Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/FFF503B090AA11EC920441BA5A40D577.roa
File: FFF503B090AA11EC920441BA5A40D577.roa (raw, json)
Hash identifier: nzvJHuHNJNbbhahMp0fBH1+5H4rBgEobzXEyZLHagtk=
Subject key identifier: 94:A4:04:64:BC:35:03:46:96:AF:73:40:DC:BD:EA:41:5A:19:F1:C3
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 14DA
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/FFF503B090AA11EC920441BA5A40D577.roa
Signing time: Fri 18 Feb 2022 11:07:46 +0000
ROA not before: Fri 18 Feb 2022 11:07:42 +0000
ROA not after: Fri 30 Dec 2022 11:07:42 +0000
asID: 137951
IP address blocks: 154.209.223.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5338 (0x14da)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Feb 18 11:07:42 2022 GMT
Not After : Dec 30 11:07:42 2022 GMT
Subject: CN=620f7e01-323c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:c3:20:34:c4:ae:00:f8:4c:b1:73:6c:b2:75:
24:ef:14:dc:e9:58:aa:a8:67:53:38:3a:a9:63:a2:
09:91:2c:56:65:d2:fd:53:7f:c4:c2:2c:22:a0:cf:
a2:d1:98:db:57:c7:db:45:00:30:15:39:5a:b8:c9:
6a:3b:25:61:65:a3:c8:3d:62:43:11:69:42:02:0c:
de:77:ca:e8:ce:f2:71:00:e5:be:7c:8e:16:48:3d:
30:54:a7:1e:6d:19:05:2c:8f:6f:bd:70:e8:34:b4:
ef:e9:2e:eb:87:fa:64:6e:ed:d6:28:11:6a:b8:2c:
8f:5a:4c:17:e7:9c:6e:c3:a7:91:ea:b7:bb:b9:6d:
d1:63:b7:f4:67:b5:7b:55:e4:39:a8:48:58:1d:e7:
8f:15:8f:56:84:46:fb:e6:9d:d7:dd:2c:5a:96:ea:
64:28:03:92:ab:ab:73:ee:69:84:35:21:51:5a:b5:
c1:85:f6:d7:09:1f:5a:4b:95:c6:8f:92:6a:94:38:
ca:5e:79:15:90:34:80:34:78:38:66:2f:4c:7b:96:
ab:18:33:53:43:ba:e0:06:19:7a:72:7a:5c:11:52:
14:4f:8c:5f:af:0a:2f:ae:ac:15:a4:a5:75:ee:93:
e9:a4:d2:94:92:1e:29:56:46:ac:06:e1:0a:a2:b6:
8d:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:A4:04:64:BC:35:03:46:96:AF:73:40:DC:BD:EA:41:5A:19:F1:C3
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/FFF503B090AA11EC920441BA5A40D577.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.209.223.0/24
Signature Algorithm: sha256WithRSAEncryption
3e:94:5b:66:5f:89:67:99:0b:1f:3a:0c:64:5d:bb:c2:0f:15:
1e:11:1e:8f:dc:89:32:25:46:65:41:3e:66:be:03:3f:98:3a:
4e:1c:3b:90:6c:76:a9:97:41:5a:42:cb:e9:a5:75:a4:81:e1:
16:91:1a:e4:b5:96:49:b5:f1:cc:aa:17:8d:62:a9:5f:70:a9:
60:94:32:bc:57:66:82:35:77:cf:85:e8:99:c7:e2:aa:80:40:
c3:a3:1c:eb:6e:dc:ec:27:85:2b:f1:d7:d7:82:42:86:13:c9:
a3:58:aa:61:55:29:26:c2:17:7e:0f:04:cb:09:1d:5f:e2:59:
