Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36F0628/F0CCBE7CFBA011EBAB786C49D8A014CE/6597E91E11FE11EE92DE6E0F4AD9E6FC.roa
File: 6597E91E11FE11EE92DE6E0F4AD9E6FC.roa (raw, json)
Hash identifier: JLG2+JAtzXSbYccOCOSqHXsNow0CD6D1oorxL29AG3g=
Subject key identifier: 7C:C5:0E:F9:1A:DB:51:A8:80:C8:DE:83:8A:C4:C1:70:BA:95:AA:DA
Certificate issuer: /CN=F36F0628AF/serialNumber=8605D7599A0402F70EC2F258D6C16BD2E4E8D1FE
Certificate serial: 0309
Authority key identifier: 86:05:D7:59:9A:04:02:F7:0E:C2:F2:58:D6:C1:6B:D2:E4:E8:D1:FE
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/hgXXWZoEAvcOwvJY1sFr0uTo0f4.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36F0628/F0CCBE7CFBA011EBAB786C49D8A014CE/6597E91E11FE11EE92DE6E0F4AD9E6FC.roa
Signing time: Fri 23 Jun 2023 19:44:42 +0000
ROA not before: Fri 23 Jun 2023 19:44:37 +0000
ROA not after: Wed 23 Aug 2023 19:44:37 +0000
asID: 49316
IP address blocks: 196.44.127.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 777 (0x309)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36F0628AF/serialNumber=8605D7599A0402F70EC2F258D6C16BD2E4E8D1FE
Validity
Not Before: Jun 23 19:44:37 2023 GMT
Not After : Aug 23 19:44:37 2023 GMT
Subject: CN=6495f62a-fa6a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:16:92:50:63:32:63:a9:52:c0:ae:11:2e:da:
c4:7e:9f:fd:02:ff:dd:c3:89:47:d7:cb:2a:49:56:
42:5d:af:1b:c0:85:8e:6f:8d:06:2c:c9:15:ab:5b:
80:4e:f8:a4:47:ae:eb:48:ab:90:9a:6b:3a:92:ff:
69:31:99:63:31:ab:24:7d:f8:38:ff:3b:d3:17:99:
21:5e:9c:0a:d5:ae:09:0c:27:df:4c:f1:5f:e2:e7:
4b:c7:59:6b:fb:44:ef:c8:1d:0e:b4:32:8c:4c:ee:
0e:9a:bc:95:66:35:09:9c:fe:e3:85:aa:00:96:80:
e4:b6:5d:ed:04:52:62:1f:3c:b8:06:ec:93:93:66:
d7:c7:a7:45:ae:68:01:ab:cb:7a:7e:96:75:5f:38:
43:c4:f7:4e:cb:3a:13:24:d9:ff:e1:b7:ca:4e:67:
a8:8d:00:d1:ca:08:b5:58:bc:af:5f:ff:a9:58:8f:
d9:b3:31:ab:f7:98:6e:81:d6:12:db:4b:ba:90:4e:
52:d2:55:f3:ac:d4:d0:64:db:e8:74:0a:16:3b:48:
7b:a8:0a:f8:13:7a:f3:4e:3b:e4:23:76:32:43:93:
a5:31:a6:ca:b7:8b:ad:be:9d:2f:b9:d3:91:31:d4:
7f:da:08:9a:a2:b8:85:7b:3d:7a:4f:6d:a3:8c:fd:
18:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:C5:0E:F9:1A:DB:51:A8:80:C8:DE:83:8A:C4:C1:70:BA:95:AA:DA
X509v3 Authority Key Identifier:
keyid:86:05:D7:59:9A:04:02:F7:0E:C2:F2:58:D6:C1:6B:D2:E4:E8:D1:FE
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36F0628/F0CCBE7CFBA011EBAB786C49D8A014CE/hgXXWZoEAvcOwvJY1sFr0uTo0f4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/hgXXWZoEAvcOwvJY1sFr0uTo0f4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36F0628/F0CCBE7CFBA011EBAB786C49D8A014CE/6597E91E11FE11EE92DE6E0F4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
196.44.127.0/24
Signature Algorithm: sha256WithRSAEncryption
6c:6a:33:43:14:1d:73:80:0f:58:e2:4c:46:00:46:3a:3a:84:
