Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/6B03C6EEA44411EC8A3724CF5A40D577.roa
File: 6B03C6EEA44411EC8A3724CF5A40D577.roa (raw, json)
Hash identifier: mlk6SefIKteKZceekbGQ/ckWlOVNlRdjaZVvzhOKhZE=
Subject key identifier: E5:24:65:BB:6C:4D:32:26:86:92:29:F1:AF:88:5D:A1:6A:0B:43:1C
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 153A
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/6B03C6EEA44411EC8A3724CF5A40D577.roa
Signing time: Tue 15 Mar 2022 09:43:50 +0000
ROA not before: Tue 15 Mar 2022 09:43:47 +0000
ROA not after: Sat 31 Dec 2022 09:43:47 +0000
asID: 135097
IP address blocks: 154.205.40.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5434 (0x153a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 15 09:43:47 2022 GMT
Not After : Dec 31 09:43:47 2022 GMT
Subject: CN=62305fd6-0c5f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:51:21:d7:85:0f:23:72:7f:05:0b:4c:12:e3:
a3:bd:4b:2a:82:6b:e9:c2:de:f4:e8:e8:17:5d:be:
99:f6:bb:a9:cc:a3:20:8f:e0:af:27:81:f9:8c:b6:
fa:63:04:86:96:66:24:0d:fc:f5:ff:44:81:38:c9:
f3:2c:36:02:66:27:a5:7f:47:94:08:d9:36:8a:8a:
cb:c3:20:9f:ab:2f:be:c5:31:c3:11:8a:45:d3:20:
9f:a8:38:49:e0:ee:f9:5f:bc:e5:0a:e1:e4:48:d2:
88:6e:b7:fb:c6:89:92:ba:10:ac:d7:95:cc:1b:5d:
90:96:60:9a:44:d8:7c:43:81:5a:a3:33:00:6f:46:
4f:22:9d:0c:4d:d5:47:43:40:eb:ab:be:0f:fc:4b:
43:80:d1:4b:b2:83:5b:ec:32:86:11:de:86:ba:f9:
fa:f9:31:5f:e3:ad:3e:89:52:3d:f8:2e:23:c0:8f:
3a:f9:36:70:ac:f1:0e:68:7d:9d:dd:2d:fb:c0:93:
ed:8d:0d:53:a4:30:8e:49:39:be:f2:48:c5:b1:ef:
7d:b5:93:f8:05:fa:98:3f:41:cd:6a:e2:a1:40:ea:
0f:eb:ec:2f:62:12:77:00:fc:b7:20:8a:4b:d1:39:
8c:6e:3f:6c:db:8c:d4:ec:ee:c8:08:43:89:00:35:
05:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:24:65:BB:6C:4D:32:26:86:92:29:F1:AF:88:5D:A1:6A:0B:43:1C
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/6B03C6EEA44411EC8A3724CF5A40D577.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.205.40.0/21
Signature Algorithm: sha256WithRSAEncryption
b0:13:20:46:37:5b:1a:45:7a:ff:8e:d6:c4:a6:2c:5c:52:be:
2e:c0:5c:25:47:e4:2d:c8:30:71:03:41:4e:60:c7:f9:18:e9:
c1:8d:95:12:c3:93:f1:ef:0a:78:d1:da:e9:e0:c0:99:60:f4:
38:ad:4e:97:dd:ae:8a:f2:42:48:27:06:cf:b1:bb:35:07:63:
31:3a:c0:f5:18:c4:0a:49:70:08:3e:01:d2:68:a0:16:6f:ea:
e0:14:21:6b:e5:c0:aa:db:85:04:14:58:42:a3:41:ea:9d:c6:
86:fc:88:cc:d9:36:dc:cf:57:c2:45:f5:df:fb:91:99:d3:4c:
cc:ea:b7:c2:17:0e:5f:a5:29:4a:a9:c4:05:86:ef:22:88:21:
