Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/9D416FC8157A11EE81926A274AD9E6FC.roa
File: 9D416FC8157A11EE81926A274AD9E6FC.roa (raw, json)
Hash identifier: AsGRX36oE9elYQSadGBm8PfFTy1gFEN6LS8zCBQdIDY=
Subject key identifier: 97:D0:3E:0C:A1:E9:50:0A:57:6B:23:51:82:84:B9:A8:D4:4C:B9:A4
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 2ECF
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/9D416FC8157A11EE81926A274AD9E6FC.roa
Signing time: Wed 28 Jun 2023 06:11:27 +0000
ROA not before: Wed 28 Jun 2023 06:11:23 +0000
ROA not after: Thu 25 Apr 2024 06:11:23 +0000
asID: 28458
IP address blocks: 154.212.6.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 11983 (0x2ecf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jun 28 06:11:23 2023 GMT
Not After : Apr 25 06:11:23 2024 GMT
Subject: CN=649bcf0e-4bdf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:68:5c:43:fb:d8:24:d9:f3:20:a7:26:86:f3:
86:43:f5:39:14:24:26:79:db:fe:e6:b7:bc:a4:41:
c7:06:1a:c1:40:f2:e4:ea:3a:55:f8:c1:56:61:1d:
0a:e4:fb:59:69:cd:8a:8c:c2:04:50:51:8c:1a:e4:
c5:ee:8e:10:2e:31:51:9a:40:48:4a:8e:e5:b7:6e:
81:58:92:cd:fd:32:03:dd:0f:ff:8a:45:7b:71:c7:
72:e2:01:fa:cd:e5:53:f1:b5:e3:ef:33:6e:05:3f:
dc:0b:0b:c4:aa:b4:14:9b:b1:7f:9b:d6:dc:45:66:
2f:ea:5c:90:ba:c8:91:20:bb:30:96:42:3a:bd:9e:
21:af:70:bc:a6:f4:6a:ef:99:08:a7:c2:fb:3a:67:
9e:31:b8:de:fa:1f:c0:5c:9b:3b:50:2e:f8:20:31:
9e:69:1f:bd:62:30:22:5e:5a:c3:b1:f9:6d:cb:56:
31:c6:2d:da:8f:d7:bc:2e:c2:bf:b3:3e:30:76:e7:
c2:87:0e:e8:9b:32:5f:27:ca:58:d0:9d:75:eb:c4:
73:a5:65:69:ed:0f:72:e0:45:2e:c7:df:d2:9f:ec:
01:ad:ed:64:df:bb:59:eb:05:86:69:e2:88:05:0d:
1e:fc:b0:ec:32:19:78:4e:ce:63:6b:7d:5d:3f:73:
a1:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:D0:3E:0C:A1:E9:50:0A:57:6B:23:51:82:84:B9:A8:D4:4C:B9:A4
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/9D416FC8157A11EE81926A274AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.212.6.0/24
Signature Algorithm: sha256WithRSAEncryption
68:14:33:9a:55:49:d8:06:2e:86:90:72:e1:dd:49:36:98:f6:
7f:b2:60:01:86:e0:f7:d7:d3:32:79:8b:a8:df:59:bf:07:fa:
e8:94:0b:75:92:b5:1b:e3:74:c7:d9:84:ea:c9:98:0d:e0:81:
d0:a9:98:59:77:3f:4f:e8:aa:30:b5:bf:dd:af:c0:5b:90:42:
79:43:00:ed:a8:1a:46:95:3f:8e:6a:09:f9:fa:29:75:c9:a4:
d9:b3:7f:09:3b:d3:64:a0:4f:10:53:8a:ea:48:a9:36:4c:65:
8a:f4:f9:b0:23:16:32:dd:8e:91:50:fa:ac:28:95:73:7a:3e:
9d:fc:a6:e8:13:6f:b2:2e:31:f1:65:72:84:46:d8:cd:cd:2c:
