90:36:78:b1:1c:90:8d:00:4f:b6:77:e7:e8:
6e:33:07:a9:81:11:32:8a:89:a8:b9:2d:93:d0:30:
21:b6:c9:b9:6a:41:90:82:27:f0:33:5c:7b:33:e7:
a4:bc:d3:44:84:bd:3b:d1:ab:7d:01:42:0d:43:aa:
b8:b9:af:a0:46:43:e2:03:ae:49:0a:48:a7:22:31:
d4:2e:79:a8:1b:3b:65:9d:14:1f:5a:3d:cf:24:71:
de:cc:c3:66:c2:e6:82:74:76:4e:a0:83:12:49:83:
25:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:8A:A9:38:6A:A1:7F:F8:82:C6:6B:91:65:A3:87:2F:BC:42:3F:0C
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/531081E00EA911EF81C54162017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.206.202.0/24
Signature Algorithm: sha256WithRSAEncryption
0e:7a:2e:a2:60:03:db:ce:3f:59:51:5a:76:da:10:59:80:50:
51:41:8c:69:ba:89:56:28:1f:32:fc:b9:e0:2c:00:7d:5b:b7:
57:e0:1e:b9:93:03:13:26:40:b9:3d:52:86:ea:84:da:cf:77:
6c:67:50:8c:f0:21:07:ae:26:74:f5:3c:89:5b:18:4e:48:3e:
78:d5:a7:62:5c:be:da:b5:e5:78:f3:89:9c:c9:18:0d:9b:cd:
03:bf:e5:27:ac:76:62:e3:6f:b0:bd:94:c7:18:dc:e7:bc:b9:
b3:7a:2e:d0:1b:a8:af:2e:83:07:c8:9f:c9:51:76:d3:75:e0:
38:52:07:2e:e0:37:37:0c:02:94:51:04:6a:79:a7:53:79:03:
38:7f:e5:4e:24:7b:e0:5d:c9:1b:85:14:77:3f:a1:3d:cd:47:
83:c8:34:ce:21:a2:03:f5:7b:96:a5:2d:15:c6:83:d3:20:ea:
81:a0:62:dc:d6:77:a1:a2:5d:63:7a:b5:70:0b:cf:22:7c:10:
be:77:d7:58:a8:d8:07:73:fa:c3:9a:e0:2f:d7:c0:af:d4:52:
61:dd:57:c2:ec:ff:60:75:4f:f0:e7:9c:24:cc:df:a9:3e:e6:
24:22:13:37:b6:a9:7f:9e:b2:10:f0:44:ed:aa:fd:09:65:86:
72:1b:90:fe
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDALZgMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQwNTEwMDg0MzA1WhcNMjQwNTIwMDg0MzA1WjAYMRYw
FAYDVQQDEw02NjNkZGUxYy0yODgyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAs1SRBEVeQqnhsYWCQobRAqU+0dhYglH4qvog0b8qng+3ZTXm/eW85V90
gCYHVxFIgYkBlt2SGEq8r7j603b4rs4J1LO/56e2D80BW9kRBQlUjoU5EirI47VE
MHn7iZLEzKIOOYzC3yDz/GNKW9m9XvXLu4m+gIVjWe/8VQorYioeZPNRLE+NRY+p
GInkAQ3Pu4Hj6ALXPZA2eLEckI0AT7Z35+huMwepgREyiomouS2T0DAhtsm5akGQ
gifwM1x7M+ekvNNEhL070at9AUINQ6q4ua+gRkPiA65JCkinIjHULnmoGztlnRQf
Wj3PJHHezMNmwuaCdHZOoIMSSYMl5wIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFM+K
qThqoX/4gsZrkWWjhy+8Qj8MMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC81MzEwODFFMDBFQTkxMUVGODFDNTQxNjIwMTcwMDFCMS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAms7KMA0GCSqGSIb3DQEB
CwUAA4IBAQAOei6iYAPbzj9ZUVp22hBZgFBRQYxpuolWKB8y/LngLAB9W7dX4B65
kwMTJkC5PVKG6oTaz3dsZ1CM8CEHriZ09TyJWxhOSD541adiXL7ateV484mcyRgN
m80Dv+UnrHZi42+wvZTHGNznvLmzei7QG6ivLoMHyJ/JUXbTdeA4Ugcu4Dc3DAKU
UQRqeadTeQM4f+VOJHvgXckbhRR3P6E9zUeDyDTOIaID9XuWpS0VxoPTIOqBoGLc
1nehol1jerVwC88ifBC+d9dYqNgHc/rDmuAv18Cv1FJh3VfC7P9gdU/w55wkzN+p
PuYkIhM3tql/nrIQ8ETtqv0JZYZyG5D+
-----END CERTIFICATE-----
Generated at Thu Jun 6 16:48:08 2024 by rpki-client on console-fra.rpki-client.org