e3:f7:ab:c7:2e:65:e1:8d:65:26:ac:39:f6:b9:af:be:6b:1d:
4a:33:3a:fc:97:01:bb:d0:d6:a4:20:f2:0e:7b:58:0c:9d:f1:
08:29:bd:6c:98:70:89:48:94:74:0e:61:92:13:3b:56:49:4b:
b7:35:97:2a:0e:58:57:06:69:4d:6d:ab:53:1a:ae:08:f0:4d:
39:73:0b:66:aa:46:e8:e7:34:50:56:9d:1b:da:19:0e:29:ad:
ea:4f:be:d8:ec:67:d7:31:9c:a5:08:f8:77:4d:ae:36:72:39:
19:95:db:85:0e:38:86:7d:6a:c0:79:6f:4f:9d:5f:7c:9f:40:
b5:f6:84:06
-----BEGIN CERTIFICATE-----
MIIFgzCCBGugAwIBAgICFNowDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAwwKRjM2
OEYyRDBBRjExMC8GA1UEBRMoMjVENjNFMDhFQUJFN0NGQTY3ODVENEMxRDZEMzQx
MTZERTE1QjNEQzAeFw0yMjAyMTgxMTA3NDJaFw0yMjEyMzAxMTA3NDJaMBgxFjAU
BgNVBAMMDTYyMGY3ZTAxLTMyM2MwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQDAwyA0xK4A+Eyxc2yydSTvFNzpWKqoZ1M4OqljogmRLFZl0v1Tf8TCLCKg
z6LRmNtXx9tFADAVOVq4yWo7JWFlo8g9YkMRaUICDN53yujO8nEA5b58jhZIPTBU
px5tGQUsj2+9cOg0tO/pLuuH+mRu7dYoEWq4LI9aTBfnnG7Dp5Hqt7u5bdFjt/Rn
tXtV5DmoSFgd548Vj1aERvvmndfdLFqW6mQoA5Krq3PuaYQ1IVFatcGF9tcJH1pL
lcaPkmqUOMpeeRWQNIA0eDhmL0x7lqsYM1NDuuAGGXpyelwRUhRPjF+vCi+urBWk
pXXuk+mk0pSSHilWRqwG4Qqito0/AgMBAAGjggKlMIICoTAdBgNVHQ4EFgQUlKQE
ZLw1A0aWr3NA3L3qQVoZ8cMwHwYDVR0jBBgwFoAUJdY+COq+fPpnhdTB1tNBFt4V
s9wwDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjhGMkQwLzdGNEE5OEVBNkUwNTExRTg5QzBENkU0QkY4QUVBMjI4L0pkWS1D
T3EtZlBwbmhkVEIxdE5CRnQ0VnM5dy5jcmwwZwYIKwYBBQUHAQEEWzBZMFcGCCsG
AQUFBzAChktyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hZnJp
bmljL0pkWS1DT3EtZlBwbmhkVEIxdE5CRnQ0VnM5dy5jZXIwTwYDVR0gAQH/BEUw
QzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5p
Yy5uZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEF
BQcwC4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJl
cl9yZXBvc2l0b3J5L0YzNjhGMkQwLzdGNEE5OEVBNkUwNTExRTg5QzBENkU0QkY4
QUVBMjI4L0ZGRjUwM0IwOTBBQTExRUM5MjA0NDFCQTVBNDBENTc3LnJvYTA1Bggr
BgEFBQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54
bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBACa0d8wDQYJKoZIhvcNAQEL
BQADggEBAD6UW2ZfiWeZCx86DGRdu8IPFR4RHo/ciTIlRmVBPma+Az+YOk4cO5Bs
dqmXQVpCy+mldaSB4RaRGuS1lkm18cyqF41iqV9wqWCUMrxXZoI1d8+F6JnH4qqA
QMOjHOtu3OwnhSvx19eCQoYTyaNYqmFVKSbCF34PBMsJHV/iWeP3q8cuZeGNZSas
Ofa5r75rHUozOvyXAbvQ1qQg8g57WAyd8QgpvWyYcIlIlHQOYZITO1ZJS7c1lyoO
WFcGaU1tq1MargjwTTlzC2aqRujnNFBWnRvaGQ4prepPvtjsZ9cxnKUI+HdNrjZy
ORmV24UOOIZ9asB5b0+dX3yfQLX2hAY=
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:22:15 2023 by rpki-client on console-fra.rpki-client.org