Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/16B77B4AF4F911EFA14E194F762E951A.roa
File: 16B77B4AF4F911EFA14E194F762E951A.roa (raw, json)
Hash identifier: 6oPFfTThrvALC8wjiYy3S7nRYJq5XHkaMoVQ7bhRUmM=
Subject key identifier: 56:20:67:05:9F:D3:D8:95:55:06:0C:FA:1B:91:FA:5C:01:55:D9:CE
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0167F8
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/16B77B4AF4F911EFA14E194F762E951A.roa
Signing time: Thu 27 Feb 2025 10:53:34 +0000
ROA not before: Thu 27 Feb 2025 10:53:29 +0000
ROA not after: Wed 26 Mar 2025 10:53:29 +0000
asID: 62240
IP address blocks: 154.196.37.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 92152 (0x167f8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Feb 27 10:53:29 2025 GMT
Not After : Mar 26 10:53:29 2025 GMT
Subject: CN=67c0442e-a574
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:bd:dd:14:c0:af:59:c1:12:8d:82:2b:e3:a4:
41:b8:42:8c:0a:f9:07:d3:db:c0:1d:46:5a:86:33:
c0:2b:45:e9:c8:a9:5b:82:28:bd:51:9e:03:e9:d2:
97:c7:6b:dd:68:f4:de:72:33:07:5c:e8:b2:4e:db:
b4:aa:74:89:46:e9:fb:f8:ea:e5:f9:e3:d4:79:34:
b6:95:61:00:2b:42:bf:86:34:40:16:ce:7a:e4:99:
dc:92:1a:9b:77:9c:5a:e5:30:09:ed:27:36:89:83:
f5:ba:fd:49:c1:0b:d1:a8:f0:51:11:0e:b2:cf:5d:
06:c3:a9:09:9c:87:da:08:7c:78:3b:70:9e:14:89:
4e:20:65:0a:fb:63:ad:f7:ec:20:75:38:4e:83:ad:
66:85:1c:e1:06:e9:c0:cf:af:4d:89:8f:56:97:ed:
8e:a4:31:69:e0:e2:90:dc:87:d2:0a:04:81:15:41:
cd:ec:20:cb:64:78:46:a5:ea:16:f8:d3:a4:12:af:
c1:cf:fa:6d:f9:a6:10:5e:e6:4f:07:78:76:7b:e2:
be:ee:20:0e:03:4b:38:93:22:af:c4:33:e0:7b:9f:
d2:01:b8:0a:24:85:6a:a0:1f:e7:84:62:db:43:3d:
5a:8b:ff:6c:8b:7d:d9:c9:d4:f6:b9:d1:af:f4:31:
32:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:20:67:05:9F:D3:D8:95:55:06:0C:FA:1B:91:FA:5C:01:55:D9:CE
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/16B77B4AF4F911EFA14E194F762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.196.37.0/24
Signature Algorithm: sha256WithRSAEncryption
56:de:bd:5f:99:c1:ab:9b:87:af:1f:a4:b4:eb:69:37:8b:14:
19:c9:12:f0:b3:95:70:85:0c:b5:02:74:60:2d:88:32:70:b8:
41:14:45:43:ed:6b:1d:b3:04:ab:c8:40:2e:10:4f:c1:40:5f:
e6:cf:8b:05:ba:c3:fd:87:c5:69:b6:56:5f:9b:51:74:fe:c0:
a5:08:56:75:01:0c:af:4e:db:86:39:ec:9f:9f:14:32:3e:73:
9b:fd:4a:af:88:c3:10:f7:ae:50:92:5d:08:5c:2d:2a:55:66:
2c:99:66:fe:52:82:4e:21:57:b4:b0:fd:61:d6:ac:0e:8a:ca:
eb:9a:d9:03:31:44:56:3c:3b:29:95:b3:e0:19:e3:05:56:84:
6b:14:9e:cf:69:15:89:b8:92:96:82:78:2e:c2:fc:32:7e:ed:
ca:3f:c2:e2:88:c2:ee:3b:14:d3:c5:bd:60:35:a8:43:6e:a5:
81:02:86:22:d2:9b:10:63:9b:2b:17:05:96:e0:db:6a:6d:10:
8f:9d:cb:12:64:d6:82:3a:66:36:61:f6:bd:f3:3e:59:b7:d0:
dc:7b:97:0f:a2:db:c3:e7:ec:6c:98:b5:ea:4f:c1:8a:11:69:
ff:3b:21:33:6a:98:34:23:b6:c5:a1:fc:35:55:06:bf:74:65:
cc:8e:c2:f9
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAWf4MA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjUwMjI3MTA1MzI5WhcNMjUwMzI2MTA1MzI5WjAYMRYw
FAYDVQQDEw02N2MwNDQyZS1hNTc0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEApL3dFMCvWcESjYIr46RBuEKMCvkH09vAHUZahjPAK0XpyKlbgii9UZ4D
6dKXx2vdaPTecjMHXOiyTtu0qnSJRun7+Orl+ePUeTS2lWEAK0K/hjRAFs565Jnc
khqbd5xa5TAJ7Sc2iYP1uv1JwQvRqPBREQ6yz10Gw6kJnIfaCHx4O3CeFIlOIGUK
+2Ot9+wgdThOg61mhRzhBunAz69NiY9Wl+2OpDFp4OKQ3IfSCgSBFUHN7CDLZHhG
peoW+NOkEq/Bz/pt+aYQXuZPB3h2e+K+7iAOA0s4kyKvxDPge5/SAbgKJIVqoB/n
hGLbQz1ai/9si33ZydT2udGv9DEyYwIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFFYg
ZwWf09iVVQYM+huR+lwBVdnOMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC8xNkI3N0I0QUY0RjkxMUVGQTE0RTE5NEY3NjJFOTUxQS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmsQlMA0GCSqGSIb3DQEB
CwUAA4IBAQBW3r1fmcGrm4evH6S062k3ixQZyRLws5VwhQy1AnRgLYgycLhBFEVD
7WsdswSryEAuEE/BQF/mz4sFusP9h8VptlZfm1F0/sClCFZ1AQyvTtuGOeyfnxQy
PnOb/UqviMMQ965Qkl0IXC0qVWYsmWb+UoJOIVe0sP1h1qwOisrrmtkDMURWPDsp
lbPgGeMFVoRrFJ7PaRWJuJKWgnguwvwyfu3KP8LiiMLuOxTTxb1gNahDbqWBAoYi
0psQY5srFwWW4NtqbRCPncsSZNaCOmY2Yfa98z5Zt9Dce5cPotvD5+xsmLXqT8GK
EWn/OyEzapg0I7bFofw1VQa/dGXMjsL5
-----END CERTIFICATE-----
Generated at Fri May 9 11:54:23 2025 by rpki-client