Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D6B6C5FA9F8F11EF887EEEB0762E951A.roa
File: D6B6C5FA9F8F11EF887EEEB0762E951A.roa (raw, json)
Hash identifier: Og8Ermlue7MZdLWgZL51TJa/ywf3r0T/iOBLX8b5jVE=
Subject key identifier: 64:B6:2A:8E:17:0A:23:8E:77:88:60:62:70:F7:B8:CA:F7:9A:F7:D8
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 010B6E
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D6B6C5FA9F8F11EF887EEEB0762E951A.roa
Signing time: Sun 10 Nov 2024 18:16:00 +0000
ROA not before: Sun 10 Nov 2024 18:15:56 +0000
ROA not after: Thu 21 Nov 2024 18:15:56 +0000
asID: 44559
IP address blocks: 154.203.246.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 68462 (0x10b6e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 10 18:15:56 2024 GMT
Not After : Nov 21 18:15:56 2024 GMT
Subject: CN=6730f860-90a0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:bf:71:1a:51:03:b9:24:4a:52:66:44:18:bf:
90:55:69:c5:07:ee:9e:ea:ae:ca:35:d6:cc:27:02:
57:9f:c2:09:7c:37:3d:e9:d9:bc:91:ae:9e:3e:92:
4b:82:08:4e:f3:9c:f6:cd:1e:9b:2a:8a:42:a1:39:
50:5f:ff:47:ec:f6:fe:6b:f3:3e:92:5c:02:f3:46:
c1:e7:37:e3:c5:02:29:65:45:8d:6c:80:8a:15:b3:
e0:e5:3b:3b:92:e8:55:71:df:e0:6b:84:3b:05:02:
1d:39:dd:94:38:b0:d1:95:af:dd:bc:db:2d:8d:e1:
4a:97:81:96:48:59:c6:58:23:9f:f6:67:49:4b:91:
ea:af:ca:6e:3c:6b:02:d5:cf:22:be:9c:eb:76:01:
cf:c7:4c:b0:2c:1d:84:e6:f4:5e:e6:a3:92:a7:77:
5d:e7:d7:db:ba:6b:0a:ad:bc:1f:2a:07:3f:b5:7e:
8c:c9:8c:8b:80:04:a6:16:3e:9c:c4:c0:de:70:b7:
17:48:ea:15:fb:5e:ef:3d:83:a9:51:9f:69:e0:0c:
b9:39:2d:54:2e:66:e1:b6:92:fc:2f:2a:c2:e0:b9:
69:6f:dd:a8:c3:19:78:38:95:dc:5f:7a:d1:c2:47:
8e:25:97:18:e7:6c:f4:4a:f3:69:11:a7:0a:ef:21:
54:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:B6:2A:8E:17:0A:23:8E:77:88:60:62:70:F7:B8:CA:F7:9A:F7:D8
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D6B6C5FA9F8F11EF887EEEB0762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.203.246.0/24
Signature Algorithm: sha256WithRSAEncryption
c7:8d:b8:64:e2:fb:19:06:08:a1:c3:56:e1:5a:2a:0e:79:e0:
c6:0b:85:3b:b4:00:98:15:2a:01:ef:83:f7:b2:a0:5a:79:01:
71:3f:22:81:ef:a9:10:64:bf:b4:ae:59:48:a3:b6:88:93:46:
c5:24:39:27:f8:bf:cc:3f:dc:78:50:17:98:e1:f2:4e:8e:fe:
7a:51:96:82:fd:4b:e6:be:f8:44:2c:02:fc:e2:b2:d7:12:e6:
a0:cd:0c:ff:4e:32:87:d9:50:76:a8:73:1c:bc:ba:76:15:d5:
3e:50:31:56:35:38:b8:7e:6f:c7:62:6e:d2:82:82:dd:dc:c5:
20:f5:aa:86:2e:cf:7f:02:eb:aa:bc:90:f6:fe:33:e8:c7:da:
c6:f6:ff:84:74:23:38:53:d5:33:0c:53:10:28:29:ad:77:f9:
30:04:a9:d3:ac:dc:f9:96:d8:09:79:e7:ef:36:e3:8f:6a:5c:
2f:37:4c:92:b7:27:be:2b:44:f8:3a:db:ca:8d:4c:88:b7:13:
11:4d:b4:81:c4:e6:8d:60:c1:96:a8:ec:9a:eb:8a:cf:fe:58:
00:07:cd:0e:d5:79:2f:ca:82:0c:44:4e:11:a1:b1:71:3a:96:
0e:c8:5e:ec:d7:84:92:8d:1d:22:ec:2c:73:20:11:ff:f0:d8:
4e:89:dd:ee
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAQtuMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQxMTEwMTgxNTU2WhcNMjQxMTIxMTgxNTU2WjAYMRYw
FAYDVQQDEw02NzMwZjg2MC05MGEwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAwL9xGlEDuSRKUmZEGL+QVWnFB+6e6q7KNdbMJwJXn8IJfDc96dm8ka6e
PpJLgghO85z2zR6bKopCoTlQX/9H7Pb+a/M+klwC80bB5zfjxQIpZUWNbICKFbPg
5Ts7kuhVcd/ga4Q7BQIdOd2UOLDRla/dvNstjeFKl4GWSFnGWCOf9mdJS5Hqr8pu
PGsC1c8ivpzrdgHPx0ywLB2E5vRe5qOSp3dd59fbumsKrbwfKgc/tX6MyYyLgASm
Fj6cxMDecLcXSOoV+17vPYOpUZ9p4Ay5OS1ULmbhtpL8LyrC4Llpb92owxl4OJXc
X3rRwkeOJZcY52z0SvNpEacK7yFUjQIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFGS2
Ko4XCiOOd4hgYnD3uMr3mvfYMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC9ENkI2QzVGQTlGOEYxMUVGODg3RUVFQjA3NjJFOTUxQS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmsv2MA0GCSqGSIb3DQEB
CwUAA4IBAQDHjbhk4vsZBgihw1bhWioOeeDGC4U7tACYFSoB74P3sqBaeQFxPyKB
76kQZL+0rllIo7aIk0bFJDkn+L/MP9x4UBeY4fJOjv56UZaC/UvmvvhELAL84rLX
EuagzQz/TjKH2VB2qHMcvLp2FdU+UDFWNTi4fm/HYm7SgoLd3MUg9aqGLs9/Auuq
vJD2/jPox9rG9v+EdCM4U9UzDFMQKCmtd/kwBKnTrNz5ltgJeefvNuOPalwvN0yS
tye+K0T4OtvKjUyItxMRTbSBxOaNYMGWqOya64rP/lgAB80O1XkvyoIMRE4RobFx
OpYOyF7s14SSjR0i7CxzIBH/8NhOid3u
-----END CERTIFICATE-----
Generated at Fri Nov 22 02:47:23 2024 by rpki-client on console-fra.rpki-client.org