Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/EE4EFF76038011EFBF4B8CF4007001B1.roa
File: EE4EFF76038011EFBF4B8CF4007001B1.roa (raw, json)
Hash identifier: m79YxUFs4B6Fv4FzHD++oC0w4AM+bBnzopydh+d/IhU=
Subject key identifier: 6A:16:46:D1:32:BB:9A:59:7B:E4:04:50:DF:9A:19:70:57:89:5F:A1
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: B14A
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/EE4EFF76038011EFBF4B8CF4007001B1.roa
Signing time: Fri 26 Apr 2024 03:56:16 +0000
ROA not before: Fri 26 Apr 2024 03:56:13 +0000
ROA not after: Tue 03 Sep 2024 03:56:13 +0000
asID: 131685
IP address blocks: 154.210.223.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 45386 (0xb14a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 26 03:56:13 2024 GMT
Not After : Sep 3 03:56:13 2024 GMT
Subject: CN=662b25e0-23f9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:fb:8e:2c:03:51:d9:06:7b:31:be:63:ae:a0:8b:
52:a9:f8:fb:44:e0:99:3c:52:5b:1e:57:e7:c3:30:
53:f7:34:1b:27:90:0b:92:ad:ca:34:07:2f:4c:37:
23:16:38:dc:0d:31:24:e5:20:54:00:e0:b7:db:69:
47:76:91:ba:58:95:a1:97:e8:9f:72:f3:85:f9:86:
98:cb:ed:93:f4:d9:28:dd:36:a9:79:97:b0:4e:c5:
62:d8:d9:48:4d:99:d5:55:ea:00:b2:3d:2a:cc:c1:
48:b4:8c:fc:c4:c4:25:33:04:b8:dd:18:50:b6:8b:
84:ae:6c:5a:c8:fa:c0:ac:49:29:0c:4f:59:03:46:
5c:a2:1a:09:4b:d9:1b:0b:f8:83:32:4e:ef:bd:00:
b9:f4:a5:78:6b:9b:60:34:af:fb:53:ba:e8:c0:b5:
c1:6a:8f:8e:b6:d6:5c:c5:71:36:62:23:95:46:b9:
42:32:a9:b5:bc:f8:dc:5e:e8:db:b4:01:76:db:32:
59:a6:57:fd:87:f8:a5:45:bf:a7:5d:65:07:d8:49:
5c:9b:fd:e6:25:47:72:78:cb:22:12:0f:36:f6:61:
41:55:6a:3f:7d:80:dc:76:8e:f4:6c:2e:41:8e:5f:
d2:ec:4a:a9:75:c8:0d:88:b0:eb:6e:fc:bf:c2:c5:
6b:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:16:46:D1:32:BB:9A:59:7B:E4:04:50:DF:9A:19:70:57:89:5F:A1
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/EE4EFF76038011EFBF4B8CF4007001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.210.223.0/24
Signature Algorithm: sha256WithRSAEncryption
a4:9d:d9:e4:76:3c:6c:3b:26:94:1d:6f:86:c3:c1:65:ce:d9:
cf:6d:00:2e:5d:34:be:ff:78:9c:0d:8f:2c:7d:5e:86:bc:2a:
08:42:c8:c6:22:07:63:b7:81:78:eb:e5:33:f4:65:22:22:66:
ee:d1:2d:a4:e6:4d:21:f7:bb:b6:3c:a7:1e:0b:d2:dd:85:10:
4c:53:5c:42:8c:be:0e:de:7b:83:51:32:74:09:36:80:ad:64:
d9:51:d9:17:05:69:3c:fa:9c:db:c3:70:98:96:a3:51:ab:4d:
11:b9:55:d4:8f:69:4b:9e:35:9b:fb:73:26:77:8c:c2:37:75:
54:45:55:c6:20:d8:a0:ce:e5:5d:95:b9:1c:09:ed:be:d3:06:
ce:27:11:23:3d:0c:97:46:b7:3c:3c:93:3e:5f:5e:27:f5:ba:
9b:fe:97:e4:32:a4:de:8c:34:fb:67:90:27:58:6a:e4:60:26:
3d:84:08:f8:ba:64:c7:c0:07:5b:38:82:a9:fa:57:6a:ec:36:
60:cd:81:d2:6d:f3:0b:3f:7b:99:f4:a7:16:80:7e:86:b2:ff:
11:3f:f9:c2:00:27:86:3c:ea:f4:2d:0b:be:1f:3f:83:bb:30:
df:75:59:69:a9:5f:e3:43:ff:d0:8c:8f:3e:10:5a:8a:a5:5e:
78:0c:23:35
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDALFKMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQwNDI2MDM1NjEzWhcNMjQwOTAzMDM1NjEzWjAYMRYw
FAYDVQQDEw02NjJiMjVlMC0yM2Y5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEA+44sA1HZBnsxvmOuoItSqfj7ROCZPFJbHlfnwzBT9zQbJ5ALkq3KNAcv
TDcjFjjcDTEk5SBUAOC322lHdpG6WJWhl+ifcvOF+YaYy+2T9Nko3TapeZewTsVi
2NlITZnVVeoAsj0qzMFItIz8xMQlMwS43RhQtouErmxayPrArEkpDE9ZA0ZcohoJ
S9kbC/iDMk7vvQC59KV4a5tgNK/7U7rowLXBao+OttZcxXE2YiOVRrlCMqm1vPjc
XujbtAF22zJZplf9h/ilRb+nXWUH2Elcm/3mJUdyeMsiEg829mFBVWo/fYDcdo70
bC5Bjl/S7EqpdcgNiLDrbvy/wsVrSQIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFGoW
RtEyu5pZe+QEUN+aGXBXiV+hMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC9FRTRFRkY3NjAzODAxMUVGQkY0QjhDRjQwMDcwMDFCMS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmtLfMA0GCSqGSIb3DQEB
CwUAA4IBAQCkndnkdjxsOyaUHW+Gw8FlztnPbQAuXTS+/3icDY8sfV6GvCoIQsjG
Igdjt4F46+Uz9GUiImbu0S2k5k0h97u2PKceC9LdhRBMU1xCjL4O3nuDUTJ0CTaA
rWTZUdkXBWk8+pzbw3CYlqNRq00RuVXUj2lLnjWb+3Mmd4zCN3VURVXGINigzuVd
lbkcCe2+0wbOJxEjPQyXRrc8PJM+X14n9bqb/pfkMqTejDT7Z5AnWGrkYCY9hAj4
umTHwAdbOIKp+ldq7DZgzYHSbfMLP3uZ9KcWgH6Gsv8RP/nCACeGPOr0LQu+Hz+D
uzDfdVlpqV/jQ//QjI8+EFqKpV54DCM1
-----END CERTIFICATE-----
Generated at Tue Sep 3 10:16:07 2024 by rpki-client on console-ams.rpki-client.org