Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/AF5F7850E47111EE84C5A668775412E6.roa
File: AF5F7850E47111EE84C5A668775412E6.roa (raw, json)
Hash identifier: BXM9xSqZ8DuhABjQVbF/b4L+g5DsJD3eHnHgrSuKYug=
Subject key identifier: 6A:EB:B2:2E:A3:22:FE:20:61:93:7A:75:42:4B:40:98:21:24:D3:7E
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A227
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/AF5F7850E47111EE84C5A668775412E6.roa
Signing time: Sun 17 Mar 2024 15:19:02 +0000
ROA not before: Sun 17 Mar 2024 15:18:59 +0000
ROA not after: Tue 30 Apr 2024 15:18:59 +0000
asID: 63139
IP address blocks: 154.94.77.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 41511 (0xa227)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 17 15:18:59 2024 GMT
Not After : Apr 30 15:18:59 2024 GMT
Subject: CN=65f709e6-22d4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:84:fd:aa:ec:11:2a:f5:11:26:15:c2:25:fd:
37:41:34:f5:79:e3:b6:c5:46:b9:97:f9:66:90:40:
fe:e7:03:bf:60:e7:0f:e3:08:1d:5e:ba:8d:4c:26:
92:c3:5d:45:53:4f:5d:09:d6:7d:d8:57:8b:25:58:
dd:f6:45:aa:e6:71:cb:ec:d5:d2:67:8b:24:06:c2:
d9:bc:c8:e1:56:f8:66:bb:1f:5a:b2:62:c1:cd:2e:
52:90:a8:f9:cb:7b:cd:6a:78:5b:71:d7:fa:5e:aa:
fe:81:01:da:5a:dd:9f:70:f0:28:86:39:37:8d:a7:
30:26:bd:e8:ea:f3:7d:9f:b9:aa:df:b2:32:c2:e4:
8b:78:3d:e1:95:8f:3d:09:ab:a8:ed:5b:09:92:93:
12:0e:46:5f:91:c8:43:5c:41:b4:41:8e:39:87:4a:
41:bd:2c:28:33:9b:8b:10:eb:e8:b6:10:6c:09:f4:
bb:94:b3:17:6f:ae:b4:9c:fc:d5:95:80:18:cd:e3:
e7:2c:05:c8:5a:bd:0f:77:eb:04:47:37:9a:96:95:
2c:b3:cb:05:78:43:1c:1c:65:45:63:54:b7:64:a5:
5d:85:42:8e:10:d0:53:c6:74:fb:b6:43:71:06:71:
1d:1f:0f:2e:8e:1f:54:28:e4:54:ca:97:f8:61:ba:
1e:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:EB:B2:2E:A3:22:FE:20:61:93:7A:75:42:4B:40:98:21:24:D3:7E
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/AF5F7850E47111EE84C5A668775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.94.77.0/24
Signature Algorithm: sha256WithRSAEncryption
50:3a:58:e1:ad:32:1b:63:2f:7c:11:58:10:7f:2a:ea:4a:15:
84:5d:f1:65:5a:09:4c:4b:31:81:7f:fc:d7:d9:fb:29:17:33:
e7:7c:38:25:78:3e:8e:af:63:39:d3:f8:80:d7:b9:f4:d4:af:
fd:3f:eb:db:44:9b:cc:71:d0:84:d5:a5:7d:09:6a:ba:07:1b:
4c:ae:cb:05:6a:b0:b1:df:83:f1:28:89:37:a7:7b:7c:f7:a3:
ce:71:ee:50:7a:6c:be:b7:16:e3:66:15:f9:b3:7b:52:8b:32:
f3:25:3b:42:c5:63:17:90:cf:a1:43:9c:54:7d:24:b8:c7:c1:
e0:45:02:c2:fc:b6:1b:71:c5:dd:94:18:fc:96:12:21:cd:54:
76:0c:c8:32:79:3d:fc:3e:7b:4c:c1:0c:35:cd:3a:d5:77:11:
cc:e9:33:e3:0f:e3:6f:d1:72:77:19:02:11:d9:de:2e:8c:2e:
9c:09:3e:ca:9c:15:63:12:3e:fa:aa:c9:99:e2:46:17:79:9d:
55:f9:61:c2:36:b1:6b:1a:6b:13:d9:74:a4:4c:db:0c:df:e8:
da:e0:86:49:3b:53:fb:a3:3d:ed:d2:5f:a8:8d:e7:bc:62:c7:
20:bb:74:18:05:99:86:a6:5c:5e:43:3e:72:73:60:18:62:bb:
5a:b8:fc:09
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAKInMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQwMzE3MTUxODU5WhcNMjQwNDMwMTUxODU5WjAYMRYw
FAYDVQQDEw02NWY3MDllNi0yMmQ0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAoIT9quwRKvURJhXCJf03QTT1eeO2xUa5l/lmkED+5wO/YOcP4wgdXrqN
TCaSw11FU09dCdZ92FeLJVjd9kWq5nHL7NXSZ4skBsLZvMjhVvhmux9asmLBzS5S
kKj5y3vNanhbcdf6Xqr+gQHaWt2fcPAohjk3jacwJr3o6vN9n7mq37IywuSLeD3h
lY89Cauo7VsJkpMSDkZfkchDXEG0QY45h0pBvSwoM5uLEOvothBsCfS7lLMXb660
nPzVlYAYzePnLAXIWr0Pd+sERzealpUss8sFeEMcHGVFY1S3ZKVdhUKOENBTxnT7
tkNxBnEdHw8ujh9UKORUypf4YboelwIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFGrr
si6jIv4gYZN6dUJLQJghJNN+MB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC9BRjVGNzg1MEU0NzExMUVFODRDNUE2Njg3NzU0MTJFNi5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAml5NMA0GCSqGSIb3DQEB
CwUAA4IBAQBQOljhrTIbYy98EVgQfyrqShWEXfFlWglMSzGBf/zX2fspFzPnfDgl
eD6Or2M50/iA17n01K/9P+vbRJvMcdCE1aV9CWq6BxtMrssFarCx34PxKIk3p3t8
96POce5Qemy+txbjZhX5s3tSizLzJTtCxWMXkM+hQ5xUfSS4x8HgRQLC/LYbccXd
lBj8lhIhzVR2DMgyeT38PntMwQw1zTrVdxHM6TPjD+Nv0XJ3GQIR2d4ujC6cCT7K
nBVjEj76qsmZ4kYXeZ1V+WHCNrFrGmsT2XSkTNsM3+ja4IZJO1P7oz3t0l+ojee8
Yscgu3QYBZmGplxeQz5yc2AYYrtauPwJ
-----END CERTIFICATE-----
Generated at Wed May 1 02:40:37 2024 by rpki-client on console-fra.rpki-client.org