6e:a1:c4:4c:67:79:52:c3:ca:d6:7f:4f:9e:fd:10:fc:f2:6b:
2b:12:5d:32:9b:e6:e4:3e:87:c0:ac:29:61:9d:42:ec:91:5b:
12:f4:03:3a:fb:be:3d:b1:3f:e2:45:ac:36:cb:02:84:d2:d2:
ce:4e:ce:64:8a:fe:26:c6:f7:55:e0:1a:42:61:9d:3d:27:4b:
b3:5f:56:8e:82:76:7e:e0:30:fc:85:cc:1b:14:5e:61:1b:3d:
c5:81:56:3a:75:77:18:84:a9:f6:9a:3d:5d:26:09:b6:9f:d2:
98:e4:37:d9
-----BEGIN CERTIFICATE-----
MIIFgzCCBGugAwIBAgICFTowDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAwwKRjM2
OEYyRDBBRjExMC8GA1UEBRMoMjVENjNFMDhFQUJFN0NGQTY3ODVENEMxRDZEMzQx
MTZERTE1QjNEQzAeFw0yMjAzMTUwOTQzNDdaFw0yMjEyMzEwOTQzNDdaMBgxFjAU
BgNVBAMMDTYyMzA1ZmQ2LTBjNWYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQDIUSHXhQ8jcn8FC0wS46O9SyqCa+nC3vTo6Bddvpn2u6nMoyCP4K8ngfmM
tvpjBIaWZiQN/PX/RIE4yfMsNgJmJ6V/R5QI2TaKisvDIJ+rL77FMcMRikXTIJ+o
OEng7vlfvOUK4eRI0ohut/vGiZK6EKzXlcwbXZCWYJpE2HxDgVqjMwBvRk8inQxN
1UdDQOurvg/8S0OA0Uuyg1vsMoYR3oa6+fr5MV/jrT6JUj34LiPAjzr5NnCs8Q5o
fZ3dLfvAk+2NDVOkMI5JOb7ySMWx7321k/gF+pg/Qc1q4qFA6g/r7C9iEncA/Lcg
ikvROYxuP2zbjNTs7sgIQ4kANQXbAgMBAAGjggKlMIICoTAdBgNVHQ4EFgQU5SRl
u2xNMiaGkinxr4hdoWoLQxwwHwYDVR0jBBgwFoAUJdY+COq+fPpnhdTB1tNBFt4V
s9wwDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjhGMkQwLzdGNEE5OEVBNkUwNTExRTg5QzBENkU0QkY4QUVBMjI4L0pkWS1D
T3EtZlBwbmhkVEIxdE5CRnQ0VnM5dy5jcmwwZwYIKwYBBQUHAQEEWzBZMFcGCCsG
AQUFBzAChktyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hZnJp
bmljL0pkWS1DT3EtZlBwbmhkVEIxdE5CRnQ0VnM5dy5jZXIwTwYDVR0gAQH/BEUw
QzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5p
Yy5uZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEF
BQcwC4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJl
cl9yZXBvc2l0b3J5L0YzNjhGMkQwLzdGNEE5OEVBNkUwNTExRTg5QzBENkU0QkY4
QUVBMjI4LzZCMDNDNkVFQTQ0NDExRUM4QTM3MjRDRjVBNDBENTc3LnJvYTA1Bggr
BgEFBQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54
bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAOazSgwDQYJKoZIhvcNAQEL
BQADggEBALATIEY3WxpFev+O1sSmLFxSvi7AXCVH5C3IMHEDQU5gx/kY6cGNlRLD
k/HvCnjR2ungwJlg9DitTpfdroryQkgnBs+xuzUHYzE6wPUYxApJcAg+AdJooBZv
6uAUIWvlwKrbhQQUWEKjQeqdxob8iMzZNtzPV8JF9d/7kZnTTMzqt8IXDl+lKUqp
xAWG7yKIIW6hxExneVLDytZ/T579EPzyaysSXTKb5uQ+h8CsKWGdQuyRWxL0Azr7
vj2xP+JFrDbLAoTS0s5OzmSK/ibG91XgGkJhnT0nS7NfVo6Cdn7gMPyFzBsUXmEb
PcWBVjp1dxiEqfaaPV0mCbaf0pjkN9k=
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:22:07 2023 by rpki-client on console-ams.rpki-client.org