Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8C3E4F6606DD11EFAF6FF15B017001B1.roa
File: 8C3E4F6606DD11EFAF6FF15B017001B1.roa (raw, json)
Hash identifier: cE9fI75zqMDtWRniwBaS1ezxFB8jRPbkBAnoBB/t5Ms=
Subject key identifier: 61:F3:9B:09:D4:D3:A6:E4:E3:67:D8:CF:B2:D3:C3:4F:3F:2C:DC:C5
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: B2ED
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8C3E4F6606DD11EFAF6FF15B017001B1.roa
Signing time: Tue 30 Apr 2024 10:36:48 +0000
ROA not before: Tue 30 Apr 2024 10:36:45 +0000
ROA not after: Tue 07 May 2024 10:36:45 +0000
asID: 136778
IP address blocks: 154.212.145.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 45805 (0xb2ed)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 30 10:36:45 2024 GMT
Not After : May 7 10:36:45 2024 GMT
Subject: CN=6630c9c0-9a09
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:93:c7:7e:aa:86:d3:d7:d4:68:a2:00:8a:2c:
19:8f:28:58:fc:b3:c5:88:48:32:fa:ee:08:86:51:
e0:4b:29:b6:4c:46:51:4f:02:50:bd:16:46:93:83:
db:75:fa:db:7c:70:69:4b:00:b3:b9:68:eb:89:f7:
39:91:7a:ef:04:0e:b4:96:77:29:6c:57:c7:1c:61:
87:8f:db:93:2e:23:cc:39:ed:d1:37:f9:51:ea:b8:
4c:ac:81:07:4c:5d:07:a4:c0:74:49:38:05:74:80:
50:27:d7:a5:19:c1:35:6f:c3:d3:95:df:d3:1b:15:
c1:1e:78:a7:c2:6c:24:d5:af:c4:2b:6f:1f:10:6e:
0b:fc:66:32:30:4b:08:66:26:26:36:60:2c:d9:0a:
bb:74:c5:e9:31:92:ff:dd:33:17:ea:d1:88:6a:fb:
77:d2:a2:0e:87:c0:aa:2a:2f:36:88:a0:cc:70:d7:
6b:3f:63:9c:be:64:ab:57:d8:e3:43:6a:a7:fa:1c:
8f:3c:55:6a:bf:d3:98:d4:69:21:3e:04:6a:ae:ae:
69:20:9d:5e:d9:78:d2:2b:79:03:69:f1:b6:e5:fa:
c5:0f:a5:77:39:5c:23:9d:d8:1f:93:fe:79:3e:6c:
82:db:51:52:8a:12:34:40:11:22:ff:d0:74:68:b7:
da:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:F3:9B:09:D4:D3:A6:E4:E3:67:D8:CF:B2:D3:C3:4F:3F:2C:DC:C5
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8C3E4F6606DD11EFAF6FF15B017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.212.145.0/24
Signature Algorithm: sha256WithRSAEncryption
5c:41:37:9b:a7:ae:70:08:9e:4d:10:55:c4:0b:61:67:1c:21:
17:ad:b5:9c:c9:38:e2:78:71:c2:75:01:89:5d:fd:de:94:b9:
b1:5b:9e:5b:dc:17:32:e4:ce:e4:ba:57:c4:ea:57:7a:9f:66:
30:d9:0a:9d:9d:5e:c6:43:7d:72:5c:58:96:80:08:0e:19:b6:
8c:1f:49:5a:87:04:f7:b5:d6:f4:51:44:3e:7b:44:09:87:82:
2e:2d:fe:24:fc:e3:8b:39:a8:66:d8:7a:ea:07:ac:6b:a5:71:
a6:8b:a6:23:5b:d5:c7:c8:8d:ee:22:2f:e3:39:25:78:22:b9:
5a:03:2e:dc:cc:22:c1:aa:8d:f6:55:c8:49:80:e0:2a:3e:fb:
2d:1a:6b:b9:cf:20:33:55:d6:34:1e:6d:fb:9b:24:a2:51:a5:
e0:94:b7:db:34:b3:be:90:5c:c7:f0:23:aa:e6:83:20:10:8b:
4f:a7:ab:05:8a:1b:87:fb:61:76:ca:7f:7b:e7:03:ef:39:17:
4b:b3:a5:bf:5d:fb:57:f5:3b:c0:6d:50:1d:36:42:f9:51:b1:
2f:b0:65:5d:fa:a3:ff:66:81:bc:7b:90:94:d6:9a:b5:f2:13:
f7:fc:0e:8e:78:a2:9d:bd:1f:e0:0c:0b:70:22:08:11:e4:58:
6c:4e:6a:ce
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDALLtMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQwNDMwMTAzNjQ1WhcNMjQwNTA3MTAzNjQ1WjAYMRYw
FAYDVQQDEw02NjMwYzljMC05YTA5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAyZPHfqqG09fUaKIAiiwZjyhY/LPFiEgy+u4IhlHgSym2TEZRTwJQvRZG
k4PbdfrbfHBpSwCzuWjrifc5kXrvBA60lncpbFfHHGGHj9uTLiPMOe3RN/lR6rhM
rIEHTF0HpMB0STgFdIBQJ9elGcE1b8PTld/TGxXBHninwmwk1a/EK28fEG4L/GYy
MEsIZiYmNmAs2Qq7dMXpMZL/3TMX6tGIavt30qIOh8CqKi82iKDMcNdrP2OcvmSr
V9jjQ2qn+hyPPFVqv9OY1GkhPgRqrq5pIJ1e2XjSK3kDafG25frFD6V3OVwjndgf
k/55PmyC21FSihI0QBEi/9B0aLfaPwIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFGHz
mwnU06bk42fYz7LTw08/LNzFMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC84QzNFNEY2NjA2REQxMUVGQUY2RkYxNUIwMTcwMDFCMS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmtSRMA0GCSqGSIb3DQEB
CwUAA4IBAQBcQTebp65wCJ5NEFXEC2FnHCEXrbWcyTjieHHCdQGJXf3elLmxW55b
3Bcy5M7kulfE6ld6n2Yw2QqdnV7GQ31yXFiWgAgOGbaMH0lahwT3tdb0UUQ+e0QJ
h4IuLf4k/OOLOahm2HrqB6xrpXGmi6YjW9XHyI3uIi/jOSV4IrlaAy7czCLBqo32
VchJgOAqPvstGmu5zyAzVdY0Hm37mySiUaXglLfbNLO+kFzH8COq5oMgEItPp6sF
ihuH+2F2yn975wPvORdLs6W/XftX9TvAbVAdNkL5UbEvsGVd+qP/ZoG8e5CU1pq1
8hP3/A6OeKKdvR/gDAtwIggR5FhsTmrO
-----END CERTIFICATE-----
Generated at Wed May 8 03:59:22 2024 by rpki-client on console-fra.rpki-client.org