Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A3B69EF2014011EFA7033F18017001B1.roa
File: A3B69EF2014011EFA7033F18017001B1.roa (raw, json)
Hash identifier: H+vRcjVUqov5520ewH5jJ7xDiDT9+nvyVQoHlOhZ92c=
Subject key identifier: 60:A2:15:97:91:12:57:A3:8D:CD:14:1E:5C:CD:B6:D7:A1:FD:D3:EA
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: AEC7
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A3B69EF2014011EFA7033F18017001B1.roa
Signing time: Tue 23 Apr 2024 07:11:01 +0000
ROA not before: Tue 23 Apr 2024 07:10:57 +0000
ROA not after: Sat 25 May 2024 07:10:57 +0000
asID: 135983
IP address blocks: 154.200.32.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 44743 (0xaec7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 23 07:10:57 2024 GMT
Not After : May 25 07:10:57 2024 GMT
Subject: CN=66275f05-39e9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:61:a6:e7:fa:8f:3f:a8:24:3c:ea:dc:bb:ed:
4e:1a:e1:06:5b:4a:53:a0:21:64:7c:36:89:5e:4b:
45:ee:1b:46:6f:e6:21:cb:7c:2e:80:2f:f2:0f:8f:
a4:b8:3b:cf:00:a6:f2:91:0d:f0:6d:09:3d:34:3c:
2c:b7:7f:64:1f:d5:d0:f7:66:6e:e5:c5:9d:e7:11:
2a:45:02:bc:b2:b9:ae:80:64:e4:61:0d:07:a6:5d:
c5:70:cb:48:c3:44:fd:f7:af:a9:4e:0b:af:b1:0a:
cd:2f:ab:ec:e2:b7:95:38:7d:a0:cf:18:7c:31:db:
1f:f7:09:da:79:a1:a1:b2:70:9b:0e:c1:50:28:d7:
a6:d3:d6:b5:83:65:dc:36:b5:69:2e:51:79:30:5d:
88:9b:bc:99:df:a0:d7:21:73:3b:30:ca:2e:be:63:
b7:c5:fe:25:4a:7e:39:29:c3:22:a3:e0:7b:1e:05:
e9:8f:b7:c0:ac:2d:6d:de:49:d7:d5:5a:5f:c6:aa:
28:db:31:0b:8f:5f:db:bc:49:95:ce:af:a0:07:5b:
a5:97:27:a3:dc:31:cc:21:7b:a3:1b:be:ea:90:5a:
41:65:aa:64:d2:55:41:36:0a:90:d9:30:43:74:df:
97:7c:86:28:2e:74:fd:91:dc:48:36:6c:76:f0:12:
00:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:A2:15:97:91:12:57:A3:8D:CD:14:1E:5C:CD:B6:D7:A1:FD:D3:EA
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A3B69EF2014011EFA7033F18017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.200.32.0/24
Signature Algorithm: sha256WithRSAEncryption
c1:6e:b0:37:a3:cf:2c:33:e5:e9:a2:db:0e:bc:a7:fe:8b:9f:
18:bb:57:20:06:e1:e9:d8:36:6c:86:81:e5:a8:e8:4b:35:69:
d6:8c:d3:87:b3:f4:f7:db:e0:bf:04:7b:f0:1f:81:fd:51:26:
93:fe:b4:25:5c:5c:5e:b0:1d:b6:6c:c4:43:7c:62:fd:95:21:
27:34:20:be:04:ef:90:3c:14:fd:80:fa:e7:b5:f3:c7:7e:44:
6f:87:c9:fe:88:47:e2:95:19:c5:00:d0:0b:72:58:73:97:d0:
1c:97:74:03:7c:d5:fa:ad:6f:d1:e5:ab:d9:e6:e2:59:1d:de:
65:b7:7d:f5:dd:de:63:d7:a4:d6:4f:3e:88:f2:dd:e9:51:f5:
80:2a:9f:aa:70:ae:1a:5f:2b:3d:c2:dd:b6:61:e8:41:ea:97:
89:53:97:20:eb:47:cb:c6:30:80:34:4b:91:b5:c4:c0:db:5a:
02:ea:f5:95:e4:71:7e:69:c5:76:a5:4b:2e:92:ee:d9:ec:e3:
54:19:ea:b5:a3:ee:3c:86:76:d5:ad:76:8a:46:2c:a2:e3:38:
a4:d7:22:0c:00:e7:56:20:d3:d3:15:fe:8b:43:ff:09:7d:c5:
4b:00:8d:91:43:5f:6f:c4:33:11:24:7d:f0:b6:f1:28:4d:bb:
b4:85:64:74
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAK7HMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQwNDIzMDcxMDU3WhcNMjQwNTI1MDcxMDU3WjAYMRYw
FAYDVQQDEw02NjI3NWYwNS0zOWU5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEArmGm5/qPP6gkPOrcu+1OGuEGW0pToCFkfDaJXktF7htGb+Yhy3wugC/y
D4+kuDvPAKbykQ3wbQk9NDwst39kH9XQ92Zu5cWd5xEqRQK8srmugGTkYQ0Hpl3F
cMtIw0T996+pTguvsQrNL6vs4reVOH2gzxh8Mdsf9wnaeaGhsnCbDsFQKNem09a1
g2XcNrVpLlF5MF2Im7yZ36DXIXM7MMouvmO3xf4lSn45KcMio+B7HgXpj7fArC1t
3knX1Vpfxqoo2zELj1/bvEmVzq+gB1ullyej3DHMIXujG77qkFpBZapk0lVBNgqQ
2TBDdN+XfIYoLnT9kdxINmx28BIAbQIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFGCi
FZeRElejjc0UHlzNtteh/dPqMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC9BM0I2OUVGMjAxNDAxMUVGQTcwMzNGMTgwMTcwMDFCMS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmsggMA0GCSqGSIb3DQEB
CwUAA4IBAQDBbrA3o88sM+XpotsOvKf+i58Yu1cgBuHp2DZshoHlqOhLNWnWjNOH
s/T32+C/BHvwH4H9USaT/rQlXFxesB22bMRDfGL9lSEnNCC+BO+QPBT9gPrntfPH
fkRvh8n+iEfilRnFANALclhzl9Acl3QDfNX6rW/R5avZ5uJZHd5lt3313d5j16TW
Tz6I8t3pUfWAKp+qcK4aXys9wt22YehB6peJU5cg60fLxjCANEuRtcTA21oC6vWV
5HF+acV2pUsuku7Z7ONUGeq1o+48hnbVrXaKRiyi4zik1yIMAOdWINPTFf6LQ/8J
fcVLAI2RQ19vxDMRJH3wtvEoTbu0hWR0
-----END CERTIFICATE-----
Generated at Sun May 26 02:14:34 2024 by rpki-client on console-ams.rpki-client.org