Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/24CA3A3C3BD611F0A3DAB9E7DAE4EC9C.roa
File: 24CA3A3C3BD611F0A3DAB9E7DAE4EC9C.roa (raw, json)
Hash identifier: Wzki9xRo/wPlb7ltb8vm9KI0fGOVxssHpJf7n2yUHKs=
Subject key identifier: 5D:85:1D:0F:DB:CF:A2:48:F3:96:E9:5E:E5:E7:0B:FA:00:A9:A2:35
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 018386
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/24CA3A3C3BD611F0A3DAB9E7DAE4EC9C.roa
Signing time: Wed 28 May 2025 15:12:18 +0000
ROA not before: Wed 28 May 2025 15:12:13 +0000
ROA not after: Sat 07 Jun 2025 15:12:13 +0000
asID: 54801
IP address blocks: 154.214.32.0/19 maxlen: 24
154.216.128.0/18 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 99206 (0x18386)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 28 15:12:13 2025 GMT
Not After : Jun 7 15:12:13 2025 GMT
Subject: CN=683727d2-021b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:d0:26:79:ec:b9:96:5b:0b:c9:de:0b:71:05:
50:9d:39:41:59:fc:36:f1:14:f3:f2:b1:23:f7:34:
4f:27:81:e0:3a:51:02:54:dd:21:58:c2:f7:7d:52:
26:a0:a4:70:da:48:fb:17:5b:07:08:77:d5:3b:a4:
65:6e:a7:ed:7a:83:70:a2:33:0c:25:21:78:64:03:
0f:52:0e:72:02:fc:5c:cd:41:f3:9d:40:60:b8:f2:
6d:f0:d6:34:71:b7:5b:07:e1:d6:74:de:fa:5a:b4:
96:a5:c6:57:21:5e:3f:fb:61:e5:08:65:40:f3:c8:
c9:e4:d3:d3:2f:32:e2:69:20:82:22:9a:ab:0a:30:
c9:8e:b8:8b:82:9f:c7:59:6c:cc:16:05:ea:51:37:
ad:cf:04:a7:7e:1e:14:36:51:48:0c:ad:6a:b2:29:
30:76:7d:5f:06:ca:92:4d:6a:14:e8:d4:63:61:43:
5e:4b:c2:74:cd:21:d1:1e:97:36:d5:76:8c:dd:b1:
c6:2c:d5:10:83:a5:74:9a:2e:ab:97:8f:d0:08:4f:
34:af:3e:5b:75:8a:4b:83:16:c8:3b:8c:b3:1c:ea:
43:4f:86:f4:43:19:2d:4e:e9:6b:88:79:cd:6a:4e:
ac:ff:0b:f2:f6:b0:05:2c:48:40:6f:5e:04:f0:8f:
db:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:85:1D:0F:DB:CF:A2:48:F3:96:E9:5E:E5:E7:0B:FA:00:A9:A2:35
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/24CA3A3C3BD611F0A3DAB9E7DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.214.32.0/19
154.216.128.0/18
Signature Algorithm: sha256WithRSAEncryption
28:63:ca:84:9b:47:96:7f:52:0f:ed:64:cc:7e:e1:e5:3b:ea:
19:d9:0f:0c:19:ab:0c:1a:e3:a6:1c:44:c7:a0:92:81:e5:ae:
7c:ab:9e:0a:97:05:ca:ba:47:5a:d7:4b:9a:6c:2c:cb:4f:1e:
3e:1f:61:d7:f6:25:18:bc:47:17:e4:42:55:39:a7:8f:ad:a1:
cd:fc:e5:5d:9b:48:af:75:0f:90:4c:05:58:ef:a7:80:13:06:
7f:b5:49:1d:73:bf:f7:c8:74:58:33:e9:95:63:0e:7c:70:5c:
ea:0f:c6:57:c6:88:e5:2b:cb:05:d2:9b:32:19:2f:2b:12:8a:
eb:6b:06:f3:53:cb:d3:ce:5b:84:2c:e1:65:cd:21:d3:33:27:
e3:b5:aa:e6:0a:61:f3:7c:63:1a:0c:23:26:fc:60:53:24:8b:
fa:9b:c0:06:11:cc:c7:ba:a1:3d:27:19:cd:12:cb:d5:a4:91:
9e:81:4b:44:b3:e9:77:95:89:08:eb:6e:22:4d:c1:d8:92:6e:
03:8c:67:59:d5:ab:dd:40:0c:e7:92:90:e5:af:16:ee:d7:c7:
21:39:02:63:73:58:93:8b:6d:35:8e:77:64:52:1a:1e:4d:ee:
03:35:91:48:94:58:72:9c:94:81:6a:5c:4c:8c:04:8d:29:5a:
26:87:c1:b4
-----BEGIN CERTIFICATE-----
MIIFijCCBHKgAwIBAgIDAYOGMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjUwNTI4MTUxMjEzWhcNMjUwNjA3MTUxMjEzWjAYMRYw
FAYDVQQDEw02ODM3MjdkMi0wMjFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAv9Ameey5llsLyd4LcQVQnTlBWfw28RTz8rEj9zRPJ4HgOlECVN0hWML3
fVImoKRw2kj7F1sHCHfVO6RlbqfteoNwojMMJSF4ZAMPUg5yAvxczUHznUBguPJt
8NY0cbdbB+HWdN76WrSWpcZXIV4/+2HlCGVA88jJ5NPTLzLiaSCCIpqrCjDJjriL
gp/HWWzMFgXqUTetzwSnfh4UNlFIDK1qsikwdn1fBsqSTWoU6NRjYUNeS8J0zSHR
Hpc21XaM3bHGLNUQg6V0mi6rl4/QCE80rz5bdYpLgxbIO4yzHOpDT4b0QxktTulr
iHnNak6s/wvy9rAFLEhAb14E8I/bewIDAQABo4ICqzCCAqcwHQYDVR0OBBYEFF2F
HQ/bz6JI85bpXuXnC/oAqaI1MB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC8yNENBM0EzQzNCRDYxMUYwQTNEQUI5RTdEQUU0RUM5Qy5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQFmtYgAwQGmtiAMA0GCSqG
SIb3DQEBCwUAA4IBAQAoY8qEm0eWf1IP7WTMfuHlO+oZ2Q8MGasMGuOmHETHoJKB
5a58q54KlwXKukda10uabCzLTx4+H2HX9iUYvEcX5EJVOaePraHN/OVdm0ivdQ+Q
TAVY76eAEwZ/tUkdc7/3yHRYM+mVYw58cFzqD8ZXxojlK8sF0psyGS8rEorrawbz
U8vTzluELOFlzSHTMyfjtarmCmHzfGMaDCMm/GBTJIv6m8AGEczHuqE9JxnNEsvV
pJGegUtEs+l3lYkI624iTcHYkm4DjGdZ1avdQAznkpDlrxbu18chOQJjc1iTi201
jndkUhoeTe4DNZFIlFhynJSBalxMjASNKVomh8G0
-----END CERTIFICATE-----
Generated at Sat Jun 7 19:50:57 2025 by rpki-client