Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/6D5ECBC8039211EFAF497103017001B1.roa
File: 6D5ECBC8039211EFAF497103017001B1.roa (raw, json)
Hash identifier: Ie1lYQROFKHdM+Elm9TV4FEGhCDIrtvsjTkYQGndbAU=
Subject key identifier: E5:AD:4D:C1:5B:A1:85:C1:0C:F1:90:E4:CE:70:02:C5:27:69:00:B5
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: B18C
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/6D5ECBC8039211EFAF497103017001B1.roa
Signing time: Fri 26 Apr 2024 06:01:31 +0000
ROA not before: Fri 26 Apr 2024 06:01:27 +0000
ROA not after: Sun 05 May 2024 06:01:27 +0000
asID: 139646
IP address blocks: 154.212.128.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 45452 (0xb18c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 26 06:01:27 2024 GMT
Not After : May 5 06:01:27 2024 GMT
Subject: CN=662b433b-ad14
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:42:d2:22:be:60:e5:e4:08:98:a1:9d:54:02:
11:30:1c:e1:7b:dd:8b:de:6f:e0:32:b4:44:2f:7d:
18:c8:c5:76:8e:50:67:0e:68:f5:3d:24:79:55:a5:
6b:5a:78:0b:97:7e:57:ed:3b:5c:17:c8:67:25:1b:
5b:23:c7:0c:31:b5:d5:ff:0c:e5:06:4d:ce:01:65:
9e:76:fb:50:11:9d:85:8f:64:54:bb:64:cf:ca:4c:
06:cf:e9:e6:1e:eb:b5:6e:43:e8:c2:a9:e5:31:ed:
c7:c5:5d:99:52:c1:1d:d9:5f:2d:e1:2f:1d:12:2b:
69:44:03:13:fb:35:93:5f:cd:1e:9f:39:2f:2b:93:
dc:ce:bd:7b:93:cc:93:9f:b8:52:97:89:92:e8:d4:
55:67:59:5d:e6:44:7c:6c:26:83:52:50:92:d2:ee:
8e:cf:8b:ef:f0:5d:11:c8:2b:7f:12:3b:fd:7f:8a:
41:21:3d:6b:82:73:f7:62:79:c1:65:7b:bd:16:87:
b7:df:5e:e0:05:ce:97:a7:35:2d:35:45:6d:d7:b1:
2e:6a:f2:18:db:c9:79:28:bc:ac:d7:0c:1e:91:1e:
6a:be:e8:c2:e6:a3:7c:1c:0c:cf:b1:7f:ee:76:c5:
f8:0e:85:6c:32:56:d3:28:0c:95:16:f7:b3:60:54:
34:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:AD:4D:C1:5B:A1:85:C1:0C:F1:90:E4:CE:70:02:C5:27:69:00:B5
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/6D5ECBC8039211EFAF497103017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.212.128.0/24
Signature Algorithm: sha256WithRSAEncryption
cc:8d:2d:bf:e1:04:89:40:9c:24:e0:d2:c4:4b:1e:9c:37:3a:
24:b3:0c:59:75:08:f5:be:19:01:18:70:df:7f:bc:ba:83:60:
6a:fe:db:43:e5:61:8d:a2:4e:cb:ff:bd:be:68:21:bc:a6:8b:
d0:9e:0c:54:2d:1c:75:30:ee:b3:6d:3d:ad:56:a7:7a:3b:14:
d0:5a:47:be:7c:d0:f1:7e:11:5e:e2:35:0d:00:0b:c9:f9:0f:
86:4d:02:2c:cd:0e:a1:81:d1:8f:5b:e8:d8:b8:3f:8b:d1:f7:
33:55:8d:24:b1:cf:1f:f7:79:a0:e3:f6:af:dd:8c:10:26:7e:
6d:ca:72:cc:b2:42:6c:6a:55:d4:6b:8c:80:3f:c7:54:53:a5:
56:a0:b7:e3:2c:aa:7d:b9:68:82:ec:95:58:7e:f0:b1:d7:41:
8f:c7:7d:97:c9:fe:bf:ca:8d:2b:76:f3:9d:1d:94:35:c7:85:
4b:8e:c6:ac:de:9b:db:da:bb:c5:5d:fd:36:b1:a4:81:f0:5a:
c7:e4:34:35:fd:1a:0c:7a:15:84:5a:55:85:11:05:0e:92:49:
b2:c9:03:dd:18:0a:e3:68:bd:b9:59:c1:77:a8:09:d7:ba:34:
8f:5c:42:34:7f:ce:ba:fd:ad:d4:86:26:9d:73:54:06:48:b6:
94:90:7d:c8
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDALGMMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQwNDI2MDYwMTI3WhcNMjQwNTA1MDYwMTI3WjAYMRYw
FAYDVQQDEw02NjJiNDMzYi1hZDE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAx0LSIr5g5eQImKGdVAIRMBzhe92L3m/gMrREL30YyMV2jlBnDmj1PSR5
VaVrWngLl35X7TtcF8hnJRtbI8cMMbXV/wzlBk3OAWWedvtQEZ2Fj2RUu2TPykwG
z+nmHuu1bkPowqnlMe3HxV2ZUsEd2V8t4S8dEitpRAMT+zWTX80enzkvK5Pczr17
k8yTn7hSl4mS6NRVZ1ld5kR8bCaDUlCS0u6Oz4vv8F0RyCt/Ejv9f4pBIT1rgnP3
YnnBZXu9Foe3317gBc6XpzUtNUVt17EuavIY28l5KLys1wwekR5qvujC5qN8HAzP
sX/udsX4DoVsMlbTKAyVFvezYFQ0xwIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFOWt
TcFboYXBDPGQ5M5wAsUnaQC1MB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC82RDVFQ0JDODAzOTIxMUVGQUY0OTcxMDMwMTcwMDFCMS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmtSAMA0GCSqGSIb3DQEB
CwUAA4IBAQDMjS2/4QSJQJwk4NLESx6cNzokswxZdQj1vhkBGHDff7y6g2Bq/ttD
5WGNok7L/72+aCG8povQngxULRx1MO6zbT2tVqd6OxTQWke+fNDxfhFe4jUNAAvJ
+Q+GTQIszQ6hgdGPW+jYuD+L0fczVY0ksc8f93mg4/av3YwQJn5tynLMskJsalXU
a4yAP8dUU6VWoLfjLKp9uWiC7JVYfvCx10GPx32Xyf6/yo0rdvOdHZQ1x4VLjsas
3pvb2rvFXf02saSB8FrH5DQ1/RoMehWEWlWFEQUOkkmyyQPdGArjaL25WcF3qAnX
ujSPXEI0f866/a3Uhiadc1QGSLaUkH3I
-----END CERTIFICATE-----
Generated at Mon May 6 02:18:23 2024 by rpki-client on console-ams.rpki-client.org