Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E24C3CC4E7D611EC803021E4F1222468.roa
File: E24C3CC4E7D611EC803021E4F1222468.roa (raw, json)
Hash identifier: X2VDmFe7XejIybU2ZVwSEASxMRH77PGuGvkrIy1gSEU=
Subject key identifier: 45:0B:D1:53:4F:24:68:06:AC:38:09:0B:CE:FB:6B:C1:2D:41:0E:BB
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 16BE
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E24C3CC4E7D611EC803021E4F1222468.roa
Signing time: Thu 09 Jun 2022 09:31:05 +0000
ROA not before: Thu 09 Jun 2022 09:31:01 +0000
ROA not after: Wed 30 Aug 2023 09:31:01 +0000
asID: 133199
IP address blocks: 154.204.44.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5822 (0x16be)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jun 9 09:31:01 2022 GMT
Not After : Aug 30 09:31:01 2023 GMT
Subject: CN=62a1bdd9-dd48
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:b0:43:70:c0:9c:70:3b:cd:b5:6f:31:67:38:
02:83:ea:98:15:63:99:55:a7:48:42:52:50:3b:fc:
e9:af:2b:d9:5e:4a:b4:fa:ac:6e:43:8d:ef:13:f4:
db:7a:b8:91:ae:7c:af:29:3f:66:19:45:58:f3:bd:
14:f4:20:86:fa:a8:34:a4:c6:d2:0b:3b:9b:08:80:
6f:bb:b2:4a:bf:36:48:d6:8d:16:84:28:7d:6a:d7:
ee:37:3d:0f:c2:62:88:9e:3c:33:08:e4:e2:1d:0d:
01:a7:6a:86:08:55:76:05:6f:ef:8d:56:a3:aa:4a:
2a:17:e0:46:a0:83:44:4b:3f:a1:52:0f:c3:39:39:
d3:43:9e:a3:e8:f6:38:31:2b:1c:77:c5:be:03:c8:
bc:ac:41:93:67:72:3c:ed:59:38:6f:25:f5:9b:c1:
95:d3:bd:b8:af:37:e0:c7:50:bf:a3:6b:3a:84:04:
e8:2c:56:29:1f:1e:28:b6:a8:f1:da:8e:b4:0a:9f:
97:cc:c2:fe:46:5e:cd:fa:00:63:6a:38:fd:08:57:
ad:99:58:60:ec:00:1e:4e:13:35:76:80:cf:f6:45:
6a:56:0d:c0:0b:fa:60:1f:ba:4e:3d:9e:21:cb:4d:
26:9c:f2:57:72:49:12:95:f9:df:e0:21:18:26:f0:
f5:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:0B:D1:53:4F:24:68:06:AC:38:09:0B:CE:FB:6B:C1:2D:41:0E:BB
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E24C3CC4E7D611EC803021E4F1222468.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.204.44.0/24
Signature Algorithm: sha256WithRSAEncryption
2b:c1:90:42:45:eb:a0:09:f9:78:c5:42:a3:e9:e2:ce:95:1f:
85:e6:d1:55:98:99:45:05:2f:bd:ab:c6:79:d4:a9:fa:d8:52:
db:7d:63:dc:f7:7a:7e:2f:cb:ab:e4:b9:da:72:f4:da:9f:86:
b7:80:9e:32:fe:6a:a2:88:b0:b6:1d:e5:e8:a0:41:f3:9d:1a:
8b:e4:23:d5:d4:b8:2f:6f:97:44:33:d6:a4:a6:86:f8:57:ff:
4c:09:3f:12:fe:98:46:ff:04:99:f0:33:a2:7e:2d:fd:2b:a8:
e4:61:53:df:1c:d1:7f:cc:5b:18:a3:e7:21:36:e9:75:4b:af:
b7:94:92:bc:b9:07:95:2f:d7:e1:c4:ff:e7:87:b1:9c:f0:ff:
