Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1FFD8AE4F5E611EFB6FF66A4762E951A.roa
File: 1FFD8AE4F5E611EFB6FF66A4762E951A.roa (raw, json)
Hash identifier: SN/wB+I0ftGfsPzs0JROZ5cxAUzAn0A7JwVy4SOZ2bk=
Subject key identifier: DC:26:08:3F:B9:74:69:03:E5:6C:EA:07:6F:C8:AE:27:A8:12:61:C4
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 016B9A
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1FFD8AE4F5E611EFB6FF66A4762E951A.roa
Signing time: Fri 28 Feb 2025 15:10:20 +0000
ROA not before: Fri 28 Feb 2025 15:10:16 +0000
ROA not after: Wed 26 Mar 2025 15:10:16 +0000
asID: 62240
IP address blocks: 154.194.76.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 93082 (0x16b9a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Feb 28 15:10:16 2025 GMT
Not After : Mar 26 15:10:16 2025 GMT
Subject: CN=67c1d1dc-5a01
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f2:8f:13:cd:64:1e:46:2e:d5:d1:8b:87:24:29:
a8:23:9a:63:bf:15:a9:ac:06:6f:92:e1:73:8c:84:
f8:3d:8d:78:a8:43:ef:59:6d:81:c0:e3:7b:fa:5e:
b7:95:34:0b:70:01:da:de:f7:55:d1:ce:fa:e4:93:
d8:85:c2:b0:db:fa:30:40:8d:1a:14:99:24:3c:85:
63:97:67:15:7f:ef:1b:a5:4b:27:19:4c:3d:99:f9:
c1:93:f0:42:1b:42:88:ae:da:98:85:19:50:c4:db:
2b:fc:2a:84:15:0b:1e:df:54:1c:5b:ae:cc:23:8e:
dc:9c:05:bb:e4:4f:d0:15:15:8a:4e:20:d3:fd:a3:
ab:88:3c:b6:57:12:f3:e4:05:ba:e7:7d:5c:b5:51:
69:d7:d8:0c:52:25:0b:a8:48:d9:cc:3c:ca:44:7c:
0a:b7:44:09:43:b5:24:69:2b:5f:d1:5d:06:37:23:
a0:ca:40:ad:83:3a:0e:8e:ec:73:bc:2a:91:96:8a:
91:dc:e8:28:33:e2:84:87:11:d2:49:94:c8:21:49:
e8:b6:f7:7c:da:17:c4:1c:fc:66:51:84:eb:fb:83:
d5:39:d6:62:d3:c2:b3:f7:66:df:f5:b1:1e:76:9f:
6f:b8:2c:c6:92:62:37:6e:34:55:ac:fa:98:d4:87:
8d:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:26:08:3F:B9:74:69:03:E5:6C:EA:07:6F:C8:AE:27:A8:12:61:C4
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1FFD8AE4F5E611EFB6FF66A4762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.194.76.0/24
Signature Algorithm: sha256WithRSAEncryption
8a:2f:53:a2:a0:84:5b:c2:42:f5:72:51:5f:1f:3c:8f:ef:01:
35:49:c1:2d:84:f8:9f:06:9f:5d:39:f9:b6:9e:68:17:b0:59:
45:98:a1:a0:9d:d9:14:59:bd:71:e8:e6:30:84:d3:56:a1:66:
0a:d7:60:83:c2:e7:14:fe:ef:59:66:8e:f1:ae:df:9e:a6:60:
9b:ea:36:6c:fe:01:22:85:d2:44:d6:d4:96:c9:49:ef:14:aa:
bd:10:b0:d8:06:ca:2c:44:53:12:c9:a1:4c:c4:fc:cb:9e:b9:
0b:b2:62:67:1c:99:ae:cf:f7:da:b8:33:a5:ce:38:35:ad:b9:
d9:26:16:08:e6:59:47:31:5c:22:a7:3f:50:44:7a:54:0d:d6:
48:0f:95:5a:8a:0e:1e:e7:1c:19:c5:19:88:94:ed:13:dc:f5:
a8:39:bb:f3:ee:8d:a6:63:c6:74:1d:ab:c4:29:42:14:e7:42:
b4:1c:eb:90:73:24:97:de:a8:63:71:73:2b:92:d5:60:02:b3:
4f:04:33:8b:e3:c1:a7:ec:61:71:86:c0:aa:20:2a:6a:28:29:
ee:b1:0a:1c:e4:4e:c9:9b:ff:64:58:b7:dd:c0:fe:95:39:4b:
cb:a6:7b:0e:d3:23:2e:21:45:e1:0d:b9:86:a3:0c:cf:62:2e:
4f:7d:98:9c
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAWuaMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjUwMjI4MTUxMDE2WhcNMjUwMzI2MTUxMDE2WjAYMRYw
FAYDVQQDEw02N2MxZDFkYy01YTAxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEA8o8TzWQeRi7V0YuHJCmoI5pjvxWprAZvkuFzjIT4PY14qEPvWW2BwON7
+l63lTQLcAHa3vdV0c765JPYhcKw2/owQI0aFJkkPIVjl2cVf+8bpUsnGUw9mfnB
k/BCG0KIrtqYhRlQxNsr/CqEFQse31QcW67MI47cnAW75E/QFRWKTiDT/aOriDy2
VxLz5AW6531ctVFp19gMUiULqEjZzDzKRHwKt0QJQ7UkaStf0V0GNyOgykCtgzoO
juxzvCqRloqR3OgoM+KEhxHSSZTIIUnotvd82hfEHPxmUYTr+4PVOdZi08Kz92bf
9bEedp9vuCzGkmI3bjRVrPqY1IeNiwIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFNwm
CD+5dGkD5WzqB2/IrieoEmHEMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC8xRkZEOEFFNEY1RTYxMUVGQjZGRjY2QTQ3NjJFOTUxQS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmsJMMA0GCSqGSIb3DQEB
CwUAA4IBAQCKL1OioIRbwkL1clFfHzyP7wE1ScEthPifBp9dOfm2nmgXsFlFmKGg
ndkUWb1x6OYwhNNWoWYK12CDwucU/u9ZZo7xrt+epmCb6jZs/gEihdJE1tSWyUnv
FKq9ELDYBsosRFMSyaFMxPzLnrkLsmJnHJmuz/fauDOlzjg1rbnZJhYI5llHMVwi
pz9QRHpUDdZID5Vaig4e5xwZxRmIlO0T3PWoObvz7o2mY8Z0HavEKUIU50K0HOuQ
cySX3qhjcXMrktVgArNPBDOL48Gn7GFxhsCqICpqKCnusQoc5E7Jm/9kWLfdwP6V
OUvLpnsO0yMuIUXhDbmGowzPYi5PfZic
-----END CERTIFICATE-----
Generated at Fri May 9 05:54:51 2025 by rpki-client