Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/77666BBAFADE11EEB3F42713017001B1.roa
File: 77666BBAFADE11EEB3F42713017001B1.roa (raw, json)
Hash identifier: yhpqggh1YEEV8zClOsSwCUiciHcyb4242FFTVxs9OtI=
Subject key identifier: F0:A2:99:87:46:EF:2A:74:E2:8A:D1:51:AC:0B:37:87:3F:88:D8:7E
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: AC41
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/77666BBAFADE11EEB3F42713017001B1.roa
Signing time: Mon 15 Apr 2024 04:13:09 +0000
ROA not before: Mon 15 Apr 2024 04:13:06 +0000
ROA not after: Thu 25 Apr 2024 04:13:06 +0000
asID: 5065
IP address blocks: 154.94.52.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 44097 (0xac41)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 15 04:13:06 2024 GMT
Not After : Apr 25 04:13:06 2024 GMT
Subject: CN=661ca955-30b0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:24:a5:69:88:41:fb:cb:6b:90:c4:5d:d6:65:
c8:aa:de:b7:eb:f9:4d:03:31:10:ec:ff:cd:ee:6a:
63:0f:26:bc:68:51:e1:89:6d:ce:14:2a:ac:d8:f5:
d1:7b:0b:fc:31:9a:f2:1c:ed:25:b3:07:fd:76:8c:
d1:4a:d5:2c:98:d1:1a:df:61:2e:06:ce:05:41:de:
65:99:73:af:5f:af:ce:63:2a:33:1f:93:b4:e6:3f:
8f:80:2a:79:e5:27:74:eb:c5:6b:b6:eb:29:dc:31:
6f:6c:80:5b:98:31:71:19:a4:7d:ed:af:bf:34:90:
3a:2c:88:49:73:57:fc:6e:5c:09:0e:ef:fa:25:98:
56:d9:05:e0:da:8e:56:c9:7e:33:ee:d1:f4:44:45:
fa:a9:a2:23:76:31:11:ca:7a:3d:cb:40:c5:5c:b3:
6a:35:c8:c0:7b:86:09:11:33:c1:30:ff:f7:0e:6b:
d1:06:e8:59:ee:5b:ab:57:5f:60:b3:bd:bd:e0:97:
7a:e2:e1:14:e7:37:db:a9:9b:9d:29:e2:3a:8f:45:
66:50:5b:aa:ac:3c:50:8b:93:97:0e:5a:c7:c1:db:
e6:1b:92:48:b6:cd:35:c2:75:a1:48:70:5c:7e:89:
c2:f6:7d:b7:9e:73:dc:66:b1:aa:7f:66:c5:a1:30:
06:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:A2:99:87:46:EF:2A:74:E2:8A:D1:51:AC:0B:37:87:3F:88:D8:7E
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/77666BBAFADE11EEB3F42713017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.94.52.0/24
Signature Algorithm: sha256WithRSAEncryption
62:43:14:cb:65:33:c3:73:5d:98:73:db:dc:2f:03:41:af:bd:
71:d3:f6:aa:bc:1b:03:b1:fc:bd:5c:f8:c3:7d:81:a9:16:df:
18:77:0a:89:96:78:ac:50:35:1f:ff:a2:b3:20:2b:66:1c:ab:
4d:66:c4:b1:92:6b:bd:c4:51:37:e3:f8:85:86:55:0a:d8:02:
70:39:0e:3b:71:18:33:da:7d:29:d3:e5:4e:c4:f7:81:76:ed:
1a:5c:25:29:ea:c9:07:d9:87:f1:eb:1c:89:37:c8:88:73:f8:
7a:72:6b:0d:8a:d6:9e:11:88:85:78:cd:e8:5d:16:af:33:ce:
32:ed:44:ae:68:07:a5:1e:d2:5e:24:12:fe:06:f7:77:d7:08:
e3:45:78:52:66:87:01:d0:02:f3:a3:0b:fa:9e:b0:0d:3c:74:
c3:b3:a6:fc:e1:17:ad:fd:23:f5:9e:c6:16:2a:5f:f8:19:1b:
6c:44:8e:56:69:cf:6f:e3:3b:2b:e1:d9:5e:bf:17:e5:86:ce:
4f:ad:5c:46:89:b1:85:8b:ba:39:e1:94:2a:e3:23:d0:80:8f:
60:bb:44:e8:4b:95:ca:85:0b:27:65:99:53:ac:26:01:98:d3:
aa:7f:fa:aa:4e:70:07:a5:01:85:26:82:a3:b1:b1:bb:5c:5a:
17:83:f7:d9
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAKxBMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQwNDE1MDQxMzA2WhcNMjQwNDI1MDQxMzA2WjAYMRYw
FAYDVQQDEw02NjFjYTk1NS0zMGIwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAnSSlaYhB+8trkMRd1mXIqt636/lNAzEQ7P/N7mpjDya8aFHhiW3OFCqs
2PXRewv8MZryHO0lswf9dozRStUsmNEa32EuBs4FQd5lmXOvX6/OYyozH5O05j+P
gCp55Sd068Vrtusp3DFvbIBbmDFxGaR97a+/NJA6LIhJc1f8blwJDu/6JZhW2QXg
2o5WyX4z7tH0REX6qaIjdjERyno9y0DFXLNqNcjAe4YJETPBMP/3DmvRBuhZ7lur
V19gs7294Jd64uEU5zfbqZudKeI6j0VmUFuqrDxQi5OXDlrHwdvmG5JIts01wnWh
SHBcfonC9n23nnPcZrGqf2bFoTAG7QIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFPCi
mYdG7yp04orRUawLN4c/iNh+MB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC83NzY2NkJCQUZBREUxMUVFQjNGNDI3MTMwMTcwMDFCMS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAml40MA0GCSqGSIb3DQEB
CwUAA4IBAQBiQxTLZTPDc12Yc9vcLwNBr71x0/aqvBsDsfy9XPjDfYGpFt8YdwqJ
lnisUDUf/6KzICtmHKtNZsSxkmu9xFE34/iFhlUK2AJwOQ47cRgz2n0p0+VOxPeB
du0aXCUp6skH2Yfx6xyJN8iIc/h6cmsNitaeEYiFeM3oXRavM84y7USuaAelHtJe
JBL+Bvd31wjjRXhSZocB0ALzowv6nrANPHTDs6b84Ret/SP1nsYWKl/4GRtsRI5W
ac9v4zsr4dlevxflhs5PrVxGibGFi7o54ZQq4yPQgI9gu0ToS5XKhQsnZZlTrCYB
mNOqf/qqTnAHpQGFJoKjsbG7XFoXg/fZ
-----END CERTIFICATE-----
Generated at Thu Apr 25 09:50:18 2024 by rpki-client on console-fra.rpki-client.org