Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/31CE1826F29C11EFBDB5D09E762E951A.roa
File: 31CE1826F29C11EFBDB5D09E762E951A.roa (raw, json)
Hash identifier: OgMvPNkCiUOa9TCt+Kgzb+aTjwCkGQuhGG5NXi3FJes=
Subject key identifier: 57:04:F2:32:AB:79:D5:44:F0:B2:8A:B8:49:41:1E:84:B8:A4:0B:C9
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 015BBC
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/31CE1826F29C11EFBDB5D09E762E951A.roa
Signing time: Mon 24 Feb 2025 10:43:34 +0000
ROA not before: Mon 24 Feb 2025 10:43:30 +0000
ROA not after: Wed 26 Mar 2025 10:43:30 +0000
asID: 5065
IP address blocks: 154.94.46.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 89020 (0x15bbc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Feb 24 10:43:30 2025 GMT
Not After : Mar 26 10:43:30 2025 GMT
Subject: CN=67bc4d55-afa1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:3b:09:20:c6:26:76:67:fc:7b:65:db:8e:22:
92:44:98:93:9c:53:fc:c9:fa:1c:fe:c3:15:51:8e:
64:f7:4a:f3:9a:9f:8c:26:dd:0e:39:41:b7:29:08:
74:0c:96:87:a3:9b:84:22:31:92:fc:22:8a:9a:c5:
b3:cf:c8:88:63:2d:95:3c:ef:48:0a:63:24:ef:0e:
6f:7d:27:7c:be:2d:bb:20:00:73:6d:96:27:01:89:
24:9b:96:5e:82:cd:8d:65:1e:da:63:65:58:60:ac:
53:6a:3f:53:97:1a:da:55:61:84:83:bb:58:af:80:
30:c9:58:93:74:71:5b:d7:c2:2a:13:2f:c1:6a:5f:
56:91:07:a7:62:98:a1:ae:ce:11:39:38:63:6e:23:
f4:01:48:8e:5f:b4:d1:ea:ac:39:55:87:23:f4:d1:
9a:0a:73:65:43:77:f6:05:38:f7:4f:38:83:eb:94:
7b:a7:ce:46:8d:10:c2:14:da:b5:44:ee:00:92:85:
65:50:97:68:dd:13:72:bd:68:8e:2f:8f:1b:f3:2a:
7e:65:b8:e0:0f:e4:6a:86:61:e2:92:28:c3:59:71:
52:3c:e3:f6:d3:aa:64:57:12:ad:45:48:87:c4:06:
b2:4f:69:e0:58:88:2f:3d:f3:ea:2d:3e:cb:f8:5c:
f3:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:04:F2:32:AB:79:D5:44:F0:B2:8A:B8:49:41:1E:84:B8:A4:0B:C9
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/31CE1826F29C11EFBDB5D09E762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.94.46.0/24
Signature Algorithm: sha256WithRSAEncryption
12:32:7a:3f:59:c5:fd:0a:c5:3f:7a:20:98:41:d1:99:9d:2a:
20:d3:20:d7:62:ae:9e:48:fb:e6:f8:6e:a2:37:e5:e0:a8:07:
5f:6a:c9:f0:08:d3:08:c2:14:da:f0:4e:8d:62:a5:15:d7:56:
57:b1:5a:ce:35:5e:ad:86:79:a7:b7:ff:03:16:20:89:17:7f:
fe:5f:72:69:6a:cf:db:f9:52:e8:da:3d:e5:07:1e:4e:26:9f:
3c:a4:71:01:34:7e:ba:4a:6c:50:23:c2:b6:05:c8:fd:3b:b4:
97:02:31:4a:f4:a8:d1:0b:8e:fa:08:60:ce:0e:2b:77:7f:3b:
c8:cb:41:f7:ac:a4:db:a3:14:eb:fc:4b:94:df:bc:a9:68:b8:
b2:df:a9:c4:be:00:13:6b:ea:f6:46:7b:13:81:e6:b8:ea:cb:
06:97:46:45:f6:80:21:bf:59:64:d5:fc:59:69:dc:31:a1:c1:
b8:bc:86:05:00:ad:88:83:3d:63:45:fb:d6:45:a8:e7:4c:11:
12:12:8e:ed:ca:93:80:eb:79:b0:d5:00:ce:5d:75:d0:55:6a:
54:93:ad:4f:5d:fb:60:7f:2c:a5:61:0e:43:54:86:0a:8f:e4:
64:da:04:6c:1c:be:49:2f:7e:40:75:9f:5f:70:f5:11:43:27:
8d:33:a5:26
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAVu8MA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjUwMjI0MTA0MzMwWhcNMjUwMzI2MTA0MzMwWjAYMRYw
FAYDVQQDEw02N2JjNGQ1NS1hZmExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAuDsJIMYmdmf8e2XbjiKSRJiTnFP8yfoc/sMVUY5k90rzmp+MJt0OOUG3
KQh0DJaHo5uEIjGS/CKKmsWzz8iIYy2VPO9ICmMk7w5vfSd8vi27IABzbZYnAYkk
m5Zegs2NZR7aY2VYYKxTaj9TlxraVWGEg7tYr4AwyViTdHFb18IqEy/Bal9WkQen
Ypihrs4ROThjbiP0AUiOX7TR6qw5VYcj9NGaCnNlQ3f2BTj3TziD65R7p85GjRDC
FNq1RO4AkoVlUJdo3RNyvWiOL48b8yp+ZbjgD+RqhmHikijDWXFSPOP206pkVxKt
RUiHxAayT2ngWIgvPfPqLT7L+FzzQQIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFFcE
8jKredVE8LKKuElBHoS4pAvJMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC8zMUNFMTgyNkYyOUMxMUVGQkRCNUQwOUU3NjJFOTUxQS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAml4uMA0GCSqGSIb3DQEB
CwUAA4IBAQASMno/WcX9CsU/eiCYQdGZnSog0yDXYq6eSPvm+G6iN+XgqAdfasnw
CNMIwhTa8E6NYqUV11ZXsVrONV6thnmnt/8DFiCJF3/+X3Jpas/b+VLo2j3lBx5O
Jp88pHEBNH66SmxQI8K2Bcj9O7SXAjFK9KjRC476CGDODit3fzvIy0H3rKTboxTr
/EuU37ypaLiy36nEvgATa+r2RnsTgea46ssGl0ZF9oAhv1lk1fxZadwxocG4vIYF
AK2Igz1jRfvWRajnTBESEo7typOA63mw1QDOXXXQVWpUk61PXftgfyylYQ5DVIYK
j+Rk2gRsHL5JL35AdZ9fcPURQyeNM6Um
-----END CERTIFICATE-----
Generated at Fri May 9 06:15:08 2025 by rpki-client