Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1735C4D48A9011EE8B3E3B8A4AD9E6FC.roa
File: 1735C4D48A9011EE8B3E3B8A4AD9E6FC.roa (raw, json)
Hash identifier: rJ6AH5O/zNsWqkLxu4ZAUqOBLkjFk7WFGiMbt9onsog=
Subject key identifier: 7B:43:79:B1:39:92:B3:B3:51:CE:88:06:E3:A8:3F:F9:B4:9E:AA:4A
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 5391
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1735C4D48A9011EE8B3E3B8A4AD9E6FC.roa
Signing time: Fri 24 Nov 2023 06:09:57 +0000
ROA not before: Fri 24 Nov 2023 06:09:53 +0000
ROA not after: Tue 26 Dec 2023 06:09:53 +0000
asID: 62240
IP address blocks: 154.195.126.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 21393 (0x5391)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 24 06:09:53 2023 GMT
Not After : Dec 26 06:09:53 2023 GMT
Subject: CN=65603e34-5cda
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:8f:50:db:93:1c:3c:b4:71:a6:dc:22:48:b6:
55:ad:e8:e9:ef:c6:c3:79:ad:3c:73:32:cb:b0:57:
9d:9b:0e:24:fa:05:1b:54:90:35:c6:cf:29:17:3e:
a0:69:20:0b:f4:19:b7:29:23:8e:45:2c:29:f0:f7:
d3:d5:32:cd:57:0d:91:b0:4a:eb:62:71:c6:d6:0e:
9c:be:a0:2b:82:66:3b:5e:c6:1c:be:5d:cb:c7:22:
bc:37:5e:e8:4d:c1:58:f0:5e:99:99:7d:9f:4f:64:
fe:75:b2:5e:4b:a0:02:8e:44:ab:e7:46:38:68:0a:
b0:0b:99:ca:df:87:9e:ec:f7:7d:4d:ba:a0:b5:a8:
e0:fd:ff:00:dd:27:5c:39:b1:c8:95:2f:38:5f:e0:
08:24:9f:21:81:e3:1e:3f:a9:0f:8c:37:04:a3:ec:
52:f5:12:6e:9e:c5:11:d0:7f:48:e6:fc:84:81:fb:
74:80:82:9b:fa:a3:fd:13:10:31:f1:7c:95:18:0e:
c3:83:39:25:a5:61:47:d3:68:f8:a7:db:90:51:76:
d5:74:b7:df:50:5a:b4:26:03:e3:7d:7e:3b:a6:78:
42:7e:a0:be:23:fc:26:5a:cb:01:7e:bc:41:6b:66:
8a:99:da:34:6e:c8:cb:95:44:79:66:81:c5:9c:44:
21:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:43:79:B1:39:92:B3:B3:51:CE:88:06:E3:A8:3F:F9:B4:9E:AA:4A
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1735C4D48A9011EE8B3E3B8A4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.195.126.0/24
Signature Algorithm: sha256WithRSAEncryption
26:7b:53:bc:f6:3d:e1:a8:6e:a6:a8:ba:ad:1a:e5:ff:35:58:
24:5a:42:9b:6d:c3:c6:c5:c9:93:bf:c3:90:22:4e:43:de:15:
ec:c3:6e:8d:67:7f:46:e1:67:d0:59:f9:d1:a6:1c:a4:e9:d5:
f4:7e:7d:fd:15:57:1a:f4:57:be:c0:54:70:5f:b7:0d:b1:11:
f9:32:fd:f3:f6:87:46:5f:2c:31:ed:6b:db:cc:dd:7c:13:39:
68:67:e7:1d:38:b9:2a:8b:c9:2f:a5:ee:e9:d1:5d:d1:c5:0c:
46:eb:2d:35:8a:87:65:41:51:9e:c9:15:d7:30:e7:12:25:d0:
