Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/AF24ECB8E47011EEA9A40762775412E6.roa
File: AF24ECB8E47011EEA9A40762775412E6.roa (raw, json)
Hash identifier: s9MuuwCL9ZDFMOTtGdB8jXYPQpdKWLtLYqzIf+jfSH4=
Subject key identifier: 39:CC:C1:2B:DE:D9:3B:00:52:58:B6:E7:2B:8F:F1:40:89:CD:6F:E8
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A21D
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/AF24ECB8E47011EEA9A40762775412E6.roa
Signing time: Sun 17 Mar 2024 15:11:52 +0000
ROA not before: Sun 17 Mar 2024 15:11:49 +0000
ROA not after: Tue 30 Apr 2024 15:11:49 +0000
asID: 63139
IP address blocks: 154.94.85.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 41501 (0xa21d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 17 15:11:49 2024 GMT
Not After : Apr 30 15:11:49 2024 GMT
Subject: CN=65f70838-7873
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ee:44:e4:cf:6e:9c:be:e2:63:62:2b:24:47:e8:
95:e8:51:f3:a6:62:73:dc:bd:59:fb:15:d8:1a:0a:
a5:71:63:08:46:8b:3d:2f:91:0d:2b:eb:9f:91:f2:
61:67:7d:97:90:e0:56:48:b4:81:40:67:d2:26:b3:
12:f0:b2:22:49:2b:55:df:62:37:a7:38:c9:e6:55:
af:d4:12:ce:98:4b:85:f6:c7:59:76:6a:68:98:6d:
2a:60:c5:ef:57:2e:e3:d3:ca:43:82:3a:bf:fa:65:
81:b5:50:0b:fa:9b:6f:fb:af:7b:f7:67:57:b1:d3:
5c:85:6a:59:c9:5a:be:81:2f:ab:b9:41:92:f7:75:
bb:57:a3:6b:7b:e1:de:3a:58:80:d8:2e:bd:9c:34:
12:32:e8:39:99:09:40:f0:15:68:f1:88:9f:14:2b:
47:01:28:d5:09:c4:59:4c:f1:b8:04:65:23:b5:1d:
70:00:85:d2:63:af:54:1d:1b:b5:b7:cc:7d:ae:82:
9d:74:b4:50:b7:f3:68:2b:49:44:71:cc:fb:df:ae:
c8:a4:3e:98:93:9a:48:ce:fc:fd:58:e4:fc:dc:32:
09:8b:f5:70:4d:0e:4c:4c:b9:ae:f5:16:51:ca:ca:
32:4d:b2:3a:0f:da:e0:21:3b:0d:a6:bd:22:9d:64:
33:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:CC:C1:2B:DE:D9:3B:00:52:58:B6:E7:2B:8F:F1:40:89:CD:6F:E8
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/AF24ECB8E47011EEA9A40762775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.94.85.0/24
Signature Algorithm: sha256WithRSAEncryption
52:3c:21:70:d4:6b:a5:05:00:5c:16:92:56:69:8c:ea:97:6f:
9f:15:34:17:c4:e2:c9:d9:25:76:5a:59:1c:c8:ac:55:b3:51:
89:cd:9f:98:6e:d5:72:75:fb:f4:8e:5d:22:77:e7:d4:40:23:
47:68:e3:77:96:0c:44:dc:41:32:66:e1:1b:15:8e:66:3c:e9:
ed:e5:5f:0c:5c:5a:0a:3d:52:c8:d3:6e:aa:d8:32:c4:1e:73:
ad:37:ea:8c:55:71:aa:b9:d5:a9:1f:bf:7c:5e:52:cf:fe:68:
ab:58:15:f0:79:8d:e4:e1:f2:38:71:c2:e2:06:3c:8f:1c:5b:
50:90:1a:0c:9a:e5:34:fc:d8:ac:85:a3:07:ca:38:66:23:45:
6f:e7:3d:8f:ae:4e:96:fd:92:90:f9:4f:41:82:c3:44:5c:11:
5e:33:5d:a2:77:88:c7:95:e2:da:14:56:ca:44:21:6e:c2:d9:
99:f9:d1:df:b8:38:e1:55:8f:3a:bb:10:cd:3d:0d:b3:19:62:
27:d0:b7:ba:f7:d8:0b:2c:d6:49:27:3d:7c:d8:37:2d:74:06:
b0:3d:11:7f:de:e7:19:92:42:9c:9b:c9:6b:ea:f4:54:84:bc:
bd:e6:e1:6a:2a:16:51:39:c6:1b:e1:a1:89:b1:65:2c:ee:46:
8e:f1:d4:e1
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAKIdMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQwMzE3MTUxMTQ5WhcNMjQwNDMwMTUxMTQ5WjAYMRYw
FAYDVQQDEw02NWY3MDgzOC03ODczMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEA7kTkz26cvuJjYiskR+iV6FHzpmJz3L1Z+xXYGgqlcWMIRos9L5ENK+uf
kfJhZ32XkOBWSLSBQGfSJrMS8LIiSStV32I3pzjJ5lWv1BLOmEuF9sdZdmpomG0q
YMXvVy7j08pDgjq/+mWBtVAL+ptv+69792dXsdNchWpZyVq+gS+ruUGS93W7V6Nr
e+HeOliA2C69nDQSMug5mQlA8BVo8YifFCtHASjVCcRZTPG4BGUjtR1wAIXSY69U
HRu1t8x9roKddLRQt/NoK0lEccz7367IpD6Yk5pIzvz9WOT83DIJi/VwTQ5MTLmu
9RZRysoyTbI6D9rgITsNpr0inWQzrQIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFDnM
wSve2TsAUli25yuP8UCJzW/oMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC9BRjI0RUNCOEU0NzAxMUVFQTlBNDA3NjI3NzU0MTJFNi5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAml5VMA0GCSqGSIb3DQEB
CwUAA4IBAQBSPCFw1GulBQBcFpJWaYzql2+fFTQXxOLJ2SV2WlkcyKxVs1GJzZ+Y
btVydfv0jl0id+fUQCNHaON3lgxE3EEyZuEbFY5mPOnt5V8MXFoKPVLI026q2DLE
HnOtN+qMVXGqudWpH798XlLP/mirWBXweY3k4fI4ccLiBjyPHFtQkBoMmuU0/Nis
haMHyjhmI0Vv5z2Prk6W/ZKQ+U9BgsNEXBFeM12id4jHleLaFFbKRCFuwtmZ+dHf
uDjhVY86uxDNPQ2zGWIn0Le699gLLNZJJz182DctdAawPRF/3ucZkkKcm8lr6vRU
hLy95uFqKhZROcYb4aGJsWUs7kaO8dTh
-----END CERTIFICATE-----
Generated at Wed May 1 02:03:19 2024 by rpki-client on console-ams.rpki-client.org