Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E64E6E1E441311EFBB2238BC762E951A.roa
File: E64E6E1E441311EFBB2238BC762E951A.roa (raw, json)
Hash identifier: E7WYWDoOoG1m+w8Gjlu+35QmbmYf5nZKdl+pkSefgUc=
Subject key identifier: B6:4A:51:AD:D4:AF:59:D9:2B:59:8B:FA:4E:B3:F3:A9:CD:34:E3:D7
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: D30D
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E64E6E1E441311EFBB2238BC762E951A.roa
Signing time: Wed 17 Jul 2024 08:09:33 +0000
ROA not before: Wed 17 Jul 2024 08:09:30 +0000
ROA not after: Sat 27 Jul 2024 08:09:30 +0000
asID: 22773
IP address blocks: 154.212.0.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 54029 (0xd30d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jul 17 08:09:30 2024 GMT
Not After : Jul 27 08:09:30 2024 GMT
Subject: CN=66977c3d-1471
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:11:f3:cf:57:b0:c6:96:11:28:6f:f5:8e:66:
92:af:8a:55:f6:15:0f:5b:b7:bd:8e:89:7b:16:a2:
f1:07:76:59:cd:cb:07:5b:19:d7:4b:bc:f2:12:25:
56:29:3e:96:73:6d:2a:06:ec:df:18:24:53:ea:ba:
61:c4:8d:b3:13:5d:c4:8d:74:bf:13:7c:8e:da:3b:
64:6c:d1:26:bb:61:5d:2e:2b:6b:ef:dc:8b:a0:15:
be:65:8d:66:f5:11:e5:8b:32:21:16:0e:68:e3:b9:
c9:df:dd:34:14:78:96:18:cc:00:dc:55:36:de:9e:
37:b8:4f:5f:ec:dc:ed:6c:e1:df:56:34:de:ae:a8:
66:49:bc:82:df:f7:09:3b:20:4c:90:1e:0f:d9:6a:
47:f1:bc:21:97:c2:96:d7:b4:44:05:48:d6:c7:05:
ab:92:da:d5:be:e0:aa:cc:ad:1b:7c:3e:84:7d:69:
6e:f8:7f:40:43:76:d4:15:54:95:e9:05:fa:96:71:
d1:a0:d9:d8:12:f5:c1:87:c4:40:9c:d7:4b:ea:8a:
a2:3f:bc:bd:8d:8c:ef:e3:fd:0f:a2:4b:b4:c8:cb:
e1:46:b4:bf:54:55:c6:ce:4b:3e:31:7f:88:6c:83:
42:20:b2:55:08:22:d2:2c:03:74:0d:eb:d2:a7:4e:
1f:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:4A:51:AD:D4:AF:59:D9:2B:59:8B:FA:4E:B3:F3:A9:CD:34:E3:D7
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E64E6E1E441311EFBB2238BC762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.212.0.0/24
Signature Algorithm: sha256WithRSAEncryption
71:53:0d:4c:56:a6:11:0d:72:62:b0:f4:be:49:cc:f3:8e:3e:
72:7c:8e:ee:14:9e:5a:59:e9:1c:c4:85:c8:b7:66:be:41:0c:
51:fe:a0:8d:ab:96:a9:23:7e:3b:b7:3a:a1:e9:a3:ed:39:50:
3c:dc:e7:fa:dc:ef:7f:85:5b:17:9c:0a:19:1f:99:a0:da:f6:
79:63:ce:a4:fa:d2:2a:3d:60:64:a3:c8:7f:84:bc:75:7c:24:
9d:04:74:f7:63:67:20:ac:b3:92:f8:fc:ef:a1:80:df:1a:07:
40:6b:46:4c:a4:df:7e:83:fc:69:eb:84:5f:0c:83:a3:d0:c5:
e6:6f:4e:05:39:51:74:f8:e0:4f:b9:01:90:56:7d:3f:9d:f7:
65:42:6c:33:e0:48:99:5d:b5:82:f4:c1:79:59:f1:ba:7b:ee:
f5:3d:e2:de:3f:83:76:81:46:cd:aa:10:d6:b3:d0:4f:3e:da:
d8:7f:98:c2:cf:85:34:f1:74:5c:39:6c:6e:a4:34:0f:99:91:
9b:25:c9:29:f8:5c:69:b6:d9:be:4b:94:08:ac:fc:34:ea:8b:
0c:15:3b:a6:29:0d:9f:2d:ca:46:ab:6e:04:78:f9:d3:58:92:
cd:4f:7c:0f:f5:0c:73:d6:02:e6:75:90:dd:70:6d:98:0a:80:
78:1d:a3:39
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDANMNMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQwNzE3MDgwOTMwWhcNMjQwNzI3MDgwOTMwWjAYMRYw
FAYDVQQDEw02Njk3N2MzZC0xNDcxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAsRHzz1ewxpYRKG/1jmaSr4pV9hUPW7e9jol7FqLxB3ZZzcsHWxnXS7zy
EiVWKT6Wc20qBuzfGCRT6rphxI2zE13EjXS/E3yO2jtkbNEmu2FdLitr79yLoBW+
ZY1m9RHlizIhFg5o47nJ3900FHiWGMwA3FU23p43uE9f7NztbOHfVjTerqhmSbyC
3/cJOyBMkB4P2WpH8bwhl8KW17REBUjWxwWrktrVvuCqzK0bfD6EfWlu+H9AQ3bU
FVSV6QX6lnHRoNnYEvXBh8RAnNdL6oqiP7y9jYzv4/0Poku0yMvhRrS/VFXGzks+
MX+IbINCILJVCCLSLAN0DevSp04fwwIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFLZK
Ua3Ur1nZK1mL+k6z86nNNOPXMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC9FNjRFNkUxRTQ0MTMxMUVGQkIyMjM4QkM3NjJFOTUxQS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmtQAMA0GCSqGSIb3DQEB
CwUAA4IBAQBxUw1MVqYRDXJisPS+Sczzjj5yfI7uFJ5aWekcxIXIt2a+QQxR/qCN
q5apI347tzqh6aPtOVA83Of63O9/hVsXnAoZH5mg2vZ5Y86k+tIqPWBko8h/hLx1
fCSdBHT3Y2cgrLOS+PzvoYDfGgdAa0ZMpN9+g/xp64RfDIOj0MXmb04FOVF0+OBP
uQGQVn0/nfdlQmwz4EiZXbWC9MF5WfG6e+71PeLeP4N2gUbNqhDWs9BPPtrYf5jC
z4U08XRcOWxupDQPmZGbJckp+Fxpttm+S5QIrPw06osMFTumKQ2fLcpGq24EePnT
WJLNT3wP9Qxz1gLmdZDdcG2YCoB4HaM5
-----END CERTIFICATE-----
Generated at Sun Jul 28 03:03:26 2024 by rpki-client on console-ams.rpki-client.org