Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/902A1C38128411EFAF5C5656017001B1.roa
File: 902A1C38128411EFAF5C5656017001B1.roa (raw, json)
Hash identifier: 2UDaHN5DegvJwUX9E5x9E1sS/9WqWE0lN/bdtL/4sN8=
Subject key identifier: 25:1E:B1:A5:BE:91:C5:E3:0F:D4:44:58:CE:53:EF:81:92:A2:18:6C
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: B793
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/902A1C38128411EFAF5C5656017001B1.roa
Signing time: Wed 15 May 2024 06:30:04 +0000
ROA not before: Wed 15 May 2024 06:30:00 +0000
ROA not after: Sun 26 May 2024 06:30:00 +0000
asID: 142062
IP address blocks: 154.212.149.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 46995 (0xb793)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 15 06:30:00 2024 GMT
Not After : May 26 06:30:00 2024 GMT
Subject: CN=6644566b-6130
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:44:87:0f:d2:d7:59:74:25:18:b0:37:63:66:
e9:94:fe:59:58:9c:3e:01:0a:72:bb:67:b7:38:f8:
53:a1:d1:d9:33:2b:0e:9b:24:58:6d:af:d9:4f:29:
8c:24:4a:aa:5b:ea:6d:69:09:ef:71:7f:ba:c4:a6:
d8:e1:be:7d:ee:d9:ff:bf:67:5e:ab:ca:50:bc:f1:
9e:33:11:c3:56:ff:af:be:0b:0a:12:1e:16:cd:12:
e2:22:f8:6a:3e:32:e5:c1:f9:e1:08:2c:4b:8c:9b:
1d:e2:96:64:39:09:fc:29:cb:4f:ff:a7:b6:3f:5e:
45:c7:4c:36:f5:e7:fa:11:78:4b:b3:e3:3a:36:90:
4e:1b:c7:b9:a2:01:64:0b:9c:2e:d1:d4:89:04:11:
8b:8b:69:f6:79:c3:13:74:8a:09:7e:f8:89:b8:e0:
9a:2f:8d:94:a1:21:ac:2f:0f:9c:08:5f:7f:a9:32:
10:2e:77:e3:ba:c2:65:d5:18:7e:4a:ec:6e:78:27:
a7:36:f6:8e:cf:aa:e7:09:0e:67:79:70:e0:55:b5:
0a:d2:dd:a1:d2:31:e3:b9:b6:fb:6f:c4:df:0d:35:
a7:77:d8:89:a0:f9:8d:c2:93:36:bb:4b:ae:b0:6a:
0d:3e:85:fb:fb:e3:93:4d:bb:5f:01:47:28:2a:d9:
22:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:1E:B1:A5:BE:91:C5:E3:0F:D4:44:58:CE:53:EF:81:92:A2:18:6C
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/902A1C38128411EFAF5C5656017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.212.149.0/24
Signature Algorithm: sha256WithRSAEncryption
7b:02:42:af:70:c0:cd:63:44:13:1d:3f:9d:5b:16:ab:9d:17:
24:6b:31:fc:07:c0:1b:48:7b:3e:3f:fa:08:24:7e:7e:0f:18:
21:dd:1a:3c:89:73:72:6d:58:67:7f:6c:c5:d6:a2:99:07:02:
65:ab:b5:38:7b:3d:a5:80:10:fc:46:ba:2d:e4:1e:b3:af:b0:
26:13:f9:11:d6:81:4d:9c:54:3d:b7:1d:67:8e:81:be:de:69:
8d:56:7e:fe:a6:8d:72:3d:5f:1e:1d:2a:a7:c3:2a:cb:f6:c3:
96:d6:ef:52:89:ab:50:ae:78:2b:00:a7:da:3e:73:92:32:08:
61:20:1e:26:91:11:4f:37:fd:31:0e:84:74:03:8e:a9:f7:56:
8f:16:34:90:07:09:cd:8a:39:c2:d0:56:8a:f7:19:2c:ea:91:
b9:eb:78:5b:7e:2b:6c:50:fe:16:b0:f5:53:4d:d4:7e:7d:89:
02:26:b9:1e:dd:8f:b1:e2:d0:74:8b:50:29:5f:ea:c3:b0:c5:
bc:bd:2d:05:54:94:ca:be:d3:db:d3:7a:1f:90:d7:81:14:38:
57:05:1b:5f:d3:08:60:00:a8:2c:f8:f7:5d:6f:09:15:87:e3:
34:af:52:1f:61:27:15:3d:38:be:cf:79:e8:ce:1e:2b:d0:bf:
8e:65:c1:90
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDALeTMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQwNTE1MDYzMDAwWhcNMjQwNTI2MDYzMDAwWjAYMRYw
FAYDVQQDEw02NjQ0NTY2Yi02MTMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEApESHD9LXWXQlGLA3Y2bplP5ZWJw+AQpyu2e3OPhTodHZMysOmyRYba/Z
TymMJEqqW+ptaQnvcX+6xKbY4b597tn/v2deq8pQvPGeMxHDVv+vvgsKEh4WzRLi
IvhqPjLlwfnhCCxLjJsd4pZkOQn8KctP/6e2P15Fx0w29ef6EXhLs+M6NpBOG8e5
ogFkC5wu0dSJBBGLi2n2ecMTdIoJfviJuOCaL42UoSGsLw+cCF9/qTIQLnfjusJl
1Rh+SuxueCenNvaOz6rnCQ5neXDgVbUK0t2h0jHjubb7b8TfDTWnd9iJoPmNwpM2
u0uusGoNPoX7++OTTbtfAUcoKtki3QIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFCUe
saW+kcXjD9REWM5T74GSohhsMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC85MDJBMUMzODEyODQxMUVGQUY1QzU2NTYwMTcwMDFCMS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmtSVMA0GCSqGSIb3DQEB
CwUAA4IBAQB7AkKvcMDNY0QTHT+dWxarnRckazH8B8AbSHs+P/oIJH5+Dxgh3Ro8
iXNybVhnf2zF1qKZBwJlq7U4ez2lgBD8Rrot5B6zr7AmE/kR1oFNnFQ9tx1njoG+
3mmNVn7+po1yPV8eHSqnwyrL9sOW1u9SiatQrngrAKfaPnOSMghhIB4mkRFPN/0x
DoR0A46p91aPFjSQBwnNijnC0FaK9xks6pG563hbfitsUP4WsPVTTdR+fYkCJrke
3Y+x4tB0i1ApX+rDsMW8vS0FVJTKvtPb03ofkNeBFDhXBRtf0whgAKgs+PddbwkV
h+M0r1IfYScVPTi+z3nozh4r0L+OZcGQ
-----END CERTIFICATE-----
Generated at Thu Jun 6 16:48:41 2024 by rpki-client on console-fra.rpki-client.org