Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/31492D38F69211EFA5E0D144762E951A.roa
File: 31492D38F69211EFA5E0D144762E951A.roa (raw, json)
Hash identifier: eeFVzZN8DMA/OAn7Bxx6EdHN///ZQ/Ko3PAOq/ycHcY=
Subject key identifier: 93:82:C7:57:C8:60:AE:53:C0:50:40:38:CD:B7:8D:C3:C2:D4:D9:39
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 016E15
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/31492D38F69211EFA5E0D144762E951A.roa
Signing time: Sat 01 Mar 2025 11:42:02 +0000
ROA not before: Sat 01 Mar 2025 11:41:59 +0000
ROA not after: Mon 31 Mar 2025 11:41:59 +0000
asID: 202656
IP address blocks: 154.222.1.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 93717 (0x16e15)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 1 11:41:59 2025 GMT
Not After : Mar 31 11:41:59 2025 GMT
Subject: CN=67c2f28a-d501
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:96:87:1f:18:3d:c3:52:8e:85:ff:00:78:ce:
53:3c:e4:51:03:31:99:c8:16:19:ae:9f:33:0f:68:
8a:bd:06:61:fa:a1:1f:d5:c8:58:6c:c4:e8:28:10:
3e:60:83:d2:a0:d4:12:24:cc:3f:a6:ed:ae:16:ad:
6f:e2:d6:c5:3e:fd:03:e4:1d:e2:e5:19:c8:17:b6:
c5:1b:95:31:13:d8:0e:50:96:df:0a:95:74:b2:96:
11:62:2b:8f:29:de:03:2b:b6:16:dd:ea:7a:6f:1e:
6c:4e:1e:e5:f6:59:00:15:68:9a:be:7b:63:59:f9:
77:4a:07:37:24:f0:f2:96:93:ce:4c:86:cc:53:b2:
d7:35:78:42:66:cb:5e:37:e4:d7:5c:55:56:d3:40:
ce:06:af:1b:6d:13:7e:b2:f4:69:d7:23:3b:83:f5:
41:81:1e:30:71:4e:f4:28:5f:d9:1e:df:95:22:44:
fb:24:05:01:2f:d3:b7:83:2d:1a:9c:63:7c:1d:df:
d2:8d:db:39:01:8c:76:d7:23:05:86:22:bd:10:b3:
a5:37:13:da:6b:fb:45:6e:cf:1b:f3:14:2c:9b:01:
d6:f8:b4:04:47:68:4f:c5:ae:77:89:6d:a9:fb:e1:
d8:f7:00:fb:a5:57:4f:5b:f9:d0:5b:35:5c:16:25:
2d:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:82:C7:57:C8:60:AE:53:C0:50:40:38:CD:B7:8D:C3:C2:D4:D9:39
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/31492D38F69211EFA5E0D144762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.222.1.0/24
Signature Algorithm: sha256WithRSAEncryption
6b:f7:da:84:2d:81:38:be:3e:f9:39:a7:15:cb:42:13:89:b9:
be:30:f0:72:76:b4:55:d2:a1:1b:ef:47:1d:14:0b:7d:ea:f4:
b9:87:6a:fe:aa:e5:ba:11:56:16:ba:30:af:5e:94:d3:1f:3e:
4d:49:c8:78:ce:1a:fc:9b:97:7e:24:35:8e:4a:71:f8:8f:2f:
1b:59:8a:a2:39:45:81:26:72:95:84:25:83:ef:27:99:82:02:
1d:75:8d:9e:49:7a:bb:8a:da:41:85:ce:47:7e:88:84:81:8d:
b7:e2:93:f1:f8:b3:30:27:00:3c:28:1f:b0:f6:1b:f8:af:ce:
c4:25:17:50:a4:91:d8:72:67:2d:e3:dc:53:63:34:41:7d:bc:
b1:39:40:42:94:8c:07:2f:e7:ef:a1:5a:91:ac:89:7b:94:ca:
84:3a:7f:38:8c:08:be:14:ab:f6:2a:90:51:02:1d:87:4d:86:
9b:99:ce:73:8d:9a:8a:81:5e:19:ae:5a:cf:ce:0b:0d:eb:0a:
d3:63:9b:24:ee:80:17:0c:59:8c:0e:03:73:67:01:f8:22:16:
eb:68:03:fe:70:c9:a9:ea:72:5e:7e:2a:04:52:c4:27:3c:c8:
f3:ef:4e:fd:1d:25:78:7a:c0:f8:b2:a9:d4:48:50:eb:d5:9b:
d9:42:97:d9
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAW4VMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjUwMzAxMTE0MTU5WhcNMjUwMzMxMTE0MTU5WjAYMRYw
FAYDVQQDEw02N2MyZjI4YS1kNTAxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEA25aHHxg9w1KOhf8AeM5TPORRAzGZyBYZrp8zD2iKvQZh+qEf1chYbMTo
KBA+YIPSoNQSJMw/pu2uFq1v4tbFPv0D5B3i5RnIF7bFG5UxE9gOUJbfCpV0spYR
YiuPKd4DK7YW3ep6bx5sTh7l9lkAFWiavntjWfl3Sgc3JPDylpPOTIbMU7LXNXhC
ZsteN+TXXFVW00DOBq8bbRN+svRp1yM7g/VBgR4wcU70KF/ZHt+VIkT7JAUBL9O3
gy0anGN8Hd/Sjds5AYx21yMFhiK9ELOlNxPaa/tFbs8b8xQsmwHW+LQER2hPxa53
iW2p++HY9wD7pVdPW/nQWzVcFiUtkQIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFJOC
x1fIYK5TwFBAOM23jcPC1Nk5MB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC8zMTQ5MkQzOEY2OTIxMUVGQTVFMEQxNDQ3NjJFOTUxQS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmt4BMA0GCSqGSIb3DQEB
CwUAA4IBAQBr99qELYE4vj75OacVy0ITibm+MPBydrRV0qEb70cdFAt96vS5h2r+
quW6EVYWujCvXpTTHz5NSch4zhr8m5d+JDWOSnH4jy8bWYqiOUWBJnKVhCWD7yeZ
ggIddY2eSXq7itpBhc5HfoiEgY234pPx+LMwJwA8KB+w9hv4r87EJRdQpJHYcmct
49xTYzRBfbyxOUBClIwHL+fvoVqRrIl7lMqEOn84jAi+FKv2KpBRAh2HTYabmc5z
jZqKgV4ZrlrPzgsN6wrTY5sk7oAXDFmMDgNzZwH4IhbraAP+cMmp6nJefioEUsQn
PMjz7079HSV4esD4sqnUSFDr1ZvZQpfZ
-----END CERTIFICATE-----
Generated at Fri May 9 06:31:05 2025 by rpki-client