Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D15EABA001B611EDBF1BE798F1222468.roa
File: D15EABA001B611EDBF1BE798F1222468.roa (raw, json)
Hash identifier: Aretb9++fXd23MNKNcwJghMHUMUTOXgaCgf5ihxgooU=
Subject key identifier: 17:25:79:78:4E:42:45:DA:57:D3:CA:C2:20:5C:33:FA:2D:D4:F9:02
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 1754
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D15EABA001B611EDBF1BE798F1222468.roa
Signing time: Tue 12 Jul 2022 07:47:03 +0000
ROA not before: Tue 12 Jul 2022 07:46:59 +0000
ROA not after: Tue 11 Jul 2023 07:46:59 +0000
asID: 138630
IP address blocks: 154.212.153.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5972 (0x1754)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jul 12 07:46:59 2022 GMT
Not After : Jul 11 07:46:59 2023 GMT
Subject: CN=62cd26f7-7f3e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:0e:6c:cd:26:ce:1f:80:b3:b3:d7:6c:af:c7:
f9:42:6d:26:89:58:5b:dc:ad:02:f0:43:38:f8:e1:
d0:40:b9:1a:14:e5:85:a7:6d:dd:72:f0:dd:69:35:
a4:cd:be:cd:ea:db:44:82:69:76:55:5b:70:ec:d7:
f2:b3:fe:3e:5d:a6:ca:bb:b7:1d:10:42:4d:38:56:
2a:58:55:34:e8:00:ec:29:14:a1:67:e0:38:d8:87:
04:20:07:d9:34:ab:e2:53:8a:92:45:2e:7f:24:55:
a9:f0:7c:6a:31:40:81:bf:d3:e5:06:9c:53:05:ae:
14:ab:c0:a7:19:65:7d:40:f3:cd:4b:ab:8c:d3:77:
a7:41:9e:af:cb:d2:ea:ee:f1:fe:0b:c6:be:a2:36:
3d:6f:30:43:21:24:4d:9b:34:d1:ba:df:8c:65:81:
f5:d3:7d:ce:21:01:bb:d9:5d:84:de:e5:25:bc:00:
5e:93:ed:8b:ae:ab:2c:e3:64:83:e0:cb:81:f3:60:
0a:b6:0c:0c:04:a9:41:e1:cd:eb:2b:82:8f:b3:bd:
99:d9:c8:5b:49:41:ff:f1:fa:3c:fa:24:56:b5:06:
32:fe:57:e7:fe:cc:2f:7d:0c:91:f6:7f:a3:4d:ad:
4a:a8:82:22:12:60:b9:23:30:86:ff:d6:44:a4:ba:
4e:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:25:79:78:4E:42:45:DA:57:D3:CA:C2:20:5C:33:FA:2D:D4:F9:02
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D15EABA001B611EDBF1BE798F1222468.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.212.153.0/24
Signature Algorithm: sha256WithRSAEncryption
cc:aa:6c:58:51:1f:d3:4d:88:75:9e:b8:39:3f:38:c9:2c:d0:
60:8b:39:df:fb:7d:f2:63:f3:5a:63:fc:63:b4:e6:53:db:1f:
b7:bb:37:1e:e3:8e:b6:e7:37:97:3f:88:3a:19:1e:42:f0:ed:
25:0c:91:87:e4:0c:20:97:e9:25:93:13:10:d0:87:73:15:e2:
cd:de:19:f7:1f:f2:85:f9:44:52:1b:6a:d9:db:06:7f:56:27:
0e:d4:7c:43:73:29:02:86:82:bc:a6:ee:3e:46:25:1c:34:c5:
8e:d4:0f:77:30:16:16:35:16:f9:74:76:99:ee:46:d6:f3:5c:
03:09:45:4d:65:af:ac:61:46:55:3e:d9:b5:6d:8d:70:4a:ea:
