Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/65775E70EDB211EEB7CA1487775412E6.roa
File: 65775E70EDB211EEB7CA1487775412E6.roa (raw, json)
Hash identifier: sMjQW/vs5SbJx+S+t1CAUhgRB6wmXJz3QnkzwF9qjbE=
Subject key identifier: AF:AC:2C:5F:6B:DA:D6:0F:DD:8A:60:99:31:4B:AA:7B:BF:B7:B5:B3
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A703
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/65775E70EDB211EEB7CA1487775412E6.roa
Signing time: Fri 29 Mar 2024 09:54:56 +0000
ROA not before: Fri 29 Mar 2024 09:54:52 +0000
ROA not after: Fri 26 Apr 2024 09:54:52 +0000
asID: 62240
IP address blocks: 154.196.16.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 42755 (0xa703)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 29 09:54:52 2024 GMT
Not After : Apr 26 09:54:52 2024 GMT
Subject: CN=66068ff0-ba50
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:36:37:8d:a3:a7:c7:13:05:4a:90:41:32:40:
55:0c:74:1b:bb:c5:74:e8:d0:49:fe:a1:2f:77:96:
47:94:55:0d:a3:99:d0:95:9b:e7:e5:f5:2f:6f:bc:
be:d5:c2:97:02:fa:65:4d:39:8f:34:e1:3e:42:e6:
15:67:6d:6b:3a:1f:57:1a:7d:ea:40:e7:45:50:5f:
7f:f2:5d:bf:59:e7:c1:09:26:38:1f:d8:fc:24:a0:
1e:a8:41:5a:da:18:f1:be:23:7f:25:f8:29:ef:dd:
b4:9a:f1:78:99:9e:5b:07:3e:e0:6a:9a:72:40:c8:
41:47:a9:85:ec:7e:07:2d:f3:db:84:fc:2d:58:07:
88:2a:31:8a:96:f2:9d:d4:13:ba:f5:c5:28:ad:7d:
65:b7:d3:75:24:7e:93:d8:42:d3:fc:99:dd:08:be:
89:3e:f0:88:d5:34:39:bc:8c:c2:7b:66:89:59:39:
04:2e:5d:45:92:6f:23:43:e7:f1:97:6c:b4:39:6e:
d6:dc:93:a6:b7:1b:59:49:32:e6:70:5a:0a:7a:87:
76:5f:71:3f:d4:e0:b9:ef:dc:2b:e0:ca:ce:20:8e:
19:09:7c:bf:e8:8d:64:b0:e8:d2:22:ca:b5:75:b3:
49:db:fb:68:7b:f8:5d:c8:dc:07:10:98:fa:be:c5:
ac:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:AC:2C:5F:6B:DA:D6:0F:DD:8A:60:99:31:4B:AA:7B:BF:B7:B5:B3
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/65775E70EDB211EEB7CA1487775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.196.16.0/20
Signature Algorithm: sha256WithRSAEncryption
3c:5a:26:0f:2d:28:35:2b:60:03:cf:8d:e9:23:01:b4:ee:a7:
cf:f2:72:b9:69:7a:0c:9f:56:d2:5f:83:d6:32:67:18:0a:4e:
58:54:14:d7:d4:3f:ea:b6:24:3f:30:4e:4b:4d:20:7d:53:2c:
2f:aa:21:91:63:2a:f2:e7:ae:0e:5d:46:12:12:35:69:c9:a6:
a7:c4:14:8a:1c:0e:aa:c9:cb:24:02:63:d1:7f:c6:b3:b1:5a:
8b:25:3e:43:d9:3b:f7:19:33:77:28:be:b6:12:65:23:72:15:
8a:13:dd:95:bf:98:6c:4f:e5:a7:b2:55:f9:ab:e5:f7:f5:6f:
bc:64:72:83:1f:e3:5e:4e:bb:0b:79:84:08:15:61:9d:d6:37:
9c:1c:9d:b4:2a:65:b6:34:77:de:87:81:ed:80:0e:81:0c:91:
a6:3a:3c:af:aa:cc:3b:3c:5b:7d:59:aa:5f:a0:99:2a:76:f8:
82:74:b6:b1:d2:69:66:20:dc:c4:12:7c:45:0f:aa:e6:ed:db:
55:fb:08:c5:c1:5f:30:9e:28:cd:76:81:05:88:98:27:70:d7:
03:b8:6b:0b:f8:d6:f2:3f:cb:c1:e2:62:79:98:96:c4:4a:0a:
23:a6:a0:f6:1c:bc:77:0d:c2:24:58:8f:26:52:35:86:d9:71:
a6:8b:78:3a
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAKcDMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQwMzI5MDk1NDUyWhcNMjQwNDI2MDk1NDUyWjAYMRYw
FAYDVQQDEw02NjA2OGZmMC1iYTUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAvTY3jaOnxxMFSpBBMkBVDHQbu8V06NBJ/qEvd5ZHlFUNo5nQlZvn5fUv
b7y+1cKXAvplTTmPNOE+QuYVZ21rOh9XGn3qQOdFUF9/8l2/WefBCSY4H9j8JKAe
qEFa2hjxviN/Jfgp7920mvF4mZ5bBz7gappyQMhBR6mF7H4HLfPbhPwtWAeIKjGK
lvKd1BO69cUorX1lt9N1JH6T2ELT/JndCL6JPvCI1TQ5vIzCe2aJWTkELl1Fkm8j
Q+fxl2y0OW7W3JOmtxtZSTLmcFoKeod2X3E/1OC579wr4MrOII4ZCXy/6I1ksOjS
Isq1dbNJ2/toe/hdyNwHEJj6vsWspwIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFK+s
LF9r2tYP3YpgmTFLqnu/t7WzMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC82NTc3NUU3MEVEQjIxMUVFQjdDQTE0ODc3NzU0MTJFNi5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQEmsQQMA0GCSqGSIb3DQEB
CwUAA4IBAQA8WiYPLSg1K2ADz43pIwG07qfP8nK5aXoMn1bSX4PWMmcYCk5YVBTX
1D/qtiQ/ME5LTSB9UywvqiGRYyry564OXUYSEjVpyaanxBSKHA6qycskAmPRf8az
sVqLJT5D2Tv3GTN3KL62EmUjchWKE92Vv5hsT+WnslX5q+X39W+8ZHKDH+NeTrsL
eYQIFWGd1jecHJ20KmW2NHfeh4HtgA6BDJGmOjyvqsw7PFt9WapfoJkqdviCdLax
0mlmINzEEnxFD6rm7dtV+wjFwV8wnijNdoEFiJgncNcDuGsL+NbyP8vB4mJ5mJbE
SgojpqD2HLx3DcIkWI8mUjWG2XGmi3g6
-----END CERTIFICATE-----
Generated at Fri Apr 26 11:01:38 2024 by rpki-client on console-ams.rpki-client.org