Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B574378CE47411EEB923437C775412E6.roa
File: B574378CE47411EEB923437C775412E6.roa (raw, json)
Hash identifier: FXoHbJ/nDaPmoAHYdjs2e7sKlVZDkDWDYOUhS6Gpj3o=
Subject key identifier: F6:D7:9C:99:1D:96:9A:58:A5:39:F3:9A:B2:20:8C:39:5B:14:14:98
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A247
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B574378CE47411EEB923437C775412E6.roa
Signing time: Sun 17 Mar 2024 15:40:41 +0000
ROA not before: Sun 17 Mar 2024 15:40:34 +0000
ROA not after: Tue 30 Apr 2024 15:40:34 +0000
asID: 63139
IP address blocks: 154.94.111.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 41543 (0xa247)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 17 15:40:34 2024 GMT
Not After : Apr 30 15:40:34 2024 GMT
Subject: CN=65f70ef9-b7fd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:c1:c0:d0:cf:b1:5a:8b:8f:28:11:c8:61:55:
1f:25:ae:93:e1:52:61:5f:e9:a6:57:84:e1:e5:eb:
6d:1c:e2:29:6d:5e:ff:29:cf:8c:f7:11:6b:7c:5d:
a2:e6:76:3f:6c:0c:f3:08:09:8f:21:57:94:b0:49:
e8:b5:36:a4:4b:0a:85:f0:8c:af:73:62:74:8c:6e:
11:db:47:c7:07:11:d4:a0:4a:be:e8:67:61:1e:c1:
2e:1a:ac:33:25:a2:5b:e4:41:7e:d1:ec:23:b9:2e:
c1:2e:0c:73:c3:fe:21:5b:63:8e:c9:45:13:9e:e3:
7c:72:1b:de:c1:72:78:7e:54:91:cf:de:76:05:9f:
40:92:d6:f2:9b:08:f2:d3:0a:04:a8:8d:65:ed:57:
cb:4f:4d:86:3f:9e:08:b2:f1:97:e4:55:92:86:2f:
11:d6:88:31:e5:89:77:8b:cc:0a:63:19:df:b2:43:
7e:d9:ee:b3:f7:9a:f7:2a:65:91:00:32:72:f4:ca:
07:41:62:62:eb:21:f9:4c:06:9f:c3:b4:a8:2b:d0:
1f:b6:65:d3:2c:0b:ff:43:59:07:10:87:70:f0:10:
45:54:0d:c4:f9:fa:b2:6f:57:50:9b:78:7c:4c:20:
a7:30:38:d7:cb:3f:65:b1:ac:85:cd:15:11:fa:1b:
83:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:D7:9C:99:1D:96:9A:58:A5:39:F3:9A:B2:20:8C:39:5B:14:14:98
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B574378CE47411EEB923437C775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.94.111.0/24
Signature Algorithm: sha256WithRSAEncryption
81:27:be:91:f6:35:3f:5d:bb:0c:f6:76:bc:d3:cd:84:b4:6d:
d0:cc:08:26:f5:63:a0:21:2c:25:84:c5:43:25:91:95:f5:45:
5b:b3:3e:c3:06:57:0f:8f:fb:25:e6:81:97:60:b8:95:fc:6a:
a1:ae:85:ab:5c:7e:6b:92:71:28:86:81:a6:29:8e:b7:4d:8b:
62:1d:20:28:37:a3:fd:bb:e9:8c:16:2c:47:9e:5a:ea:57:91:
49:ab:9b:21:b2:67:d5:ee:5a:56:e3:79:dc:e4:64:36:0a:4f:
0e:c3:9d:51:00:71:6c:79:a6:7f:c6:f9:fc:4e:01:c9:29:c0:
69:9d:c9:32:37:a6:c3:04:2c:f7:24:e0:73:97:18:56:df:51:
92:de:e6:19:90:e2:c3:8b:fd:1e:03:97:d8:75:f2:31:5e:f3:
88:d2:b3:7e:87:30:fb:ba:88:89:78:26:c2:67:5c:fd:08:06:
a5:84:a4:d4:d2:ae:c2:dc:24:de:ba:5c:5a:0b:1c:85:c9:c0:
2d:46:36:7f:e9:e0:a8:03:a6:2d:7f:47:0d:12:8e:18:c1:5d:
a9:16:0e:af:14:5b:07:71:5c:fd:11:e5:d5:df:44:57:64:21:
ed:81:9d:c7:81:72:38:90:b1:f8:da:3e:09:98:b6:57:76:ec:
26:a5:7e:75
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAKJHMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQwMzE3MTU0MDM0WhcNMjQwNDMwMTU0MDM0WjAYMRYw
FAYDVQQDEw02NWY3MGVmOS1iN2ZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAwsHA0M+xWouPKBHIYVUfJa6T4VJhX+mmV4Th5ettHOIpbV7/Kc+M9xFr
fF2i5nY/bAzzCAmPIVeUsEnotTakSwqF8Iyvc2J0jG4R20fHBxHUoEq+6GdhHsEu
GqwzJaJb5EF+0ewjuS7BLgxzw/4hW2OOyUUTnuN8chvewXJ4flSRz952BZ9Aktby
mwjy0woEqI1l7VfLT02GP54IsvGX5FWShi8R1ogx5Yl3i8wKYxnfskN+2e6z95r3
KmWRADJy9MoHQWJi6yH5TAafw7SoK9AftmXTLAv/Q1kHEIdw8BBFVA3E+fqyb1dQ
m3h8TCCnMDjXyz9lsayFzRUR+huDYwIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFPbX
nJkdlppYpTnzmrIgjDlbFBSYMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC9CNTc0Mzc4Q0U0NzQxMUVFQjkyMzQzN0M3NzU0MTJFNi5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAml5vMA0GCSqGSIb3DQEB
CwUAA4IBAQCBJ76R9jU/XbsM9na8082EtG3QzAgm9WOgISwlhMVDJZGV9UVbsz7D
BlcPj/sl5oGXYLiV/GqhroWrXH5rknEohoGmKY63TYtiHSAoN6P9u+mMFixHnlrq
V5FJq5shsmfV7lpW43nc5GQ2Ck8Ow51RAHFseaZ/xvn8TgHJKcBpnckyN6bDBCz3
JOBzlxhW31GS3uYZkOLDi/0eA5fYdfIxXvOI0rN+hzD7uoiJeCbCZ1z9CAalhKTU
0q7C3CTeulxaCxyFycAtRjZ/6eCoA6Ytf0cNEo4YwV2pFg6vFFsHcVz9EeXV30RX
ZCHtgZ3HgXI4kLH42j4JmLZXduwmpX51
-----END CERTIFICATE-----
Generated at Wed May 1 02:03:19 2024 by rpki-client on console-ams.rpki-client.org