Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/70D82E40E78911EEB1A9FF4D775412E6.roa
File: 70D82E40E78911EEB1A9FF4D775412E6.roa (raw, json)
Hash identifier: f+6dRLCWxzNluAqvPgu86LgFtqiA5AQLWe/wqvHuuUs=
Subject key identifier: BA:1A:B6:C9:7A:A2:50:3A:B8:EF:63:F7:12:3A:80:47:A6:93:EC:AD
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A5C7
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/70D82E40E78911EEB1A9FF4D775412E6.roa
Signing time: Thu 21 Mar 2024 13:46:38 +0000
ROA not before: Thu 21 Mar 2024 13:46:35 +0000
ROA not after: Thu 25 Apr 2024 13:46:35 +0000
asID: 5065
IP address blocks: 154.206.38.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 42439 (0xa5c7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 21 13:46:35 2024 GMT
Not After : Apr 25 13:46:35 2024 GMT
Subject: CN=65fc3a3e-e78a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:23:30:7c:1f:11:60:14:b4:1e:6e:2a:fd:e0:
59:be:60:00:bf:70:3b:5a:90:f1:3e:ae:76:8a:c9:
5e:f4:50:bf:ed:41:cf:b4:55:4a:3a:36:6d:50:bf:
e9:01:e7:b9:1a:02:a5:2f:7a:bc:f8:23:a7:26:d2:
8c:6f:c2:be:d0:65:4e:3b:d8:a5:03:03:67:c0:21:
cc:34:21:64:4e:5e:62:40:da:04:4a:f4:64:6d:2d:
3d:0a:fd:fe:7c:3a:1c:1e:29:bd:8b:41:10:76:ed:
64:ec:28:c3:a5:77:7f:97:4e:c9:e2:2d:9a:6d:ad:
5f:66:d7:71:8b:a8:a6:6a:e7:59:86:e5:49:95:19:
15:cb:30:bc:7f:05:c7:ac:60:9a:a1:43:21:2b:ea:
6f:cf:6d:06:64:ab:d8:aa:c7:20:3c:c3:90:79:6a:
29:22:73:5b:9a:32:64:12:55:c5:18:db:3d:01:6d:
a8:57:7a:7c:db:4c:2b:c8:ba:2c:07:90:1c:83:95:
b2:a8:40:fc:86:e6:e2:2b:23:0a:62:80:59:7a:b0:
b4:f6:c1:f6:b9:ca:11:75:ad:3d:21:7a:5b:b4:90:
93:78:36:89:b4:b3:ad:25:f6:c9:af:2c:7a:2a:e6:
d8:53:2c:26:83:32:a4:6a:16:0a:99:ee:f2:69:ff:
56:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:1A:B6:C9:7A:A2:50:3A:B8:EF:63:F7:12:3A:80:47:A6:93:EC:AD
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/70D82E40E78911EEB1A9FF4D775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.206.38.0/24
Signature Algorithm: sha256WithRSAEncryption
12:44:ab:86:c6:e2:d0:62:36:36:f3:f0:7b:3b:0e:1e:00:41:
05:b0:1d:e2:a3:6e:70:66:49:48:c6:d9:7f:07:9c:dd:b2:e4:
00:18:5c:4d:8a:af:c6:a0:a1:df:73:f4:71:b0:15:c3:76:0b:
b2:c5:67:c5:18:25:1b:b3:61:1e:6f:19:e7:7f:5f:10:88:19:
f2:52:56:0c:52:72:c1:a6:6f:8e:e9:e8:b5:b6:8b:1f:d0:85:
64:b6:67:7a:c4:6f:25:2c:ea:35:b0:af:f9:74:1b:ea:d3:43:
58:81:9e:01:22:15:bd:66:92:2d:cd:96:e5:c0:ed:05:9e:5a:
4a:ad:41:db:43:a4:3e:5b:d5:09:46:b3:db:50:ae:6f:1b:b4:
36:e2:e3:22:bf:ad:e2:50:fd:5d:ff:11:27:96:36:4e:8d:8b:
1f:15:f7:cb:bd:c7:ae:a9:4e:23:fc:e0:36:37:de:a8:26:72:
c2:70:be:c1:98:02:41:59:4f:70:be:3f:bf:fa:a3:4d:95:63:
58:f9:99:72:dd:0f:d6:1d:bc:ca:e2:9e:b6:fb:a3:7c:aa:91:
25:3c:b8:b9:79:fe:18:46:e2:a7:53:07:0b:77:46:5c:37:77:
1d:18:3d:5f:9c:bd:98:97:fe:49:31:03:5b:e3:76:49:0d:e6:
bd:1f:19:9b
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAKXHMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQwMzIxMTM0NjM1WhcNMjQwNDI1MTM0NjM1WjAYMRYw
FAYDVQQDEw02NWZjM2EzZS1lNzhhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAySMwfB8RYBS0Hm4q/eBZvmAAv3A7WpDxPq52isle9FC/7UHPtFVKOjZt
UL/pAee5GgKlL3q8+COnJtKMb8K+0GVOO9ilAwNnwCHMNCFkTl5iQNoESvRkbS09
Cv3+fDocHim9i0EQdu1k7CjDpXd/l07J4i2aba1fZtdxi6imaudZhuVJlRkVyzC8
fwXHrGCaoUMhK+pvz20GZKvYqscgPMOQeWopInNbmjJkElXFGNs9AW2oV3p820wr
yLosB5Acg5WyqED8hubiKyMKYoBZerC09sH2ucoRda09IXpbtJCTeDaJtLOtJfbJ
ryx6KubYUywmgzKkahYKme7yaf9WnwIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFLoa
tsl6olA6uO9j9xI6gEemk+ytMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC83MEQ4MkU0MEU3ODkxMUVFQjFBOUZGNEQ3NzU0MTJFNi5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAms4mMA0GCSqGSIb3DQEB
CwUAA4IBAQASRKuGxuLQYjY28/B7Ow4eAEEFsB3io25wZklIxtl/B5zdsuQAGFxN
iq/GoKHfc/RxsBXDdguyxWfFGCUbs2Eebxnnf18QiBnyUlYMUnLBpm+O6ei1tosf
0IVktmd6xG8lLOo1sK/5dBvq00NYgZ4BIhW9ZpItzZblwO0FnlpKrUHbQ6Q+W9UJ
RrPbUK5vG7Q24uMiv63iUP1d/xEnljZOjYsfFffLvceuqU4j/OA2N96oJnLCcL7B
mAJBWU9wvj+/+qNNlWNY+Zly3Q/WHbzK4p62+6N8qpElPLi5ef4YRuKnUwcLd0Zc
N3cdGD1fnL2Yl/5JMQNb43ZJDea9Hxmb
-----END CERTIFICATE-----
Generated at Fri Apr 26 01:59:41 2024 by rpki-client on console-ams.rpki-client.org