Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/2ED0ECE4F61F11EFAA5000A5762E951A.roa
File: 2ED0ECE4F61F11EFAA5000A5762E951A.roa (raw, json)
Hash identifier: edp5eSxCGFQ38N5zEDRI8o3ArugLyIqUQHihCCRSDtA=
Subject key identifier: 04:45:42:22:D6:19:8A:DA:C4:0E:48:AF:BA:79:6A:97:E8:7B:2B:70
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 016C69
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/2ED0ECE4F61F11EFAA5000A5762E951A.roa
Signing time: Fri 28 Feb 2025 21:58:46 +0000
ROA not before: Fri 28 Feb 2025 21:58:42 +0000
ROA not after: Wed 26 Mar 2025 21:58:42 +0000
asID: 62240
IP address blocks: 154.194.111.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 93289 (0x16c69)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Feb 28 21:58:42 2025 GMT
Not After : Mar 26 21:58:42 2025 GMT
Subject: CN=67c23196-aba3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:3f:bd:a9:ed:eb:48:16:40:82:ff:03:a9:e1:
b5:9c:fc:e0:94:de:07:f2:52:20:c5:7c:22:a5:fb:
7b:c5:b0:8c:b7:31:fa:fe:24:fd:e2:db:da:fe:3c:
c6:a6:0b:41:22:b7:05:b7:79:0f:85:73:5d:45:3b:
bf:25:d5:de:c4:d0:66:94:df:cd:5e:7b:ea:ff:44:
68:82:3b:a7:f2:45:ce:0e:21:32:f1:b3:72:3f:6a:
2e:ae:b9:08:a0:a8:92:f7:eb:74:eb:89:4d:6a:8e:
b7:34:e5:dd:80:0f:ea:f6:dd:62:3f:4d:26:f1:48:
d6:bf:e5:33:f2:87:6c:ba:3a:a8:cb:46:7e:8d:a2:
ce:3d:70:67:61:63:6c:c4:09:80:b8:13:33:26:a7:
74:80:a0:94:23:e0:47:54:97:dc:e6:a7:4a:c7:c8:
3e:10:b4:f5:7f:ff:3d:bc:b0:b5:7a:22:25:05:e4:
52:ad:32:3c:3a:fb:e8:26:04:11:13:72:0d:52:1f:
7d:50:f2:f5:25:52:6b:96:f0:fd:e7:dd:13:9c:1a:
ea:f8:07:3b:ef:63:b6:3e:34:a4:bb:ed:c1:f0:72:
00:c0:71:2a:f6:18:a4:c6:71:68:37:2f:fc:1d:09:
9f:00:96:ae:a1:db:4a:5f:95:7c:5f:8d:89:cd:0c:
be:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:45:42:22:D6:19:8A:DA:C4:0E:48:AF:BA:79:6A:97:E8:7B:2B:70
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/2ED0ECE4F61F11EFAA5000A5762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.194.111.0/24
Signature Algorithm: sha256WithRSAEncryption
aa:7f:2d:2d:fc:5f:f3:20:55:6d:0d:b0:36:a0:b0:04:8d:31:
dc:72:7a:56:88:f9:ed:d5:bc:ee:a9:74:25:b7:34:d1:30:75:
55:b6:a3:bd:49:54:71:90:bb:ed:9b:cc:3f:56:e2:c3:a8:b4:
4f:a8:ba:c6:fd:35:33:76:eb:ba:83:40:17:64:e4:47:ef:09:
91:2c:3b:4b:66:e9:98:09:57:c8:4e:64:9d:5c:57:8a:d3:4c:
6c:db:44:2d:e0:f5:c9:72:6d:a9:99:b4:a2:f5:3b:a8:0d:46:
e8:31:47:c5:2b:e3:ed:a6:ff:fb:0c:e7:d3:02:57:3d:df:e3:
54:29:42:92:56:fa:a0:3e:b1:7c:17:15:92:ee:8d:25:c5:0b:
68:5d:72:7e:14:c0:f2:be:32:b9:10:91:11:41:0d:2f:e3:07:
d9:b8:48:79:d8:4c:89:e7:2f:39:67:31:a5:e6:86:7f:b5:40:
8e:16:a9:0e:8d:7a:e3:ce:b9:92:74:72:3b:93:3f:20:6e:23:
03:58:0c:a2:8b:be:32:57:47:ed:bb:af:a7:6d:96:a3:66:24:
c1:46:5a:db:de:51:be:45:39:52:cf:de:7f:6f:1f:46:60:e9:
7b:aa:ba:7b:27:d9:69:ae:35:dd:20:9a:5f:e0:72:55:c5:c9:
5c:21:c6:8d
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAWxpMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjUwMjI4MjE1ODQyWhcNMjUwMzI2MjE1ODQyWjAYMRYw
FAYDVQQDEw02N2MyMzE5Ni1hYmEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEA5D+9qe3rSBZAgv8DqeG1nPzglN4H8lIgxXwipft7xbCMtzH6/iT94tva
/jzGpgtBIrcFt3kPhXNdRTu/JdXexNBmlN/NXnvq/0Rogjun8kXODiEy8bNyP2ou
rrkIoKiS9+t064lNao63NOXdgA/q9t1iP00m8UjWv+Uz8odsujqoy0Z+jaLOPXBn
YWNsxAmAuBMzJqd0gKCUI+BHVJfc5qdKx8g+ELT1f/89vLC1eiIlBeRSrTI8Ovvo
JgQRE3INUh99UPL1JVJrlvD9590TnBrq+Ac772O2PjSku+3B8HIAwHEq9hikxnFo
Ny/8HQmfAJauodtKX5V8X42JzQy+GQIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFARF
QiLWGYraxA5Ir7p5apfoeytwMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC8yRUQwRUNFNEY2MUYxMUVGQUE1MDAwQTU3NjJFOTUxQS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmsJvMA0GCSqGSIb3DQEB
CwUAA4IBAQCqfy0t/F/zIFVtDbA2oLAEjTHccnpWiPnt1bzuqXQltzTRMHVVtqO9
SVRxkLvtm8w/VuLDqLRPqLrG/TUzduu6g0AXZORH7wmRLDtLZumYCVfITmSdXFeK
00xs20Qt4PXJcm2pmbSi9TuoDUboMUfFK+Ptpv/7DOfTAlc93+NUKUKSVvqgPrF8
FxWS7o0lxQtoXXJ+FMDyvjK5EJERQQ0v4wfZuEh52EyJ5y85ZzGl5oZ/tUCOFqkO
jXrjzrmSdHI7kz8gbiMDWAyii74yV0ftu6+nbZajZiTBRlrb3lG+RTlSz95/bx9G
YOl7qrp7J9lprjXdIJpf4HJVxclcIcaN
-----END CERTIFICATE-----
Generated at Fri May 9 05:56:57 2025 by rpki-client