cb:03:c1:a9:cf:b4:17:00:5e:f2:c9:ab:7e:16:be:a8:02:5e:
9e:18:81:fc:2d:f4:3a:57:8e:59:40:56:2e:e2:76:5e:0c:c6:
f6:95:a2:72:de:7c:3f:be:98:b5:d7:e9:2d:71:07:91:99:a5:
eb:53:18:9f:96:97:05:5e:73:26:98:49:cc:9d:86:3e:7e:92:
86:15:64:49:d8:f1:dd:27:5f:3c:a0:ba:3c:a5:79:4d:41:d2:
5c:2d:2e:3c:d5:6f:6d:ff:b1:9a:14:11:f5:df:76:e8:32:04:
12:e1:95:0c:7e:97:c6:ed:70:e9:bd:cd:f6:d8:57:c8:5a:4e:
dc:3b:40:d3
-----BEGIN CERTIFICATE-----
MIIFgzCCBGugAwIBAgICU5EwDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAwwKRjM2
OEYyRDBBRjExMC8GA1UEBRMoMjVENjNFMDhFQUJFN0NGQTY3ODVENEMxRDZEMzQx
MTZERTE1QjNEQzAeFw0yMzExMjQwNjA5NTNaFw0yMzEyMjYwNjA5NTNaMBgxFjAU
BgNVBAMTDTY1NjAzZTM0LTVjZGEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQDUj1Dbkxw8tHGm3CJItlWt6OnvxsN5rTxzMsuwV52bDiT6BRtUkDXGzykX
PqBpIAv0GbcpI45FLCnw99PVMs1XDZGwSuticcbWDpy+oCuCZjtexhy+XcvHIrw3
XuhNwVjwXpmZfZ9PZP51sl5LoAKORKvnRjhoCrALmcrfh57s931NuqC1qOD9/wDd
J1w5sciVLzhf4AgknyGB4x4/qQ+MNwSj7FL1Em6exRHQf0jm/ISB+3SAgpv6o/0T
EDHxfJUYDsODOSWlYUfTaPin25BRdtV0t99QWrQmA+N9fjumeEJ+oL4j/CZaywF+
vEFrZoqZ2jRuyMuVRHlmgcWcRCF7AgMBAAGjggKlMIICoTAdBgNVHQ4EFgQUe0N5
sTmSs7NRzogG46g/+bSeqkowHwYDVR0jBBgwFoAUJdY+COq+fPpnhdTB1tNBFt4V
s9wwDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjhGMkQwLzdGNEE5OEVBNkUwNTExRTg5QzBENkU0QkY4QUVBMjI4L0pkWS1D
T3EtZlBwbmhkVEIxdE5CRnQ0VnM5dy5jcmwwZwYIKwYBBQUHAQEEWzBZMFcGCCsG
AQUFBzAChktyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hZnJp
bmljL0pkWS1DT3EtZlBwbmhkVEIxdE5CRnQ0VnM5dy5jZXIwTwYDVR0gAQH/BEUw
QzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5p
Yy5uZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEF
BQcwC4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJl
cl9yZXBvc2l0b3J5L0YzNjhGMkQwLzdGNEE5OEVBNkUwNTExRTg5QzBENkU0QkY4
QUVBMjI4LzE3MzVDNEQ0OEE5MDExRUU4QjNFM0I4QTRBRDlFNkZDLnJvYTA1Bggr
BgEFBQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54
bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBACaw34wDQYJKoZIhvcNAQEL
BQADggEBACZ7U7z2PeGobqaouq0a5f81WCRaQpttw8bFyZO/w5AiTkPeFezDbo1n
f0bhZ9BZ+dGmHKTp1fR+ff0VVxr0V77AVHBftw2xEfky/fP2h0ZfLDHta9vM3XwT
OWhn5x04uSqLyS+l7unRXdHFDEbrLTWKh2VBUZ7JFdcw5xIl0MsDwanPtBcAXvLJ
q34WvqgCXp4Ygfwt9DpXjllAVi7idl4MxvaVonLefD++mLXX6S1xB5GZpetTGJ+W
lwVecyaYScydhj5+koYVZEnY8d0nXzygujyleU1B0lwtLjzVb23/sZoUEfXfdugy
BBLhlQx+l8btcOm9zfbYV8haTtw7QNM=
-----END CERTIFICATE-----
Generated at Fri May 9 11:52:28 2025 by rpki-client