03:62:15:d7:f8:d9:63:09:7c:04:6e:b3:ca:c7:e6:26:fa:e9:
ea:27:37:dd:f8:49:01:8d:60:2c:03:ec:cb:3c:25:c0:7e:93:
9d:09:3f:5b:0d:00:61:aa:f2:44:87:a9:8e:2a:d1:89:5a:9e:
3c:6f:76:da:d6:71:d1:50:4e:b1:4c:f3:71:90:89:6e:15:82:
a4:ca:54:22:a5:ed:a5:9d:3b:7c:b8:f9:2e:a1:db:90:02:15:
28:8f:ae:04:08:a0:78:77:28:2c:60:09:32:30:7e:20:3e:3f:
b3:0c:cf:e4:77:4d:96:0f:a7:b8:8c:f5:dd:e5:45:ff:6c:a1:
f3:ee:37:58:20:ca:0a:f5:f1:7f:0f:04:37:33:a2:8b:20:6b:
79:89:75:92:7c:e2:25:83:8a:04:6c:0c:f8:ac:23:8e:eb:18:
52:56:ed:5c:72:a5:53:88:64:30:92:7d:ab:59:02:cd:9b:e8:
3c:b6:c5:3a:f8:29:49:ec:84:eb:cc:d9:93:7b:5a:19:08:2b:
28:96:a8:f4:8a:92:fc:39:3f:aa:cd:20:ce:c5:10:6a:71:68:
e3:24:b5:66:99:89:30:9a:14:46:51:67:d2:e2:fc:d0:8f:a9:
6c:d4:df:1c
-----BEGIN CERTIFICATE-----
MIIFgzCCBGugAwIBAgICAwkwDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAwwKRjM2
RjA2MjhBRjExMC8GA1UEBRMoODYwNUQ3NTk5QTA0MDJGNzBFQzJGMjU4RDZDMTZC
RDJFNEU4RDFGRTAeFw0yMzA2MjMxOTQ0MzdaFw0yMzA4MjMxOTQ0MzdaMBgxFjAU
BgNVBAMTDTY0OTVmNjJhLWZhNmEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQC/FpJQYzJjqVLArhEu2sR+n/0C/93DiUfXyypJVkJdrxvAhY5vjQYsyRWr
W4BO+KRHrutIq5CaazqS/2kxmWMxqyR9+Dj/O9MXmSFenArVrgkMJ99M8V/i50vH
WWv7RO/IHQ60MoxM7g6avJVmNQmc/uOFqgCWgOS2Xe0EUmIfPLgG7JOTZtfHp0Wu
aAGry3p+lnVfOEPE907LOhMk2f/ht8pOZ6iNANHKCLVYvK9f/6lYj9mzMav3mG6B
1hLbS7qQTlLSVfOs1NBk2+h0ChY7SHuoCvgTevNOO+QjdjJDk6Uxpsq3i62+nS+5
05Ex1H/aCJqiuIV7PXpPbaOM/RglAgMBAAGjggKlMIICoTAdBgNVHQ4EFgQUfMUO
+RrbUaiAyN6DisTBcLqVqtowHwYDVR0jBBgwFoAUhgXXWZoEAvcOwvJY1sFr0uTo
0f4wDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNkYwNjI4L0YwQ0NCRTdDRkJBMDExRUJBQjc4NkM0OUQ4QTAxNENFL2hnWFhX
Wm9FQXZjT3d2Slkxc0ZyMHVUbzBmNC5jcmwwZwYIKwYBBQUHAQEEWzBZMFcGCCsG
AQUFBzAChktyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hZnJp
bmljL2hnWFhXWm9FQXZjT3d2Slkxc0ZyMHVUbzBmNC5jZXIwTwYDVR0gAQH/BEUw
QzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5p
Yy5uZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEF
BQcwC4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJl
cl9yZXBvc2l0b3J5L0YzNkYwNjI4L0YwQ0NCRTdDRkJBMDExRUJBQjc4NkM0OUQ4
QTAxNENFLzY1OTdFOTFFMTFGRTExRUU5MkRFNkUwRjRBRDlFNkZDLnJvYTA1Bggr
BgEFBQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54
bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADELH8wDQYJKoZIhvcNAQEL
BQADggEBAGxqM0MUHXOAD1jiTEYARjo6hANiFdf42WMJfARus8rH5ib66eonN934
SQGNYCwD7Ms8JcB+k50JP1sNAGGq8kSHqY4q0YlanjxvdtrWcdFQTrFM83GQiW4V
gqTKVCKl7aWdO3y4+S6h25ACFSiPrgQIoHh3KCxgCTIwfiA+P7MMz+R3TZYPp7iM
9d3lRf9sofPuN1ggygr18X8PBDczoosga3mJdZJ84iWDigRsDPisI47rGFJW7Vxy
pVOIZDCSfatZAs2b6Dy2xTr4KUnshOvM2ZN7WhkIKyiWqPSKkvw5P6rNIM7FEGpx
aOMktWaZiTCaFEZRZ9Li/NCPqWzU3xw=
-----END CERTIFICATE-----
Generated at Thu Jun 6 16:50:53 2024 by rpki-client on console-fra.rpki-client.org