Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/FDB1542C11B411EF8B01A93B017001B1.roa
File: FDB1542C11B411EF8B01A93B017001B1.roa (raw, json)
Hash identifier: WFjWUqBx4gAhTcE1FlvAncqxeV0+VBmoiEIitjqZdwE=
Subject key identifier: 79:0E:DD:C1:CE:0A:D3:97:20:57:11:AA:66:C1:D1:05:FE:9B:EB:FD
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: B752
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/FDB1542C11B411EF8B01A93B017001B1.roa
Signing time: Tue 14 May 2024 05:44:12 +0000
ROA not before: Tue 14 May 2024 05:44:09 +0000
ROA not after: Thu 23 May 2024 05:44:09 +0000
asID: 141883
IP address blocks: 154.91.224.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 46930 (0xb752)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 14 05:44:09 2024 GMT
Not After : May 23 05:44:09 2024 GMT
Subject: CN=6642fa2c-b614
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:82:5c:fb:b7:cd:6c:7e:95:8d:a4:84:f8:3f:
25:d4:bb:8b:da:30:99:c2:73:d5:e7:44:aa:43:98:
1d:8e:e4:87:47:0e:41:11:eb:06:61:92:a4:c5:94:
44:bf:3c:9e:5a:82:aa:9b:00:19:3f:f0:00:df:86:
59:a9:2c:e5:af:0d:05:0c:11:ba:6e:d2:68:99:6f:
e4:16:62:35:2a:ae:08:a4:f9:5d:63:4a:b6:46:b2:
19:1e:e3:90:4a:03:be:9c:71:c4:2a:ec:4e:ce:9f:
f6:68:a5:f4:24:a2:23:09:c2:07:a3:4f:2c:c2:e1:
d6:0f:80:d2:ab:bd:db:93:30:c3:81:96:3b:e2:57:
e9:fa:43:e0:96:0e:9d:6a:2b:1d:78:71:aa:0c:90:
49:b1:0e:66:42:df:7d:c9:7e:81:a4:4d:e4:7b:89:
be:8b:ec:c9:d3:55:99:fc:79:33:c0:3c:87:d4:11:
49:0c:81:37:7b:b4:57:25:22:bf:e8:ba:17:b0:67:
80:b5:b0:3b:c6:67:92:40:d5:f8:84:24:52:25:09:
a0:a0:1c:f5:c2:80:67:e5:5f:ea:97:ed:d3:47:7e:
93:3b:75:c9:12:15:df:9e:16:31:58:64:29:86:80:
7b:5b:27:0c:3b:f1:3b:85:31:1b:a0:18:81:97:c9:
0f:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:0E:DD:C1:CE:0A:D3:97:20:57:11:AA:66:C1:D1:05:FE:9B:EB:FD
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/FDB1542C11B411EF8B01A93B017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.91.224.0/19
Signature Algorithm: sha256WithRSAEncryption
4a:44:dd:44:9e:46:76:af:b1:ce:40:e9:5c:f5:cb:1c:1b:b6:
6e:e6:8e:b7:5d:bb:90:7a:c0:f9:ae:13:93:89:2a:99:be:18:
14:0b:62:67:76:06:97:8d:d6:e3:a5:79:0f:aa:39:b7:dc:e9:
f7:88:75:ac:31:d5:5e:84:a5:f6:cb:3f:2e:e5:be:45:98:b2:
17:66:93:60:62:76:53:f4:16:05:71:88:5a:ea:74:a4:9b:0c:
57:c4:42:7e:a7:57:0b:41:4b:38:0c:ce:e2:9a:5e:d4:b2:97:
a6:d5:cc:f9:c9:39:8a:d4:d9:ed:b5:d0:3c:df:e1:d5:8b:92:
4d:13:c0:92:ba:69:44:64:55:63:1d:9e:1a:cc:0f:dc:96:ba:
15:9d:a1:80:b8:ae:1f:82:f5:93:fd:f8:0c:10:42:ba:60:1e:
3b:69:d0:55:0c:4f:95:11:27:4a:7d:d7:16:23:9d:fa:96:ad:
38:d9:d6:41:da:0b:91:9e:34:d6:e2:db:5e:93:65:74:dc:7f:
e8:c7:94:3e:9b:78:b4:2a:ad:eb:0c:9b:20:4d:d8:93:be:9a:
64:46:df:d7:0a:38:f3:98:74:58:ea:b9:7d:44:c7:ab:a0:89:
f5:9e:97:2f:29:16:7a:ee:b7:dd:4d:d0:84:9a:d9:22:95:f7:
ea:ef:97:6f
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDALdSMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQwNTE0MDU0NDA5WhcNMjQwNTIzMDU0NDA5WjAYMRYw
FAYDVQQDEw02NjQyZmEyYy1iNjE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAx4Jc+7fNbH6VjaSE+D8l1LuL2jCZwnPV50SqQ5gdjuSHRw5BEesGYZKk
xZREvzyeWoKqmwAZP/AA34ZZqSzlrw0FDBG6btJomW/kFmI1Kq4IpPldY0q2RrIZ
HuOQSgO+nHHEKuxOzp/2aKX0JKIjCcIHo08swuHWD4DSq73bkzDDgZY74lfp+kPg
lg6daisdeHGqDJBJsQ5mQt99yX6BpE3ke4m+i+zJ01WZ/HkzwDyH1BFJDIE3e7RX
JSK/6LoXsGeAtbA7xmeSQNX4hCRSJQmgoBz1woBn5V/ql+3TR36TO3XJEhXfnhYx
WGQphoB7WycMO/E7hTEboBiBl8kPqwIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFHkO
3cHOCtOXIFcRqmbB0QX+m+v9MB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC9GREIxNTQyQzExQjQxMUVGOEIwMUE5M0IwMTcwMDFCMS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQFmlvgMA0GCSqGSIb3DQEB
CwUAA4IBAQBKRN1EnkZ2r7HOQOlc9cscG7Zu5o63XbuQesD5rhOTiSqZvhgUC2Jn
dgaXjdbjpXkPqjm33On3iHWsMdVehKX2yz8u5b5FmLIXZpNgYnZT9BYFcYha6nSk
mwxXxEJ+p1cLQUs4DM7iml7Uspem1cz5yTmK1NnttdA83+HVi5JNE8CSumlEZFVj
HZ4azA/clroVnaGAuK4fgvWT/fgMEEK6YB47adBVDE+VESdKfdcWI536lq042dZB
2guRnjTW4ttek2V03H/ox5Q+m3i0Kq3rDJsgTdiTvppkRt/XCjjzmHRY6rl9RMer
oIn1npcvKRZ67rfdTdCEmtkilffq75dv
-----END CERTIFICATE-----
Generated at Thu May 23 06:41:16 2024 by rpki-client on console-ams.rpki-client.org