ba:b5:88:e9:38:06:47:02:9e:6d:57:04:f4:f9:ec:51:a7:1c:
46:82:5c:8d:f4:22:5d:37:19:09:e2:33:30:21:ce:92:dd:99:
bc:d4:60:b3:98:dd:a1:91:a4:e8:d2:9e:45:b5:2e:39:51:09:
6c:66:80:90:00:1e:98:73:ea:fb:52:2a:95:28:cb:6b:d8:56:
be:fd:7f:90:bc:00:ee:78:7d:66:8a:db:12:95:8a:09:cd:6b:
04:ac:18:7a:a1:ba:f9:b9:22:28:5a:f3:52:e0:3e:66:3e:f8:
d0:8a:aa:6e
-----BEGIN CERTIFICATE-----
MIIFgzCCBGugAwIBAgICLs8wDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAwwKRjM2
OEYyRDBBRjExMC8GA1UEBRMoMjVENjNFMDhFQUJFN0NGQTY3ODVENEMxRDZEMzQx
MTZERTE1QjNEQzAeFw0yMzA2MjgwNjExMjNaFw0yNDA0MjUwNjExMjNaMBgxFjAU
BgNVBAMTDTY0OWJjZjBlLTRiZGYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQCtaFxD+9gk2fMgpyaG84ZD9TkUJCZ52/7mt7ykQccGGsFA8uTqOlX4wVZh
HQrk+1lpzYqMwgRQUYwa5MXujhAuMVGaQEhKjuW3boFYks39MgPdD/+KRXtxx3Li
AfrN5VPxtePvM24FP9wLC8SqtBSbsX+b1txFZi/qXJC6yJEguzCWQjq9niGvcLym
9GrvmQinwvs6Z54xuN76H8BcmztQLvggMZ5pH71iMCJeWsOx+W3LVjHGLdqP17wu
wr+zPjB258KHDuibMl8nyljQnXXrxHOlZWntD3LgRS7H39Kf7AGt7WTfu1nrBYZp
4ogFDR78sOwyGXhOzmNrfV0/c6HVAgMBAAGjggKlMIICoTAdBgNVHQ4EFgQUl9A+
DKHpUApXayNRgoS5qNRMuaQwHwYDVR0jBBgwFoAUJdY+COq+fPpnhdTB1tNBFt4V
s9wwDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjhGMkQwLzdGNEE5OEVBNkUwNTExRTg5QzBENkU0QkY4QUVBMjI4L0pkWS1D
T3EtZlBwbmhkVEIxdE5CRnQ0VnM5dy5jcmwwZwYIKwYBBQUHAQEEWzBZMFcGCCsG
AQUFBzAChktyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hZnJp
bmljL0pkWS1DT3EtZlBwbmhkVEIxdE5CRnQ0VnM5dy5jZXIwTwYDVR0gAQH/BEUw
QzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5p
Yy5uZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEF
BQcwC4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJl
cl9yZXBvc2l0b3J5L0YzNjhGMkQwLzdGNEE5OEVBNkUwNTExRTg5QzBENkU0QkY4
QUVBMjI4LzlENDE2RkM4MTU3QTExRUU4MTkyNkEyNzRBRDlFNkZDLnJvYTA1Bggr
BgEFBQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54
bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBACa1AYwDQYJKoZIhvcNAQEL
BQADggEBAGgUM5pVSdgGLoaQcuHdSTaY9n+yYAGG4PfX0zJ5i6jfWb8H+uiUC3WS
tRvjdMfZhOrJmA3ggdCpmFl3P0/oqjC1v92vwFuQQnlDAO2oGkaVP45qCfn6KXXJ
pNmzfwk702SgTxBTiupIqTZMZYr0+bAjFjLdjpFQ+qwolXN6Pp38pugTb7IuMfFl
coRG2M3NLLq1iOk4BkcCnm1XBPT57FGnHEaCXI30Il03GQniMzAhzpLdmbzUYLOY
3aGRpOjSnkW1LjlRCWxmgJAAHphz6vtSKpUoy2vYVr79f5C8AO54fWaK2xKVignN
awSsGHqhuvm5Iiha81LgPmY++NCKqm4=
-----END CERTIFICATE-----
Generated at Thu Apr 25 09:50:18 2024 by rpki-client on console-fra.rpki-client.org