Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/385548A8D8DA11EF8B9E6F78762E951A.roa
File: 385548A8D8DA11EF8B9E6F78762E951A.roa (raw, json)
Hash identifier: vF45EOzrQch58FDfCH3fHux1kdxcyZuT+SumKD8/NQE=
Subject key identifier: C2:50:40:25:4B:7A:A8:ED:03:79:C6:C8:90:31:5F:FF:BF:C3:A9:52
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 013FDE
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/385548A8D8DA11EF8B9E6F78762E951A.roa
Signing time: Wed 22 Jan 2025 16:02:03 +0000
ROA not before: Wed 22 Jan 2025 16:02:00 +0000
ROA not after: Tue 01 Apr 2025 16:02:00 +0000
asID: 138915
IP address blocks: 154.93.127.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 81886 (0x13fde)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Jan 22 16:02:00 2025 GMT
Not After : Apr 1 16:02:00 2025 GMT
Subject: CN=6791167b-35e3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:8e:93:32:f4:16:43:f9:1b:e4:4e:14:6f:1f:
fa:bc:12:c5:c6:b2:ca:09:f1:a8:8c:f1:df:07:73:
b8:f9:c0:5a:78:9e:49:0c:a4:49:2f:82:8d:36:7c:
28:20:a8:9d:17:57:3c:85:a5:d6:a8:5e:8a:56:bd:
37:65:c5:be:df:9a:0e:1b:6b:e5:8b:f5:6e:af:73:
26:49:f1:cd:21:70:eb:d3:aa:0e:2f:5c:fd:8c:37:
a6:db:c0:25:1a:60:36:66:db:e2:f3:cb:e2:76:e3:
24:24:b3:f4:c6:14:5b:64:e6:54:37:67:00:71:dd:
d3:3d:b7:65:c4:15:a3:36:cc:24:d6:5c:c6:f9:e6:
78:bb:2d:86:2d:0c:9e:ca:9d:03:13:d4:94:8b:44:
c3:00:b5:ff:aa:7d:ed:55:ec:c1:9b:1a:8e:dc:a0:
52:4e:de:72:7a:a9:11:f1:f6:fc:59:fd:24:ee:71:
a8:c7:5a:ad:8b:32:7a:00:dd:67:bc:1e:49:96:de:
8f:ca:ea:34:0f:66:67:de:df:6f:b3:76:6e:c1:b8:
6b:15:c0:d7:db:bb:b3:ca:46:7e:97:d3:5b:94:70:
7b:56:b5:f1:40:4e:8e:91:39:71:79:1d:5c:31:b5:
9f:31:a8:c4:85:28:27:84:2b:8e:b8:a1:3d:47:a6:
d1:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:50:40:25:4B:7A:A8:ED:03:79:C6:C8:90:31:5F:FF:BF:C3:A9:52
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/385548A8D8DA11EF8B9E6F78762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.93.127.0/24
Signature Algorithm: sha256WithRSAEncryption
90:1a:78:b2:55:d7:1b:65:4e:58:80:9b:fa:1c:ad:fe:b7:7a:
e8:75:f3:9c:9f:98:36:c8:e2:37:f0:fa:dd:4f:9c:12:26:6b:
9b:42:00:e3:63:6b:95:2e:1b:c2:84:0a:3d:84:1f:f1:76:21:
c9:d0:94:af:b6:f3:24:95:6d:00:f5:bd:75:c8:06:1e:e2:0d:
06:45:ee:96:99:ad:32:7c:11:09:ac:ce:70:b9:eb:7d:97:a1:
49:b5:1c:0a:53:14:e8:b3:bc:44:f9:02:e6:bd:1b:f1:55:05:
1d:df:c6:7c:88:ed:98:2b:eb:2e:59:45:8e:c7:c2:ab:81:43:
33:bd:2e:73:25:cb:13:6c:e9:9f:9b:cc:2b:97:0b:be:c8:a5:
5f:fc:a6:f6:8f:82:6f:1e:20:04:c2:d9:5c:db:15:f4:4c:f4:
f8:a4:54:82:14:dc:82:8b:0a:6c:e6:0b:70:b8:27:e8:10:1e:
0d:79:6f:6e:73:d5:fc:40:2b:36:36:89:25:4f:46:fb:e7:10:
b6:d5:5a:20:94:99:75:24:0d:a9:09:a4:17:7f:1b:c2:4c:d0:
4c:87:ef:84:80:09:ae:3b:ad:c6:cf:dd:78:2b:b2:9a:8c:1a:
aa:2d:8a:85:8a:03:b0:c5:ce:fd:e6:68:f1:e6:5c:94:e5:6a:
18:67:6e:0e
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAT/eMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjUwMTIyMTYwMjAwWhcNMjUwNDAxMTYwMjAwWjAYMRYw
FAYDVQQDEw02NzkxMTY3Yi0zNWUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEA146TMvQWQ/kb5E4Ubx/6vBLFxrLKCfGojPHfB3O4+cBaeJ5JDKRJL4KN
NnwoIKidF1c8haXWqF6KVr03ZcW+35oOG2vli/Vur3MmSfHNIXDr06oOL1z9jDem
28AlGmA2Ztvi88viduMkJLP0xhRbZOZUN2cAcd3TPbdlxBWjNswk1lzG+eZ4uy2G
LQyeyp0DE9SUi0TDALX/qn3tVezBmxqO3KBSTt5yeqkR8fb8Wf0k7nGox1qtizJ6
AN1nvB5Jlt6Pyuo0D2Zn3t9vs3ZuwbhrFcDX27uzykZ+l9NblHB7VrXxQE6OkTlx
eR1cMbWfMajEhSgnhCuOuKE9R6bRfQIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFMJQ
QCVLeqjtA3nGyJAxX/+/w6lSMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC8zODU1NDhBOEQ4REExMUVGOEI5RTZGNzg3NjJFOTUxQS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAml1/MA0GCSqGSIb3DQEB
CwUAA4IBAQCQGniyVdcbZU5YgJv6HK3+t3rodfOcn5g2yOI38PrdT5wSJmubQgDj
Y2uVLhvChAo9hB/xdiHJ0JSvtvMklW0A9b11yAYe4g0GRe6Wma0yfBEJrM5wuet9
l6FJtRwKUxTos7xE+QLmvRvxVQUd38Z8iO2YK+suWUWOx8KrgUMzvS5zJcsTbOmf
m8wrlwu+yKVf/Kb2j4JvHiAEwtlc2xX0TPT4pFSCFNyCiwps5gtwuCfoEB4NeW9u
c9X8QCs2NoklT0b75xC21VoglJl1JA2pCaQXfxvCTNBMh++EgAmuO63Gz914K7Ka
jBqqLYqFigOwxc795mjx5lyU5WoYZ24O
-----END CERTIFICATE-----
Generated at Sat Apr 12 08:05:28 2025 by rpki-client