1e:16:76:18:a0:a4:8d:31:f3:3d:64:da:ab:19:6f:43:d8:58:
6b:df:5e:92:50:fb:d6:af:6e:f2:dc:1d:9d:5a:6f:ba:93:c7:
bd:32:9b:0f:c4:30:f0:dd:a2:7e:8a:a9:8f:ed:56:76:15:4f:
ac:43:09:5f:9a:36:49:c3:ab:e2:31:52:46:fa:4a:de:a0:0d:
1d:a7:78:23:fe:d7:34:cc:60:e0:39:db:25:9e:c1:6f:72:e7:
1e:71:3c:fe:6c:cc:c2:c8:0a:95:4a:dc:0f:eb:c1:d4:e1:af:
8c:2e:aa:2d
-----BEGIN CERTIFICATE-----
MIIFgzCCBGugAwIBAgICFr4wDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAwwKRjM2
OEYyRDBBRjExMC8GA1UEBRMoMjVENjNFMDhFQUJFN0NGQTY3ODVENEMxRDZEMzQx
MTZERTE1QjNEQzAeFw0yMjA2MDkwOTMxMDFaFw0yMzA4MzAwOTMxMDFaMBgxFjAU
BgNVBAMMDTYyYTFiZGQ5LWRkNDgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQDPsENwwJxwO821bzFnOAKD6pgVY5lVp0hCUlA7/OmvK9leSrT6rG5Dje8T
9Nt6uJGufK8pP2YZRVjzvRT0IIb6qDSkxtILO5sIgG+7skq/NkjWjRaEKH1q1+43
PQ/CYoiePDMI5OIdDQGnaoYIVXYFb++NVqOqSioX4Eagg0RLP6FSD8M5OdNDnqPo
9jgxKxx3xb4DyLysQZNncjztWThvJfWbwZXTvbivN+DHUL+jazqEBOgsVikfHii2
qPHajrQKn5fMwv5GXs36AGNqOP0IV62ZWGDsAB5OEzV2gM/2RWpWDcAL+mAfuk49
niHLTSac8ldySRKV+d/gIRgm8PVXAgMBAAGjggKlMIICoTAdBgNVHQ4EFgQURQvR
U08kaAasOAkLzvtrwS1BDrswHwYDVR0jBBgwFoAUJdY+COq+fPpnhdTB1tNBFt4V
s9wwDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjhGMkQwLzdGNEE5OEVBNkUwNTExRTg5QzBENkU0QkY4QUVBMjI4L0pkWS1D
T3EtZlBwbmhkVEIxdE5CRnQ0VnM5dy5jcmwwZwYIKwYBBQUHAQEEWzBZMFcGCCsG
AQUFBzAChktyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hZnJp
bmljL0pkWS1DT3EtZlBwbmhkVEIxdE5CRnQ0VnM5dy5jZXIwTwYDVR0gAQH/BEUw
QzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5p
Yy5uZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEF
BQcwC4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJl
cl9yZXBvc2l0b3J5L0YzNjhGMkQwLzdGNEE5OEVBNkUwNTExRTg5QzBENkU0QkY4
QUVBMjI4L0UyNEMzQ0M0RTdENjExRUM4MDMwMjFFNEYxMjIyNDY4LnJvYTA1Bggr
BgEFBQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54
bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBACazCwwDQYJKoZIhvcNAQEL
BQADggEBACvBkEJF66AJ+XjFQqPp4s6VH4Xm0VWYmUUFL72rxnnUqfrYUtt9Y9z3
en4vy6vkudpy9NqfhreAnjL+aqKIsLYd5eigQfOdGovkI9XUuC9vl0Qz1qSmhvhX
/0wJPxL+mEb/BJnwM6J+Lf0rqORhU98c0X/MWxij5yE26XVLr7eUkry5B5Uv1+HE
/+eHsZzw/x4WdhigpI0x8z1k2qsZb0PYWGvfXpJQ+9avbvLcHZ1ab7qTx70ymw/E
MPDdon6KqY/tVnYVT6xDCV+aNknDq+IxUkb6St6gDR2neCP+1zTMYOA52yWewW9y
5x5xPP5szMLICpVK3A/rwdThr4wuqi0=
-----END CERTIFICATE-----
Generated at Wed Aug 30 13:21:34 2023 by rpki-client on console-ams.rpki-client.org