Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5451B3B8441311EF8220C9B7762E951A.roa
File: 5451B3B8441311EF8220C9B7762E951A.roa (raw, json)
Hash identifier: OiCW0ak30zf49op87azH4vraW/jMAnHWeYbjM/WvxtU=
Subject key identifier: 79:4D:1F:E2:65:2D:BD:AE:37:E0:9C:DF:A4:2C:95:33:DD:37:9B:8F
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: D305
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5451B3B8441311EF8220C9B7762E951A.roa
Signing time: Wed 17 Jul 2024 08:05:28 +0000
ROA not before: Wed 17 Jul 2024 08:05:25 +0000
ROA not after: Sat 27 Jul 2024 08:05:25 +0000
asID: 22773
IP address blocks: 154.214.28.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 54021 (0xd305)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jul 17 08:05:25 2024 GMT
Not After : Jul 27 08:05:25 2024 GMT
Subject: CN=66977b48-ee8d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f9:4a:90:0c:4b:ca:e8:b6:c0:fb:21:51:1a:cd:
41:69:7d:5c:b9:e5:fe:95:56:8d:80:a0:b4:20:20:
93:ae:0e:9d:f3:05:b4:6b:aa:9f:a9:a0:27:76:31:
fe:bb:ec:60:70:fd:c1:41:cc:34:6e:82:37:95:92:
1c:f2:6f:15:fc:a5:2a:11:a0:7c:fc:9e:17:af:37:
e1:ca:c7:8a:e1:4d:aa:58:3d:32:a3:ca:f2:7e:ae:
d0:22:79:eb:05:27:c4:00:78:ac:b2:ca:a5:e6:7e:
fd:ab:40:dd:77:71:d1:c7:b9:c2:85:14:d9:16:e4:
29:03:e9:23:3e:ed:86:13:ee:80:1b:b3:5e:54:91:
0f:b3:69:3a:e4:d3:83:89:50:f9:fd:cf:e3:54:f1:
c6:80:88:66:d4:3a:ca:af:de:cd:fd:d0:4d:df:15:
51:d2:e8:e8:80:7a:bf:63:88:bd:19:4a:97:86:bc:
bf:41:68:d0:ea:f1:1b:65:ad:14:db:3a:25:b1:03:
7b:4c:c2:ed:eb:1d:37:e9:74:05:3c:82:10:55:ce:
70:af:91:c2:9d:32:da:12:f2:c1:c6:0f:67:d0:bf:
9c:3f:6d:0f:13:ba:0d:33:a6:3a:a1:89:fa:e6:b0:
9e:14:54:2d:19:7d:78:89:29:dc:8f:44:48:24:17:
12:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:4D:1F:E2:65:2D:BD:AE:37:E0:9C:DF:A4:2C:95:33:DD:37:9B:8F
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5451B3B8441311EF8220C9B7762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.214.28.0/22
Signature Algorithm: sha256WithRSAEncryption
0e:6e:fa:5b:2e:e8:d6:82:27:38:a6:b2:69:bc:d1:6e:dd:47:
b2:23:3d:42:d8:c3:4f:5d:1f:d2:c5:10:ab:bc:44:dc:d6:5b:
e2:02:2d:9b:f3:e3:d9:68:16:b9:88:78:ec:c2:4b:a8:31:47:
a2:d7:52:9a:f4:63:a0:ce:13:fe:12:3d:82:78:31:7d:62:8a:
c3:e7:c9:5e:e4:55:a6:50:67:4e:70:25:bb:b5:07:a7:e6:3a:
57:4d:e3:69:9f:7b:ab:44:bc:74:59:c9:f0:01:62:b4:58:6d:
82:c2:56:be:40:f4:20:59:21:0a:ca:3f:9e:6d:2c:ff:48:c0:
11:08:fc:bb:02:60:6a:c0:6e:e2:ac:47:eb:e6:db:db:bf:75:
46:be:c7:0f:c4:64:f0:79:d6:6e:f8:78:a5:a9:71:8b:6a:e0:
74:e7:2b:4c:8f:d8:13:76:4d:57:cc:7c:28:ce:5f:62:12:b2:
38:26:97:2a:c7:fc:82:31:6e:c6:a1:83:b4:ba:38:0a:77:3d:
53:c8:a5:da:88:6b:56:5a:15:ae:f0:05:66:48:c1:e2:47:9a:
a9:d3:6a:a9:6e:12:84:4d:be:1e:4b:09:73:5d:fc:c0:2c:26:
17:b2:5e:6b:89:af:db:22:9f:6a:52:b9:7d:62:fd:a0:be:aa:
fb:19:73:0d
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDANMFMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQwNzE3MDgwNTI1WhcNMjQwNzI3MDgwNTI1WjAYMRYw
FAYDVQQDEw02Njk3N2I0OC1lZThkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEA+UqQDEvK6LbA+yFRGs1BaX1cueX+lVaNgKC0ICCTrg6d8wW0a6qfqaAn
djH+u+xgcP3BQcw0boI3lZIc8m8V/KUqEaB8/J4XrzfhyseK4U2qWD0yo8ryfq7Q
InnrBSfEAHisssql5n79q0Ddd3HRx7nChRTZFuQpA+kjPu2GE+6AG7NeVJEPs2k6
5NODiVD5/c/jVPHGgIhm1DrKr97N/dBN3xVR0ujogHq/Y4i9GUqXhry/QWjQ6vEb
Za0U2zolsQN7TMLt6x036XQFPIIQVc5wr5HCnTLaEvLBxg9n0L+cP20PE7oNM6Y6
oYn65rCeFFQtGX14iSncj0RIJBcSEwIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFHlN
H+JlLb2uN+Cc36QslTPdN5uPMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC81NDUxQjNCODQ0MTMxMUVGODIyMEM5Qjc3NjJFOTUxQS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCmtYcMA0GCSqGSIb3DQEB
CwUAA4IBAQAObvpbLujWgic4prJpvNFu3UeyIz1C2MNPXR/SxRCrvETc1lviAi2b
8+PZaBa5iHjswkuoMUei11Ka9GOgzhP+Ej2CeDF9YorD58le5FWmUGdOcCW7tQen
5jpXTeNpn3urRLx0WcnwAWK0WG2Cwla+QPQgWSEKyj+ebSz/SMARCPy7AmBqwG7i
rEfr5tvbv3VGvscPxGTwedZu+HilqXGLauB05ytMj9gTdk1XzHwozl9iErI4Jpcq
x/yCMW7GoYO0ujgKdz1TyKXaiGtWWhWu8AVmSMHiR5qp02qpbhKETb4eSwlzXfzA
LCYXsl5ria/bIp9qUrl9Yv2gvqr7GXMN
-----END CERTIFICATE-----
Generated at Sun Jul 28 03:06:40 2024 by rpki-client on console-fra.rpki-client.org