![](/console.gif)
Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/090CDA2E295911EFAD19AEFB7CDC24C2.roa
File: 090CDA2E295911EFAD19AEFB7CDC24C2.roa (raw, json)
Hash identifier: ZMWU6BTjTx+BrR4pLCYhfdJTxfn5XphzV2KoJ6UbScY=
Subject key identifier: 73:D9:65:68:35:4B:2D:F5:F6:82:41:A2:4A:58:C2:AD:BD:7B:04:04
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: C273
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/090CDA2E295911EFAD19AEFB7CDC24C2.roa
Signing time: Thu 13 Jun 2024 07:46:25 +0000
ROA not before: Thu 13 Jun 2024 07:46:22 +0000
ROA not after: Fri 21 Jun 2024 07:46:22 +0000
asID: 44559
IP address blocks: 154.203.248.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 49779 (0xc273)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jun 13 07:46:22 2024 GMT
Not After : Jun 21 07:46:22 2024 GMT
Subject: CN=666aa3d1-a3a1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:ce:fb:e2:9b:23:f5:00:35:77:d7:91:3f:6f:
2b:36:08:55:1d:2f:7b:91:4c:59:2b:42:36:06:c0:
55:20:69:26:d4:c2:bb:24:20:42:16:82:1c:6f:35:
e6:bb:84:e1:1a:20:99:60:89:64:3e:72:11:ac:3e:
db:0f:90:21:79:a1:64:c7:86:a9:d3:31:0d:fc:c2:
2b:15:05:39:12:02:4d:cc:e5:3e:e2:aa:5a:28:98:
e0:8d:bc:9e:49:3b:5e:42:2e:0b:32:3c:29:27:7c:
45:92:90:9e:d0:fa:b6:a3:97:c6:d8:b1:40:ac:fb:
b0:f1:70:6c:39:c3:98:08:d5:25:4e:02:3f:77:38:
ff:6b:ba:ce:49:2a:3e:fa:90:ac:ba:b7:58:4b:4e:
0d:14:9f:70:3c:d8:24:2e:b2:cc:64:9c:99:da:a0:
44:2e:f1:f1:40:0f:fe:5b:2e:8f:04:a1:b3:5b:8e:
65:f3:f0:1f:48:fc:8b:28:57:5a:5e:4e:d4:76:7c:
82:44:31:f8:7e:59:b5:93:c6:64:74:a5:48:a0:aa:
91:3b:bb:50:01:3a:32:04:04:43:bb:99:1f:54:9d:
9d:64:0c:ed:56:6e:2f:e4:dc:db:e3:f8:f3:d5:26:
80:ab:6a:4f:33:c2:6d:a7:e7:25:30:0f:ce:44:5f:
77:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:D9:65:68:35:4B:2D:F5:F6:82:41:A2:4A:58:C2:AD:BD:7B:04:04
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/090CDA2E295911EFAD19AEFB7CDC24C2.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.203.248.0/22
Signature Algorithm: sha256WithRSAEncryption
78:d9:4e:69:9b:82:6a:20:89:74:83:e5:ab:3e:e0:ef:59:61:
52:1a:78:7d:7a:3f:9e:47:48:f6:50:67:5c:0a:a6:d0:0d:23:
cd:7f:46:44:b8:42:f3:e6:c1:39:eb:92:2d:23:aa:83:49:ae:
ef:87:4e:b8:23:1e:e7:1f:a3:ba:56:38:00:27:e7:6a:08:44:
93:c1:d1:33:43:5a:3d:03:ce:69:bf:ee:8a:dc:8e:e4:4b:ed:
12:ba:bd:bc:12:d5:6f:b2:19:90:ad:59:c8:45:82:7e:f1:bd:
be:1c:62:f8:61:8f:a5:5d:5d:90:42:ac:b8:b6:ce:71:37:8f:
31:2b:4d:b2:cd:d1:6a:5b:39:85:f2:6b:a5:0c:5b:74:a5:55:
8f:fa:32:2e:d4:8b:af:73:fc:54:11:ba:ef:3c:9b:0d:4c:f5:
45:ed:40:99:53:e8:3d:af:d8:81:0d:fd:b8:c7:25:9e:55:ba:
a4:3f:9d:13:e1:bc:26:fa:0e:f4:e9:aa:f0:0c:ba:09:8e:62:
ee:22:30:ae:40:67:62:d2:7a:f8:f1:15:ce:27:93:ec:7a:e7:
ed:9d:eb:1d:39:68:64:99:34:ed:00:f1:8e:4f:4f:d0:61:7a:
ff:16:0d:63:3f:72:f4:04:3f:49:ae:75:e7:25:8c:bd:3b:a7:
07:bd:ca:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 22 03:45:59 2024 by rpki-client on console-fra.rpki-client.org