Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B6F001AAFADA11EE838D4E71017001B1.roa
File: B6F001AAFADA11EE838D4E71017001B1.roa (raw, json)
Hash identifier: t7WISBFKsdpvtNyndVWDZxupUf0oXEKFfPAh6XxywQk=
Subject key identifier: 93:FF:B6:35:1F:79:42:5B:B3:B6:88:92:B8:DD:18:27:36:A0:EE:C3
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: AC11
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B6F001AAFADA11EE838D4E71017001B1.roa
Signing time: Mon 15 Apr 2024 03:46:17 +0000
ROA not before: Mon 15 Apr 2024 03:46:14 +0000
ROA not after: Wed 24 Apr 2024 03:46:14 +0000
asID: 142062
IP address blocks: 154.206.214.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 44049 (0xac11)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 15 03:46:14 2024 GMT
Not After : Apr 24 03:46:14 2024 GMT
Subject: CN=661ca309-41d0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:1e:1a:89:d7:9c:95:d4:7c:fb:b0:43:e2:ff:
cb:d6:26:40:a9:82:11:c5:8c:a2:da:96:00:65:dc:
bc:2d:1c:db:e0:89:d9:d6:cf:e2:d6:59:ca:e7:28:
8d:88:b3:eb:af:d8:e8:cf:b5:42:65:e4:72:a9:ec:
46:c8:6b:fa:d2:16:15:b0:d9:a8:b9:f8:99:59:68:
0f:08:40:43:55:96:86:10:c1:9a:76:38:68:52:c2:
2a:85:32:cc:05:84:75:c7:6c:f3:0d:ed:f7:94:7b:
3e:0b:7b:c9:9c:bb:f1:02:fe:c9:36:66:4c:75:d3:
e9:d1:a7:f0:e1:0d:d7:92:e9:3c:76:02:f5:fb:dd:
0b:17:2a:b7:82:0a:e5:19:7d:c6:4d:60:9d:36:1b:
a1:0e:ee:ea:82:11:01:63:38:99:c3:4b:a9:9d:20:
5a:e8:91:1f:00:f9:dd:a9:c8:50:87:be:22:5e:63:
99:dc:81:de:12:81:f6:af:92:f7:75:04:2f:ec:92:
79:91:04:52:ce:e9:84:df:44:dc:ec:28:b6:85:49:
ec:a6:42:c7:16:11:e6:b7:62:be:90:ec:f2:a6:ec:
44:d1:39:4b:ae:58:5c:d7:69:c8:dd:ae:e3:dd:15:
cc:70:1e:c1:f2:78:d3:62:01:db:09:ca:1e:fc:40:
0a:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:FF:B6:35:1F:79:42:5B:B3:B6:88:92:B8:DD:18:27:36:A0:EE:C3
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B6F001AAFADA11EE838D4E71017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.206.214.0/24
Signature Algorithm: sha256WithRSAEncryption
00:85:2b:8d:69:7c:d4:64:83:ba:99:1a:eb:f4:15:d2:1f:ea:
e2:79:09:ee:c3:85:c7:8c:1e:37:1f:58:bf:6f:8e:e0:c2:a4:
aa:9f:56:39:cd:50:e0:0e:2c:5d:b1:74:cf:6f:4b:9c:7f:c1:
a8:85:51:b5:01:a7:99:9f:f7:35:71:07:b1:f4:7b:3f:42:9e:
83:70:36:56:a8:db:68:2b:f2:a4:bc:d7:b7:e3:26:e7:8c:0a:
f9:9f:8b:c2:25:21:8d:d1:58:15:81:ff:84:1f:7a:e0:1b:85:
61:de:e0:85:91:a8:38:67:2a:4c:7a:d0:52:39:8c:dc:10:9d:
ad:f0:16:c5:90:e2:2d:55:d0:7a:fb:ee:38:9f:35:5b:3f:f8:
bc:77:a2:12:65:ca:7e:21:e6:18:b6:73:cc:65:46:25:b9:ad:
0e:f7:fb:5e:48:db:9a:1b:b1:75:fe:8d:58:d7:05:4d:1a:01:
c8:9a:ea:35:5c:19:ae:b0:cb:77:88:f4:4b:a7:51:51:ec:c2:
3b:b6:9d:45:76:9a:6a:e0:69:61:cd:18:ab:bd:b2:27:83:d3:
79:7c:51:d6:a3:37:c4:1b:ab:1e:b0:2a:af:f9:41:e0:c5:1b:
7c:6e:3f:d6:57:d3:12:79:40:8e:12:c5:5d:ee:fc:c4:b9:03:
15:40:f4:da
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAKwRMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQwNDE1MDM0NjE0WhcNMjQwNDI0MDM0NjE0WjAYMRYw
FAYDVQQDEw02NjFjYTMwOS00MWQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEA3R4aidecldR8+7BD4v/L1iZAqYIRxYyi2pYAZdy8LRzb4InZ1s/i1lnK
5yiNiLPrr9joz7VCZeRyqexGyGv60hYVsNmoufiZWWgPCEBDVZaGEMGadjhoUsIq
hTLMBYR1x2zzDe33lHs+C3vJnLvxAv7JNmZMddPp0afw4Q3Xkuk8dgL1+90LFyq3
ggrlGX3GTWCdNhuhDu7qghEBYziZw0upnSBa6JEfAPndqchQh74iXmOZ3IHeEoH2
r5L3dQQv7JJ5kQRSzumE30Tc7Ci2hUnspkLHFhHmt2K+kOzypuxE0TlLrlhc12nI
3a7j3RXMcB7B8njTYgHbCcoe/EAKQQIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFJP/
tjUfeUJbs7aIkrjdGCc2oO7DMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC9CNkYwMDFBQUZBREExMUVFODM4RDRFNzEwMTcwMDFCMS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAms7WMA0GCSqGSIb3DQEB
CwUAA4IBAQAAhSuNaXzUZIO6mRrr9BXSH+rieQnuw4XHjB43H1i/b47gwqSqn1Y5
zVDgDixdsXTPb0ucf8GohVG1AaeZn/c1cQex9Hs/Qp6DcDZWqNtoK/KkvNe34ybn
jAr5n4vCJSGN0VgVgf+EH3rgG4Vh3uCFkag4ZypMetBSOYzcEJ2t8BbFkOItVdB6
++44nzVbP/i8d6ISZcp+IeYYtnPMZUYlua0O9/teSNuaG7F1/o1Y1wVNGgHImuo1
XBmusMt3iPRLp1FR7MI7tp1Fdppq4GlhzRirvbIng9N5fFHWozfEG6sesCqv+UHg
xRt8bj/WV9MSeUCOEsVd7vzEuQMVQPTa
-----END CERTIFICATE-----
Generated at Wed Apr 24 09:55:39 2024 by rpki-client on console-fra.rpki-client.org