Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D7294DE814B011EE9760A7334AD9E6FC.roa
File: D7294DE814B011EE9760A7334AD9E6FC.roa (raw, json)
Hash identifier: S5f1MZyCIvXYPwKVa3Ai3Dt2t71M2IOi7fgTYJ9FT4I=
Subject key identifier: 59:24:D1:65:85:62:C1:11:99:92:2F:44:34:89:31:93:1E:9A:F2:08
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 2DB6
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D7294DE814B011EE9760A7334AD9E6FC.roa
Signing time: Tue 27 Jun 2023 06:07:05 +0000
ROA not before: Tue 27 Jun 2023 06:07:02 +0000
ROA not after: Wed 01 May 2024 06:07:02 +0000
asID: 140227
IP address blocks: 154.86.16.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 11702 (0x2db6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jun 27 06:07:02 2023 GMT
Not After : May 1 06:07:02 2024 GMT
Subject: CN=649a7c89-3c2b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:21:38:04:82:df:e7:3b:69:cc:f3:0f:a4:bc:
90:a4:88:bd:3f:7c:a5:0a:f0:79:0e:55:8c:81:cd:
2e:5d:f8:c2:60:fc:e2:d5:09:9a:0a:9f:42:23:f0:
5f:f3:90:cc:3b:ae:0c:9b:d4:d6:e6:cb:09:1f:a9:
20:1c:f7:de:4a:de:e6:cd:10:49:d6:4e:5e:4f:09:
b9:d6:7a:3e:c9:2c:83:5b:3a:19:d1:07:45:c5:0d:
bc:82:91:b8:f7:21:a1:f3:58:90:e8:89:9d:d7:38:
13:65:da:99:3a:c3:4c:ce:47:3e:80:26:00:ad:d1:
3d:1f:1b:63:31:36:25:f2:ee:26:c4:f7:c2:f7:1f:
1f:ed:d4:ed:1f:e6:64:58:2f:34:2c:6e:a1:32:6d:
f3:00:d1:e5:16:42:23:9f:2b:57:f2:db:54:9e:cc:
ce:88:5f:d0:d1:28:a0:45:e9:7b:dd:7c:d7:f8:87:
da:c4:31:a1:ae:8c:59:d0:d0:d8:d1:dd:c1:a6:df:
71:77:3d:dd:bb:7a:4e:df:12:05:0b:f3:dc:c4:ba:
7d:f5:fd:f2:d2:b9:96:50:e9:ac:99:79:98:3c:2c:
06:ac:30:ef:87:70:5f:a6:ed:20:e6:09:d8:f9:70:
56:9f:28:25:ba:f5:f5:7f:9e:35:1b:0e:a4:65:21:
cc:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:24:D1:65:85:62:C1:11:99:92:2F:44:34:89:31:93:1E:9A:F2:08
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D7294DE814B011EE9760A7334AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.86.16.0/24
Signature Algorithm: sha256WithRSAEncryption
b4:34:36:61:a8:1a:72:9f:30:c9:fe:40:ea:76:89:4c:e0:98:
e3:b5:bf:97:5c:e9:2f:a1:10:7b:d5:ae:9e:c5:2b:15:22:4e:
53:0e:33:5d:79:79:d6:82:4a:31:24:90:45:c6:c6:af:3e:25:
d5:b1:ba:06:db:d7:34:ba:80:bc:db:a7:1c:3d:b0:f8:e5:bc:
fd:f2:99:e0:83:96:c3:14:ca:cf:a5:40:ca:c5:14:d2:36:c6:
8d:de:fb:9c:ed:35:df:f7:57:db:2d:9d:8f:6b:46:a7:50:91:
30:ac:f2:5c:80:ab:f2:b4:0b:06:8b:ce:28:09:45:59:8d:a7:
21:fc:ff:d1:f9:67:94:08:d8:9f:37:f9:86:09:2c:c0:a1:0c:
6b:d4:32:f0:57:68:f2:0f:05:c0:ed:6c:08:8f:95:75:af:5c:
09:60:fd:37:2e:2c:19:ef:e0:2c:48:e2:7b:6d:04:2d:ce:77:
55:1c:23:e9:b2:91:e7:4c:ed:f7:41:aa:92:19:56:3b:6d:ca:
a5:78:f3:69:2e:b3:b1:5a:82:4b:42:c0:14:d1:6c:89:cf:97:
ec:d6:6a:ef:85:b1:13:e4:5b:b2:33:bf:9d:02:8e:dc:85:d3:
f9:d6:ed:72:68:50:35:e4:eb:46:d9:ad:08:14:41:ab:e6:56:
7c:98:34:c4
-----BEGIN CERTIFICATE-----
MIIFgzCCBGugAwIBAgICLbYwDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAwwKRjM2
OEYyRDBBRjExMC8GA1UEBRMoMjVENjNFMDhFQUJFN0NGQTY3ODVENEMxRDZEMzQx
MTZERTE1QjNEQzAeFw0yMzA2MjcwNjA3MDJaFw0yNDA1MDEwNjA3MDJaMBgxFjAU
BgNVBAMTDTY0OWE3Yzg5LTNjMmIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQDOITgEgt/nO2nM8w+kvJCkiL0/fKUK8HkOVYyBzS5d+MJg/OLVCZoKn0Ij
8F/zkMw7rgyb1NbmywkfqSAc995K3ubNEEnWTl5PCbnWej7JLINbOhnRB0XFDbyC
kbj3IaHzWJDoiZ3XOBNl2pk6w0zORz6AJgCt0T0fG2MxNiXy7ibE98L3Hx/t1O0f
5mRYLzQsbqEybfMA0eUWQiOfK1fy21SezM6IX9DRKKBF6XvdfNf4h9rEMaGujFnQ
0NjR3cGm33F3Pd27ek7fEgUL89zEun31/fLSuZZQ6ayZeZg8LAasMO+HcF+m7SDm
Cdj5cFafKCW69fV/njUbDqRlIcwHAgMBAAGjggKlMIICoTAdBgNVHQ4EFgQUWSTR
ZYViwRGZki9ENIkxkx6a8ggwHwYDVR0jBBgwFoAUJdY+COq+fPpnhdTB1tNBFt4V
s9wwDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjhGMkQwLzdGNEE5OEVBNkUwNTExRTg5QzBENkU0QkY4QUVBMjI4L0pkWS1D
T3EtZlBwbmhkVEIxdE5CRnQ0VnM5dy5jcmwwZwYIKwYBBQUHAQEEWzBZMFcGCCsG
AQUFBzAChktyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hZnJp
bmljL0pkWS1DT3EtZlBwbmhkVEIxdE5CRnQ0VnM5dy5jZXIwTwYDVR0gAQH/BEUw
QzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5p
Yy5uZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEF
BQcwC4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJl
cl9yZXBvc2l0b3J5L0YzNjhGMkQwLzdGNEE5OEVBNkUwNTExRTg5QzBENkU0QkY4
QUVBMjI4L0Q3Mjk0REU4MTRCMDExRUU5NzYwQTczMzRBRDlFNkZDLnJvYTA1Bggr
BgEFBQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54
bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBACaVhAwDQYJKoZIhvcNAQEL
BQADggEBALQ0NmGoGnKfMMn+QOp2iUzgmOO1v5dc6S+hEHvVrp7FKxUiTlMOM115
edaCSjEkkEXGxq8+JdWxugbb1zS6gLzbpxw9sPjlvP3ymeCDlsMUys+lQMrFFNI2
xo3e+5ztNd/3V9stnY9rRqdQkTCs8lyAq/K0CwaLzigJRVmNpyH8/9H5Z5QI2J83
+YYJLMChDGvUMvBXaPIPBcDtbAiPlXWvXAlg/TcuLBnv4CxI4nttBC3Od1UcI+my
kedM7fdBqpIZVjttyqV482kus7FagktCwBTRbInPl+zWau+FsRPkW7Izv50CjtyF
0/nW7XJoUDXk60bZrQgUQavmVnyYNMQ=
-----END CERTIFICATE-----
Generated at Wed May 1 15:29:50 2024 by rpki-client on console-fra.rpki-client.org