Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B981C154FBA411EEBD13F562017001B1.roa
File: B981C154FBA411EEBD13F562017001B1.roa (raw, json)
Hash identifier: iRA+PPzak6xRjJvFoegtDRHofig3QRzkYs7xJGSk240=
Subject key identifier: 0B:6F:FD:9E:13:42:F2:F8:27:C1:10:1B:3B:B2:57:9D:8D:4F:00:84
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: AD69
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B981C154FBA411EEBD13F562017001B1.roa
Signing time: Tue 16 Apr 2024 03:52:20 +0000
ROA not before: Tue 16 Apr 2024 03:52:17 +0000
ROA not after: Wed 24 Apr 2024 03:52:17 +0000
asID: 142062
IP address blocks: 154.206.209.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 44393 (0xad69)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 16 03:52:17 2024 GMT
Not After : Apr 24 03:52:17 2024 GMT
Subject: CN=661df5f4-1b16
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:d8:f4:97:8d:33:58:63:cb:7a:1a:5b:de:af:
f8:84:fd:ce:79:04:27:9a:6c:9c:63:3d:90:9f:a6:
cf:34:78:cc:00:51:3d:66:42:e8:08:d0:69:72:26:
83:9d:03:b1:77:64:f6:db:eb:c1:1f:92:8f:52:d7:
11:dc:fe:77:94:f1:3e:19:8b:79:4f:22:d8:40:4e:
f5:d9:32:eb:f1:dc:32:84:7b:4b:53:f6:dd:5d:2a:
79:f5:13:a8:01:a6:b1:2b:ba:2f:01:a8:37:0e:68:
fc:34:e2:f6:66:3b:0c:7a:c4:be:86:f4:90:75:83:
18:93:8d:e2:49:00:04:af:3f:8b:83:fb:09:1c:d3:
de:20:b2:30:80:2a:20:2e:08:5d:c8:72:a4:dc:51:
db:0e:6f:43:d6:19:fd:c9:09:69:b9:a9:0f:6f:dc:
3d:88:96:d2:7e:6d:fd:29:89:ab:57:52:95:f9:b0:
3f:55:34:57:1a:9b:ea:b9:03:ea:3b:17:92:03:d0:
8f:f2:35:3a:87:34:f2:99:d5:42:1d:ed:e8:63:92:
3c:56:5a:27:16:46:e8:cf:7d:88:1a:78:4d:ef:3e:
c6:14:2f:7d:75:16:82:8d:b0:9c:8e:36:fd:8d:09:
e7:91:fc:39:ea:6e:4b:bd:47:82:71:87:bc:8b:e4:
f6:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:6F:FD:9E:13:42:F2:F8:27:C1:10:1B:3B:B2:57:9D:8D:4F:00:84
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B981C154FBA411EEBD13F562017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.206.209.0/24
Signature Algorithm: sha256WithRSAEncryption
2a:44:2d:a6:c1:39:42:a5:66:e4:7e:55:c0:85:e8:22:55:ed:
9c:a3:a6:12:cd:df:20:43:0b:3d:f3:9d:5f:09:f7:e8:d5:ff:
95:d2:b9:21:22:4d:28:92:bb:2a:d2:68:2e:f2:d9:45:a8:e5:
22:40:2d:81:9c:02:26:88:f8:53:1c:a4:fd:b2:c8:f5:29:83:
7e:ec:62:c0:18:cf:99:f9:11:25:71:10:b9:90:54:c3:1e:f3:
c7:d6:e9:ee:61:f9:03:4d:e4:57:75:2d:e1:42:a1:75:a0:eb:
e1:92:87:69:dc:fa:66:c9:1a:06:05:5b:aa:42:65:b4:55:3f:
2f:93:39:65:4f:4d:3a:6f:f2:2f:a2:21:3d:a4:29:1b:d7:5c:
a8:c1:a7:bc:7a:84:00:66:38:8f:91:0e:e9:db:62:83:68:0a:
ff:55:b5:27:c8:ea:8f:9c:c1:d5:da:f0:00:a5:ec:a2:1d:06:
7c:87:6d:5b:97:e8:67:69:f7:9d:9c:66:30:ab:32:75:42:cd:
96:e8:a3:62:83:1b:d9:93:1d:c6:e5:1f:a7:ba:47:f7:c8:e7:
2c:be:00:d0:57:cc:4d:c7:c0:6b:04:03:a7:a2:1a:fe:51:dd:
9f:6c:78:fb:c7:ff:a3:a7:2e:90:a8:53:38:36:ed:20:78:12:
d8:12:e2:18
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAK1pMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQwNDE2MDM1MjE3WhcNMjQwNDI0MDM1MjE3WjAYMRYw
FAYDVQQDEw02NjFkZjVmNC0xYjE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEA6Nj0l40zWGPLehpb3q/4hP3OeQQnmmycYz2Qn6bPNHjMAFE9ZkLoCNBp
ciaDnQOxd2T22+vBH5KPUtcR3P53lPE+GYt5TyLYQE712TLr8dwyhHtLU/bdXSp5
9ROoAaaxK7ovAag3Dmj8NOL2ZjsMesS+hvSQdYMYk43iSQAErz+Lg/sJHNPeILIw
gCogLghdyHKk3FHbDm9D1hn9yQlpuakPb9w9iJbSfm39KYmrV1KV+bA/VTRXGpvq
uQPqOxeSA9CP8jU6hzTymdVCHe3oY5I8VlonFkboz32IGnhN7z7GFC99dRaCjbCc
jjb9jQnnkfw56m5LvUeCcYe8i+T2kwIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFAtv
/Z4TQvL4J8EQGzuyV52NTwCEMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC9COTgxQzE1NEZCQTQxMUVFQkQxM0Y1NjIwMTcwMDFCMS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAms7RMA0GCSqGSIb3DQEB
CwUAA4IBAQAqRC2mwTlCpWbkflXAhegiVe2co6YSzd8gQws9851fCffo1f+V0rkh
Ik0okrsq0mgu8tlFqOUiQC2BnAImiPhTHKT9ssj1KYN+7GLAGM+Z+RElcRC5kFTD
HvPH1unuYfkDTeRXdS3hQqF1oOvhkodp3PpmyRoGBVuqQmW0VT8vkzllT006b/Iv
oiE9pCkb11yowae8eoQAZjiPkQ7p22KDaAr/VbUnyOqPnMHV2vAApeyiHQZ8h21b
l+hnafednGYwqzJ1Qs2W6KNigxvZkx3G5R+nukf3yOcsvgDQV8xNx8BrBAOnohr+
Ud2fbHj7x/+jpy6QqFM4Nu0geBLYEuIY
-----END CERTIFICATE-----
Generated at Wed Apr 24 09:55:39 2024 by rpki-client on console-fra.rpki-client.org