5b:ca:50:f7:c4:c9:8a:a8:02:fa:05:82:9b:10:00:a8:c8:27:
18:c0:4c:51:5c:e0:1d:a6:ed:70:71:d4:20:ff:db:f1:34:a9:
e8:13:44:33:cd:2c:3e:91:7f:5e:03:35:b7:b6:4d:a6:26:16:
cc:88:c3:b6:05:7d:93:87:cb:69:26:3d:99:38:1c:76:89:4d:
92:93:36:ec:db:87:66:e9:e3:66:6d:f2:30:c4:b1:e2:88:7a:
ce:8f:ff:20:00:5f:b9:8b:4a:d2:73:b7:3c:71:ba:58:b8:db:
e5:c2:57:99
-----BEGIN CERTIFICATE-----
MIIFgzCCBGugAwIBAgICF1QwDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAwwKRjM2
OEYyRDBBRjExMC8GA1UEBRMoMjVENjNFMDhFQUJFN0NGQTY3ODVENEMxRDZEMzQx
MTZERTE1QjNEQzAeFw0yMjA3MTIwNzQ2NTlaFw0yMzA3MTEwNzQ2NTlaMBgxFjAU
BgNVBAMMDTYyY2QyNmY3LTdmM2UwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQDPDmzNJs4fgLOz12yvx/lCbSaJWFvcrQLwQzj44dBAuRoU5YWnbd1y8N1p
NaTNvs3q20SCaXZVW3Ds1/Kz/j5dpsq7tx0QQk04VipYVTToAOwpFKFn4DjYhwQg
B9k0q+JTipJFLn8kVanwfGoxQIG/0+UGnFMFrhSrwKcZZX1A881Lq4zTd6dBnq/L
0uru8f4Lxr6iNj1vMEMhJE2bNNG634xlgfXTfc4hAbvZXYTe5SW8AF6T7Yuuqyzj
ZIPgy4HzYAq2DAwEqUHhzesrgo+zvZnZyFtJQf/x+jz6JFa1BjL+V+f+zC99DJH2
f6NNrUqogiISYLkjMIb/1kSkuk6RAgMBAAGjggKlMIICoTAdBgNVHQ4EFgQUFyV5
eE5CRdpX08rCIFwz+i3U+QIwHwYDVR0jBBgwFoAUJdY+COq+fPpnhdTB1tNBFt4V
s9wwDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjhGMkQwLzdGNEE5OEVBNkUwNTExRTg5QzBENkU0QkY4QUVBMjI4L0pkWS1D
T3EtZlBwbmhkVEIxdE5CRnQ0VnM5dy5jcmwwZwYIKwYBBQUHAQEEWzBZMFcGCCsG
AQUFBzAChktyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hZnJp
bmljL0pkWS1DT3EtZlBwbmhkVEIxdE5CRnQ0VnM5dy5jZXIwTwYDVR0gAQH/BEUw
QzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5p
Yy5uZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEF
BQcwC4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJl
cl9yZXBvc2l0b3J5L0YzNjhGMkQwLzdGNEE5OEVBNkUwNTExRTg5QzBENkU0QkY4
QUVBMjI4L0QxNUVBQkEwMDFCNjExRURCRjFCRTc5OEYxMjIyNDY4LnJvYTA1Bggr
BgEFBQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54
bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBACa1JkwDQYJKoZIhvcNAQEL
BQADggEBAMyqbFhRH9NNiHWeuDk/OMks0GCLOd/7ffJj81pj/GO05lPbH7e7Nx7j
jrbnN5c/iDoZHkLw7SUMkYfkDCCX6SWTExDQh3MV4s3eGfcf8oX5RFIbatnbBn9W
Jw7UfENzKQKGgrym7j5GJRw0xY7UD3cwFhY1Fvl0dpnuRtbzXAMJRU1lr6xhRlU+
2bVtjXBK6lvKUPfEyYqoAvoFgpsQAKjIJxjATFFc4B2m7XBx1CD/2/E0qegTRDPN
LD6Rf14DNbe2TaYmFsyIw7YFfZOHy2kmPZk4HHaJTZKTNuzbh2bp42Zt8jDEseKI
es6P/yAAX7mLStJztzxxuli42+XCV5k=
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:22:14 2023 by rpki-client on console-fra.rpki-client.org