Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/CD4BDCE8039111EFB9F6DFFD007001B1.roa
File: CD4BDCE8039111EFB9F6DFFD007001B1.roa (raw, json)
Hash identifier: ghS+VmhuELL+BYHguZuyhDV/fWhAyju+gn1T3hzrq9I=
Subject key identifier: 9A:D9:02:97:82:09:B9:EC:2F:58:7D:55:0C:66:40:C2:65:70:FA:25
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: B186
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/CD4BDCE8039111EFB9F6DFFD007001B1.roa
Signing time: Fri 26 Apr 2024 05:57:02 +0000
ROA not before: Fri 26 Apr 2024 05:56:59 +0000
ROA not after: Sun 05 May 2024 05:56:59 +0000
asID: 139646
IP address blocks: 154.218.0.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 45446 (0xb186)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 26 05:56:59 2024 GMT
Not After : May 5 05:56:59 2024 GMT
Subject: CN=662b422e-a2cd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:7f:0e:da:62:6a:b1:eb:f9:ba:09:99:3f:81:
d0:c6:35:0d:8e:2d:03:8d:4f:b4:19:30:61:22:19:
98:cd:fb:0b:d7:f7:2e:6c:be:7d:09:a2:dc:ff:ad:
3a:f1:15:71:23:94:95:f4:5a:91:17:32:ae:df:da:
bc:5c:d2:0a:1a:24:b2:0c:e4:3d:e9:46:ff:34:32:
66:42:3c:45:88:c7:e8:c1:b4:9b:0b:3b:37:32:d6:
ff:fd:35:58:93:a7:1d:73:f6:7d:f4:ee:02:ef:eb:
44:e0:4f:ec:51:d0:a7:2f:71:07:21:00:75:ab:58:
e0:75:e8:b0:7f:41:17:07:a5:1a:a9:a3:91:3b:b5:
48:25:01:b2:89:aa:1d:e2:08:01:b8:0e:0f:dc:32:
c5:dd:09:0d:4f:17:1a:cb:f0:75:3d:52:10:06:4c:
15:db:4b:0f:78:9b:e2:3a:24:a1:67:b4:a2:85:37:
89:1d:29:37:00:25:15:53:8c:a6:9e:f2:c4:a5:d1:
0c:9b:be:e5:d0:d4:5f:b2:b8:00:4e:7d:ef:62:0c:
6d:a9:36:f1:b2:7f:b3:fb:16:ec:0b:fa:a1:a8:72:
47:77:39:b3:f0:9e:19:60:a1:fc:9c:2c:32:70:8d:
e0:ba:59:d3:a8:43:5c:c9:d3:25:95:81:88:cf:52:
6c:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:D9:02:97:82:09:B9:EC:2F:58:7D:55:0C:66:40:C2:65:70:FA:25
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/CD4BDCE8039111EFB9F6DFFD007001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.218.0.0/24
Signature Algorithm: sha256WithRSAEncryption
67:0b:a5:4b:99:9e:78:97:97:8b:b1:d7:e3:7c:57:3f:97:20:
7c:74:26:b3:8e:13:d2:07:ad:41:8b:8b:19:ee:9e:de:1a:2b:
57:56:79:d3:2b:ba:c7:6c:66:10:e1:60:21:1c:dd:8e:27:dd:
7e:4e:6d:40:38:cc:1b:af:76:b3:11:cb:41:bb:49:19:c1:26:
40:67:2d:cf:7e:d1:48:cb:1f:7d:37:61:35:8b:35:b7:8c:db:
d8:83:9c:d7:06:9d:2f:3b:58:1d:02:66:0c:20:0b:ad:77:a2:
bc:bc:9d:75:e2:7a:d7:28:97:31:bb:0e:15:f5:43:c2:75:d1:
5f:15:dc:8c:f5:72:91:35:eb:d5:d6:c2:ac:69:1c:79:37:2d:
f8:3e:91:2d:e2:ed:b2:f8:4e:d9:17:f2:12:40:3e:de:86:8e:
3f:b7:7a:0c:ec:3c:45:ca:a5:ae:47:06:06:cf:55:9d:80:5b:
81:af:7d:a2:c0:a5:81:b2:34:fa:a8:36:ec:06:9e:e4:cb:16:
76:0d:8b:5c:34:3c:55:cd:ff:8f:5f:ca:93:30:08:42:1d:c8:
50:a4:a5:0a:ed:6b:91:25:f7:f8:4d:d2:0b:aa:9d:c7:dd:c9:
b2:fd:12:66:77:1b:61:cc:b6:a8:c6:76:96:b0:00:6d:a5:ce:
07:71:24:70
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDALGGMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQwNDI2MDU1NjU5WhcNMjQwNTA1MDU1NjU5WjAYMRYw
FAYDVQQDEw02NjJiNDIyZS1hMmNkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAzn8O2mJqsev5ugmZP4HQxjUNji0DjU+0GTBhIhmYzfsL1/cubL59CaLc
/6068RVxI5SV9FqRFzKu39q8XNIKGiSyDOQ96Ub/NDJmQjxFiMfowbSbCzs3Mtb/
/TVYk6cdc/Z99O4C7+tE4E/sUdCnL3EHIQB1q1jgdeiwf0EXB6UaqaORO7VIJQGy
iaod4ggBuA4P3DLF3QkNTxcay/B1PVIQBkwV20sPeJviOiShZ7SihTeJHSk3ACUV
U4ymnvLEpdEMm77l0NRfsrgATn3vYgxtqTbxsn+z+xbsC/qhqHJHdzmz8J4ZYKH8
nCwycI3gulnTqENcydMllYGIz1Js3QIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFJrZ
ApeCCbnsL1h9VQxmQMJlcPolMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC9DRDRCRENFODAzOTExMUVGQjlGNkRGRkQwMDcwMDFCMS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmtoAMA0GCSqGSIb3DQEB
CwUAA4IBAQBnC6VLmZ54l5eLsdfjfFc/lyB8dCazjhPSB61Bi4sZ7p7eGitXVnnT
K7rHbGYQ4WAhHN2OJ91+Tm1AOMwbr3azEctBu0kZwSZAZy3PftFIyx99N2E1izW3
jNvYg5zXBp0vO1gdAmYMIAutd6K8vJ114nrXKJcxuw4V9UPCddFfFdyM9XKRNevV
1sKsaRx5Ny34PpEt4u2y+E7ZF/ISQD7eho4/t3oM7DxFyqWuRwYGz1WdgFuBr32i
wKWBsjT6qDbsBp7kyxZ2DYtcNDxVzf+PX8qTMAhCHchQpKUK7WuRJff4TdILqp3H
3cmy/RJmdxthzLaoxnaWsABtpc4HcSRw
-----END CERTIFICATE-----
Generated at Mon May 6 03:11:10 2024 by rpki-client on console-fra.rpki-client.org