Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8FDDBA521A3A11EEB11D7B114AD9E6FC.roa
File: 8FDDBA521A3A11EEB11D7B114AD9E6FC.roa (raw, json)
Hash identifier: lwz5lqpA5IW3jcl+VwwTIad3pC9YG1/Yj7rQR/UHOSE=
Subject key identifier: CF:89:1A:16:D1:F6:87:42:D4:07:F2:0A:6A:2C:40:B1:B7:FD:1A:D0
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 3009
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8FDDBA521A3A11EEB11D7B114AD9E6FC.roa
Signing time: Tue 04 Jul 2023 07:15:32 +0000
ROA not before: Tue 04 Jul 2023 07:15:28 +0000
ROA not after: Wed 24 Apr 2024 07:15:28 +0000
asID: 63888
IP address blocks: 154.205.36.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 12297 (0x3009)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jul 4 07:15:28 2023 GMT
Not After : Apr 24 07:15:28 2024 GMT
Subject: CN=64a3c714-e298
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:4b:dd:47:68:88:f6:e6:0f:5e:3e:ac:00:fe:
6f:20:65:38:d9:dc:82:bc:5f:b5:73:10:53:c6:2e:
57:2c:af:1c:1f:69:fe:18:d1:33:e8:82:56:34:4c:
2c:27:bd:ef:3f:7a:3c:f0:f5:88:c8:08:af:61:3c:
30:cf:df:76:77:14:67:0a:46:23:9e:1e:7f:26:bd:
37:a2:e8:63:29:d2:ff:c9:d3:6e:35:50:d8:3d:3d:
8e:59:33:85:aa:e4:da:51:21:f6:86:da:2c:dc:5e:
05:41:7a:ac:a1:38:ea:a9:ca:14:d3:fd:ba:2c:77:
54:53:35:cb:1b:e9:7a:a3:df:ff:ab:1c:37:27:7b:
cc:9c:04:a2:91:74:f1:8b:c1:e8:01:e7:b9:9e:88:
63:84:c3:5d:a6:49:10:05:38:94:ac:0d:76:e2:06:
f8:8c:2e:c4:05:e7:ff:e8:66:d9:6a:6e:55:b3:75:
8f:a9:8b:9b:2b:43:12:0e:ad:e5:7d:7e:b6:d1:bd:
69:23:a0:24:f6:bf:ae:72:25:8c:b6:b4:c2:50:11:
73:d4:ed:a0:9c:02:9e:79:bd:03:7e:e1:7c:b6:24:
2a:73:2a:58:cf:8c:ce:46:38:2a:a9:ae:f4:e6:43:
40:76:d7:f6:b2:ec:93:9f:ec:5d:14:d2:a5:6a:39:
ef:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:89:1A:16:D1:F6:87:42:D4:07:F2:0A:6A:2C:40:B1:B7:FD:1A:D0
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8FDDBA521A3A11EEB11D7B114AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.205.36.0/24
Signature Algorithm: sha256WithRSAEncryption
83:25:a8:e3:5d:61:45:ff:e2:90:fe:48:9c:43:e2:a7:aa:50:
90:3b:6e:7e:f3:c2:8d:7d:5f:a8:e1:f6:fc:3b:b7:a1:63:5a:
c1:d5:2c:ba:3c:38:a0:a4:30:a1:93:cb:ae:39:07:51:3e:2f:
d9:5c:0f:8a:85:df:6c:f3:c4:2c:69:fe:63:be:4c:60:f0:7e:
b4:04:7f:31:0e:ba:30:e4:8d:75:f5:e9:ad:58:14:4a:2c:39:
d2:ed:05:9c:e2:84:46:75:bf:e7:3b:98:f6:88:1f:bb:4e:64:
77:6c:c5:f8:49:d9:37:00:6f:c2:e3:b5:07:ea:75:75:ed:1a:
7d:5e:28:1e:47:f2:48:56:20:1e:3e:6f:ac:1c:46:55:16:80:
0c:52:56:c4:b2:c2:98:6a:b2:47:12:f5:f7:0c:be:81:d0:06:
cf:c0:f5:ec:0f:3e:71:2c:0a:23:e6:18:50:b1:cb:9b:ab:98:
81:12:ac:64:7f:8e:2d:09:d5:8c:36:51:7e:df:49:f5:c0:16:
f7:a4:32:e8:44:d5:8d:01:4e:71:e4:77:35:a3:92:84:3c:89:
43:07:de:14:13:14:af:41:25:db:34:9e:73:d5:19:a2:dd:eb:
93:39:db:dd:de:e9:45:b9:59:90:7f:e5:d3:68:9b:74:3a:9a:
c5:06:97:cc
-----BEGIN CERTIFICATE-----
MIIFgzCCBGugAwIBAgICMAkwDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAwwKRjM2
OEYyRDBBRjExMC8GA1UEBRMoMjVENjNFMDhFQUJFN0NGQTY3ODVENEMxRDZEMzQx
MTZERTE1QjNEQzAeFw0yMzA3MDQwNzE1MjhaFw0yNDA0MjQwNzE1MjhaMBgxFjAU
BgNVBAMTDTY0YTNjNzE0LWUyOTgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQCbS91HaIj25g9ePqwA/m8gZTjZ3IK8X7VzEFPGLlcsrxwfaf4Y0TPoglY0
TCwnve8/ejzw9YjICK9hPDDP33Z3FGcKRiOeHn8mvTei6GMp0v/J0241UNg9PY5Z
M4Wq5NpRIfaG2izcXgVBeqyhOOqpyhTT/bosd1RTNcsb6Xqj3/+rHDcne8ycBKKR
dPGLwegB57meiGOEw12mSRAFOJSsDXbiBviMLsQF5//oZtlqblWzdY+pi5srQxIO
reV9frbRvWkjoCT2v65yJYy2tMJQEXPU7aCcAp55vQN+4Xy2JCpzKljPjM5GOCqp
rvTmQ0B21/ay7JOf7F0U0qVqOe+bAgMBAAGjggKlMIICoTAdBgNVHQ4EFgQUz4ka
FtH2h0LUB/IKaixAsbf9GtAwHwYDVR0jBBgwFoAUJdY+COq+fPpnhdTB1tNBFt4V
s9wwDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjhGMkQwLzdGNEE5OEVBNkUwNTExRTg5QzBENkU0QkY4QUVBMjI4L0pkWS1D
T3EtZlBwbmhkVEIxdE5CRnQ0VnM5dy5jcmwwZwYIKwYBBQUHAQEEWzBZMFcGCCsG
AQUFBzAChktyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hZnJp
bmljL0pkWS1DT3EtZlBwbmhkVEIxdE5CRnQ0VnM5dy5jZXIwTwYDVR0gAQH/BEUw
QzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5p
Yy5uZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEF
BQcwC4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJl
cl9yZXBvc2l0b3J5L0YzNjhGMkQwLzdGNEE5OEVBNkUwNTExRTg5QzBENkU0QkY4
QUVBMjI4LzhGRERCQTUyMUEzQTExRUVCMTFEN0IxMTRBRDlFNkZDLnJvYTA1Bggr
BgEFBQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54
bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBACazSQwDQYJKoZIhvcNAQEL
BQADggEBAIMlqONdYUX/4pD+SJxD4qeqUJA7bn7zwo19X6jh9vw7t6FjWsHVLLo8
OKCkMKGTy645B1E+L9lcD4qF32zzxCxp/mO+TGDwfrQEfzEOujDkjXX16a1YFEos
OdLtBZzihEZ1v+c7mPaIH7tOZHdsxfhJ2TcAb8LjtQfqdXXtGn1eKB5H8khWIB4+
b6wcRlUWgAxSVsSywphqskcS9fcMvoHQBs/A9ewPPnEsCiPmGFCxy5urmIESrGR/
ji0J1Yw2UX7fSfXAFvekMuhE1Y0BTnHkdzWjkoQ8iUMH3hQTFK9BJds0nnPVGaLd
65M5293e6UW5WZB/5dNom3Q6msUGl8w=
-----END CERTIFICATE-----
Generated at Wed Apr 24 12:34:44 2024 by rpki-client on console-ams.rpki-client.org