Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/6A851FDEFB9411EE8067D655017001B1.roa
File: 6A851FDEFB9411EE8067D655017001B1.roa (raw, json)
Hash identifier: CX2wE3SNVUOBBldA+4OGVOC/88HpwhhKlF9CjRph7AU=
Subject key identifier: 89:03:7B:98:FE:C8:D6:16:C1:E5:E8:A9:8D:7C:41:F9:1E:B4:EC:1C
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: AD01
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/6A851FDEFB9411EE8067D655017001B1.roa
Signing time: Tue 16 Apr 2024 01:55:36 +0000
ROA not before: Tue 16 Apr 2024 01:55:32 +0000
ROA not after: Mon 29 Apr 2024 01:55:32 +0000
asID: 139646
IP address blocks: 154.221.0.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 44289 (0xad01)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 16 01:55:32 2024 GMT
Not After : Apr 29 01:55:32 2024 GMT
Subject: CN=661dda97-564c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:0f:c9:e6:54:87:4d:68:47:d4:fc:7d:6d:53:
32:26:64:08:8f:2d:a4:e3:d9:90:40:0d:74:18:10:
3d:09:4a:39:80:03:a9:fe:60:cf:a1:dd:6b:1b:3f:
68:04:d2:56:75:dd:60:e9:59:a7:ea:8f:fb:82:b8:
18:5f:d9:1a:fa:dc:3d:b2:00:b2:06:06:05:ca:8c:
0e:75:63:3a:71:fb:52:79:c1:de:3f:70:2e:fc:b6:
14:bc:fb:53:fd:80:51:ba:53:47:cc:a6:8e:28:0f:
5c:78:e4:ec:48:d4:1d:b4:77:41:39:e7:5d:50:c1:
9a:71:dd:56:b2:92:ac:31:2b:70:25:6b:52:e1:46:
da:95:07:67:94:67:b3:a0:b9:94:3e:c4:39:f2:1d:
e2:4e:b4:1e:be:81:57:b8:42:d0:a6:87:37:f6:0d:
d4:f2:3d:25:e9:67:76:ef:b9:00:81:36:0f:44:b3:
c1:76:11:e9:dd:84:9c:ec:56:b5:ff:08:78:57:c1:
c9:86:ec:25:fb:1f:fa:f5:4a:26:7d:e3:4e:7f:48:
fa:2b:28:3a:38:db:36:87:08:02:b2:c7:24:c2:02:
43:2e:a6:f2:73:92:ac:29:1a:7f:af:19:0a:92:73:
aa:0b:3e:67:65:1f:69:6d:93:b4:04:5f:51:b5:fa:
b3:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:03:7B:98:FE:C8:D6:16:C1:E5:E8:A9:8D:7C:41:F9:1E:B4:EC:1C
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/6A851FDEFB9411EE8067D655017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.221.0.0/24
Signature Algorithm: sha256WithRSAEncryption
6c:8f:16:67:3a:ef:f8:5b:da:3c:ce:45:c0:b2:58:30:75:e9:
02:67:da:1d:d3:52:28:cf:f9:9b:ca:30:ff:7b:02:5c:a2:7e:
c3:84:11:76:03:f2:35:cf:f7:fb:4f:d2:25:63:38:5a:b3:68:
e6:52:c6:29:b5:74:42:62:01:9b:33:a7:cf:28:0b:4d:7f:42:
cd:85:9d:fb:0e:44:99:f4:83:81:c3:76:9f:e0:b2:6f:22:31:
82:8b:ee:b2:bf:a7:06:09:08:08:5a:0e:ed:3f:37:e5:52:02:
f6:c8:cf:f7:27:a7:fc:4f:23:1e:bd:2f:83:81:89:14:c3:20:
38:33:be:89:8a:f5:94:c0:bd:70:98:29:1f:f3:1c:7e:53:ce:
19:6d:6a:c5:a9:a7:35:6f:f3:6f:74:c0:94:9e:63:c4:81:8f:
08:ef:10:39:f2:d0:a7:89:e4:6c:e7:ee:cb:02:5f:df:ac:e7:
5d:99:d8:8f:48:e4:b2:6f:5d:d9:a5:9b:bc:c4:5c:3f:58:80:
a7:2b:cd:9c:48:80:eb:ff:09:0c:d3:93:04:63:84:f9:c3:58:
79:43:fd:d7:83:5f:10:bc:a7:f4:5e:46:83:65:21:12:fb:98:
bf:bd:eb:3e:3b:d6:c8:de:57:28:ad:ba:95:4b:a8:77:57:4c:
6a:41:dc:14
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAK0BMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQwNDE2MDE1NTMyWhcNMjQwNDI5MDE1NTMyWjAYMRYw
FAYDVQQDEw02NjFkZGE5Ny01NjRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAww/J5lSHTWhH1Px9bVMyJmQIjy2k49mQQA10GBA9CUo5gAOp/mDPod1r
Gz9oBNJWdd1g6Vmn6o/7grgYX9ka+tw9sgCyBgYFyowOdWM6cftSecHeP3Au/LYU
vPtT/YBRulNHzKaOKA9ceOTsSNQdtHdBOeddUMGacd1WspKsMStwJWtS4UbalQdn
lGezoLmUPsQ58h3iTrQevoFXuELQpoc39g3U8j0l6Wd277kAgTYPRLPBdhHp3YSc
7Fa1/wh4V8HJhuwl+x/69UomfeNOf0j6Kyg6ONs2hwgCssckwgJDLqbyc5KsKRp/
rxkKknOqCz5nZR9pbZO0BF9RtfqzawIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFIkD
e5j+yNYWweXoqY18QfketOwcMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC82QTg1MUZERUZCOTQxMUVFODA2N0Q2NTUwMTcwMDFCMS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmt0AMA0GCSqGSIb3DQEB
CwUAA4IBAQBsjxZnOu/4W9o8zkXAslgwdekCZ9od01Ioz/mbyjD/ewJcon7DhBF2
A/I1z/f7T9IlYzhas2jmUsYptXRCYgGbM6fPKAtNf0LNhZ37DkSZ9IOBw3af4LJv
IjGCi+6yv6cGCQgIWg7tPzflUgL2yM/3J6f8TyMevS+DgYkUwyA4M76JivWUwL1w
mCkf8xx+U84ZbWrFqac1b/NvdMCUnmPEgY8I7xA58tCnieRs5+7LAl/frOddmdiP
SOSyb13ZpZu8xFw/WICnK82cSIDr/wkM05MEY4T5w1h5Q/3Xg18QvKf0XkaDZSES
+5i/ves+O9bI3lcorbqVS6h3V0xqQdwU
-----END CERTIFICATE-----
Generated at Mon Apr 29 03:01:05 2024 by rpki-client on console-ams.rpki-client.org