Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5BDB3C20134F11EFBD4C3548017001B1.roa
File: 5BDB3C20134F11EFBD4C3548017001B1.roa (raw, json)
Hash identifier: Y6yYIjWOUD9s5PsHyKySWv4fcl8PwpZNekk6E8uA1TY=
Subject key identifier: C1:C8:D1:95:D4:D4:34:FA:6E:AA:4D:9F:45:EE:1D:9A:A4:EB:F1:85
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: B818
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5BDB3C20134F11EFBD4C3548017001B1.roa
Signing time: Thu 16 May 2024 06:41:44 +0000
ROA not before: Thu 16 May 2024 06:41:40 +0000
ROA not after: Fri 31 May 2024 06:41:40 +0000
asID: 44559
IP address blocks: 154.205.224.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 47128 (0xb818)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 16 06:41:40 2024 GMT
Not After : May 31 06:41:40 2024 GMT
Subject: CN=6645aaa8-8934
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:92:8e:d5:1f:9c:22:91:df:88:90:20:da:21:
08:0d:c9:af:96:83:0a:ab:fd:1d:27:44:bf:f2:4f:
a2:8d:63:4d:9c:4a:2c:88:28:24:fa:44:0f:6e:96:
3e:67:19:ee:03:9e:4a:ae:54:bd:72:5a:18:f3:f7:
6e:a5:75:e5:90:af:d7:f8:6a:4e:22:a9:ba:f4:a9:
80:9f:9e:e4:f1:3d:12:d4:75:3a:c6:ba:f0:7c:35:
00:32:a6:1f:d4:06:1f:93:de:a1:b2:5a:ef:81:c9:
86:bb:78:47:4b:b1:f7:79:f1:6a:79:98:e4:5f:00:
45:90:35:b6:e8:8b:95:6c:5c:66:8f:63:de:6f:d7:
9a:e9:06:e3:c8:a0:b3:be:d9:56:f5:3f:99:5f:9f:
fc:c6:50:77:70:44:17:c5:64:da:f7:97:ff:81:4b:
4f:65:4e:99:cf:26:2a:d3:4e:c5:c8:bb:a0:c6:d4:
73:0f:cc:9b:c1:ba:c7:db:07:5b:f9:8b:b4:41:61:
c0:b1:a4:44:87:6f:b1:c8:13:be:98:16:ae:38:9f:
61:30:5a:e5:ac:50:2b:a1:35:9d:5a:47:c4:2c:b0:
8d:04:2e:78:12:e8:79:f4:7d:c4:e5:be:91:59:a6:
6f:f2:f9:d9:bd:79:ce:62:70:6f:ed:6d:2c:7b:d6:
30:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:C8:D1:95:D4:D4:34:FA:6E:AA:4D:9F:45:EE:1D:9A:A4:EB:F1:85
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5BDB3C20134F11EFBD4C3548017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.205.224.0/19
Signature Algorithm: sha256WithRSAEncryption
09:49:8d:a0:50:69:eb:55:09:26:39:9c:67:f6:4d:db:21:13:
ec:5d:3d:c5:36:35:13:59:6e:6d:84:ec:2a:26:66:a0:ba:36:
e0:c7:32:64:ec:7d:9f:6c:91:d9:cc:2b:f9:e7:75:57:2d:48:
8d:ec:ab:60:6c:4b:ce:4a:db:a9:62:35:df:e3:b5:ab:bc:bf:
d7:48:a5:69:97:31:5e:47:3a:34:e8:78:b6:35:ba:46:ff:11:
31:14:dd:67:39:a7:13:41:7f:6b:3b:63:6a:60:ee:24:5b:ea:
3e:37:50:9b:cb:a3:63:9e:22:26:64:d3:6c:c8:7c:77:5f:09:
d5:c8:5e:3c:18:3c:8b:31:46:dd:78:5b:63:bf:10:b0:4a:0c:
14:16:50:f9:69:ba:54:8b:e8:ea:20:d9:8e:f2:10:a2:0a:71:
ce:ec:23:92:89:cb:18:0a:d2:f4:18:f8:a0:8b:77:0c:c9:67:
13:fd:e0:f5:f0:85:06:7f:54:23:f9:9f:e1:dc:6d:1c:c4:8f:
fe:73:93:57:d5:83:38:fe:08:9c:26:5a:3d:42:00:ff:cc:6f:
bc:30:5b:79:16:42:53:a4:d5:ef:00:62:50:3f:96:aa:9a:63:
e3:29:dd:04:a8:f2:43:95:71:89:d0:51:a4:b8:61:c2:f8:be:
a2:7e:2f:94
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDALgYMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQwNTE2MDY0MTQwWhcNMjQwNTMxMDY0MTQwWjAYMRYw
FAYDVQQDEw02NjQ1YWFhOC04OTM0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEA2JKO1R+cIpHfiJAg2iEIDcmvloMKq/0dJ0S/8k+ijWNNnEosiCgk+kQP
bpY+ZxnuA55KrlS9cloY8/dupXXlkK/X+GpOIqm69KmAn57k8T0S1HU6xrrwfDUA
MqYf1AYfk96hslrvgcmGu3hHS7H3efFqeZjkXwBFkDW26IuVbFxmj2Peb9ea6Qbj
yKCzvtlW9T+ZX5/8xlB3cEQXxWTa95f/gUtPZU6ZzyYq007FyLugxtRzD8ybwbrH
2wdb+Yu0QWHAsaREh2+xyBO+mBauOJ9hMFrlrFAroTWdWkfELLCNBC54Euh59H3E
5b6RWaZv8vnZvXnOYnBv7W0se9YwQwIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFMHI
0ZXU1DT6bqpNn0XuHZqk6/GFMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC81QkRCM0MyMDEzNEYxMUVGQkQ0QzM1NDgwMTcwMDFCMS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQFms3gMA0GCSqGSIb3DQEB
CwUAA4IBAQAJSY2gUGnrVQkmOZxn9k3bIRPsXT3FNjUTWW5thOwqJmagujbgxzJk
7H2fbJHZzCv553VXLUiN7KtgbEvOStupYjXf47WrvL/XSKVplzFeRzo06Hi2NbpG
/xExFN1nOacTQX9rO2NqYO4kW+o+N1Cby6NjniImZNNsyHx3XwnVyF48GDyLMUbd
eFtjvxCwSgwUFlD5abpUi+jqINmO8hCiCnHO7COSicsYCtL0GPigi3cMyWcT/eD1
8IUGf1Qj+Z/h3G0cxI/+c5NX1YM4/gicJlo9QgD/zG+8MFt5FkJTpNXvAGJQP5aq
mmPjKd0EqPJDlXGJ0FGkuGHC+L6ifi+U
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:00:19 2024 by rpki-client on console-ams.rpki-client.org