Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/381F77C6F50B11EF934E184A762E951A.roa
File: 381F77C6F50B11EF934E184A762E951A.roa (raw, json)
Hash identifier: DKLJBZVxRWTI5/4DBKkkq836SEHZbaczDxpaSiJE43A=
Subject key identifier: 84:87:24:65:BF:CC:40:E4:83:64:AE:02:4E:EA:6F:13:C9:76:26:7B
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 016863
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/381F77C6F50B11EF934E184A762E951A.roa
Signing time: Thu 27 Feb 2025 13:03:21 +0000
ROA not before: Thu 27 Feb 2025 13:03:17 +0000
ROA not after: Wed 26 Mar 2025 13:03:17 +0000
asID: 62240
IP address blocks: 154.196.47.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 92259 (0x16863)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Feb 27 13:03:17 2025 GMT
Not After : Mar 26 13:03:17 2025 GMT
Subject: CN=67c06299-041e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:1e:7e:53:a6:3e:03:70:04:34:78:b5:75:d3:
d4:7f:de:2c:e2:83:61:57:a8:35:92:7b:72:d4:40:
b8:6c:99:e4:a9:b7:65:9c:28:c2:18:bc:10:be:98:
c6:e6:cf:8d:2c:af:16:4e:2d:f6:92:70:33:cc:15:
e5:cb:11:06:90:81:62:2a:ad:38:87:47:83:3d:44:
13:80:40:e5:99:4e:d7:0b:ec:08:f0:fe:93:3d:9e:
73:03:dd:80:02:94:ae:67:3c:33:50:60:9b:4b:2c:
1c:e4:ca:2c:fd:00:62:3b:a2:92:80:94:c0:cd:6a:
9a:b3:6f:3b:01:27:ec:fb:0f:6f:3f:3b:05:20:3e:
85:ff:60:a6:bc:a7:ae:49:f7:2b:49:90:7d:da:3e:
e5:68:a7:af:1f:7c:64:6e:aa:0f:81:e9:19:87:99:
ad:67:9e:65:4e:50:2f:5a:5c:0c:e6:e3:9c:7a:e8:
f2:e8:e8:37:05:dd:48:6e:1d:5e:82:85:d1:69:fe:
10:4b:a3:e1:51:c6:23:dc:d8:be:96:86:56:a8:95:
2d:3d:ad:bc:0c:ae:39:1f:3c:96:19:6e:04:67:48:
91:ca:98:0e:ac:a6:23:06:b3:e4:ba:0c:b4:47:95:
68:a8:c9:4f:43:58:7b:63:ea:cc:2f:10:80:47:3d:
75:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:87:24:65:BF:CC:40:E4:83:64:AE:02:4E:EA:6F:13:C9:76:26:7B
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/381F77C6F50B11EF934E184A762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.196.47.0/24
Signature Algorithm: sha256WithRSAEncryption
a1:7c:07:e1:0f:60:44:17:9d:b0:c6:01:d0:9d:52:ff:77:a8:
0d:00:b0:90:f5:ec:68:df:f3:ae:e4:04:d5:7c:95:ba:1d:1f:
93:07:8f:81:f8:ef:a3:5c:4e:70:44:7e:50:f2:31:3a:df:36:
f8:10:b2:80:44:bb:32:46:2d:5e:16:78:2b:a3:3c:1e:b7:1f:
8b:c9:2a:6e:52:6a:44:7e:09:df:ae:c3:fe:38:b7:a9:5f:66:
f1:b2:6d:a0:02:85:4f:08:eb:ef:6b:f3:58:a9:1e:49:8f:cd:
7f:23:8f:83:e8:17:82:8b:b2:a8:3f:4f:e9:55:fb:ac:36:ab:
1e:a0:f3:b3:2a:e2:8d:ff:72:31:7d:86:50:f9:ac:65:75:83:
3e:04:7b:8f:ac:f6:77:da:18:ac:cf:d9:09:50:02:f0:af:33:
29:ab:04:8a:98:d4:3d:46:94:4e:c1:c3:1c:98:9d:02:00:97:
30:1d:69:82:7f:ff:ce:ef:50:73:e4:06:fc:61:68:47:ba:c1:
f2:e9:7b:66:af:13:87:84:cb:c8:02:53:04:8c:ea:b6:4e:d1:
3c:dc:07:78:51:55:60:39:d2:2f:bb:83:3c:ed:b5:ba:03:25:
ef:ba:35:4d:15:51:d3:af:a1:74:81:ff:c5:70:13:b2:b7:25:
7e:f2:56:2a
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAWhjMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjUwMjI3MTMwMzE3WhcNMjUwMzI2MTMwMzE3WjAYMRYw
FAYDVQQDEw02N2MwNjI5OS0wNDFlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEA5R5+U6Y+A3AENHi1ddPUf94s4oNhV6g1knty1EC4bJnkqbdlnCjCGLwQ
vpjG5s+NLK8WTi32knAzzBXlyxEGkIFiKq04h0eDPUQTgEDlmU7XC+wI8P6TPZ5z
A92AApSuZzwzUGCbSywc5Mos/QBiO6KSgJTAzWqas287ASfs+w9vPzsFID6F/2Cm
vKeuSfcrSZB92j7laKevH3xkbqoPgekZh5mtZ55lTlAvWlwM5uOceujy6Og3Bd1I
bh1egoXRaf4QS6PhUcYj3Ni+loZWqJUtPa28DK45HzyWGW4EZ0iRypgOrKYjBrPk
ugy0R5VoqMlPQ1h7Y+rMLxCARz11PQIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFISH
JGW/zEDkg2SuAk7qbxPJdiZ7MB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC8zODFGNzdDNkY1MEIxMUVGOTM0RTE4NEE3NjJFOTUxQS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmsQvMA0GCSqGSIb3DQEB
CwUAA4IBAQChfAfhD2BEF52wxgHQnVL/d6gNALCQ9exo3/Ou5ATVfJW6HR+TB4+B
+O+jXE5wRH5Q8jE63zb4ELKARLsyRi1eFngrozwetx+LySpuUmpEfgnfrsP+OLep
X2bxsm2gAoVPCOvva/NYqR5Jj81/I4+D6BeCi7KoP0/pVfusNqseoPOzKuKN/3Ix
fYZQ+axldYM+BHuPrPZ32hisz9kJUALwrzMpqwSKmNQ9RpROwcMcmJ0CAJcwHWmC
f//O71Bz5Ab8YWhHusHy6XtmrxOHhMvIAlMEjOq2TtE83Ad4UVVgOdIvu4M87bW6
AyXvujVNFVHTr6F0gf/FcBOytyV+8lYq
-----END CERTIFICATE-----
Generated at Fri May 9 07:06:04 2025 by rpki-client