Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/455B7F02F4ED11EFA5DAE27C762E951A.roa
File: 455B7F02F4ED11EFA5DAE27C762E951A.roa (raw, json)
Hash identifier: mSwXKUMlHHRgGgTrscZzNZpfTKhW0JpSdSq/EYAgXw8=
Subject key identifier: 74:F8:3D:74:3E:EB:90:E5:F2:15:F1:05:B9:A6:CD:80:E2:80:AE:BC
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 016735
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/455B7F02F4ED11EFA5DAE27C762E951A.roa
Signing time: Thu 27 Feb 2025 09:28:58 +0000
ROA not before: Thu 27 Feb 2025 09:28:54 +0000
ROA not after: Wed 26 Mar 2025 09:28:54 +0000
asID: 62240
IP address blocks: 154.195.31.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 91957 (0x16735)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Feb 27 09:28:54 2025 GMT
Not After : Mar 26 09:28:54 2025 GMT
Subject: CN=67c0305a-a267
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:f2:ea:ee:d6:cd:23:4b:e6:89:51:93:12:bb:
95:3d:51:0f:8c:54:9d:56:11:54:ec:c9:10:f0:8e:
0e:c6:ae:df:62:cb:83:a5:d8:c1:4f:c6:4c:4c:ee:
74:26:2e:b6:0d:aa:c0:81:4f:8c:03:38:4d:67:81:
ba:1d:ea:e6:e4:e5:40:d7:a1:8f:aa:27:99:55:b0:
52:00:2e:34:a4:1d:77:92:f4:2d:b6:bd:5b:df:a3:
22:94:4a:30:84:c5:b3:43:16:9c:c0:74:05:72:28:
b1:05:2e:91:22:06:a2:23:2e:f4:7e:fb:c6:19:32:
11:6e:50:b1:d7:19:bd:5f:a0:86:41:20:0d:b3:ca:
f3:50:22:5d:ad:7f:50:3d:7c:d0:12:2e:8c:b6:9b:
3e:c9:95:47:fa:51:75:7a:90:53:67:8d:da:36:ed:
f4:38:b6:0d:ba:65:54:1e:fe:9c:81:f5:ce:06:2b:
e6:19:e4:8c:a3:86:a1:1a:4c:73:46:97:68:36:ae:
53:01:21:b8:2a:97:5f:a1:a6:71:6a:64:f0:d3:6c:
f6:33:3c:88:07:ac:0a:f9:d9:01:53:b2:45:e9:ba:
eb:82:5f:36:74:7b:62:61:03:96:59:21:0d:eb:21:
91:fb:8f:cc:e2:9d:3d:ac:12:e6:b3:d5:32:53:0d:
3f:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:F8:3D:74:3E:EB:90:E5:F2:15:F1:05:B9:A6:CD:80:E2:80:AE:BC
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/455B7F02F4ED11EFA5DAE27C762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.195.31.0/24
Signature Algorithm: sha256WithRSAEncryption
4f:80:96:fe:79:6a:92:b4:55:9d:4e:bf:c7:e9:6c:ee:1e:5d:
fd:df:bf:68:bd:2d:e6:33:59:74:96:8d:17:51:5b:07:d6:5f:
67:8c:1a:ed:08:46:8d:e9:a8:5e:14:c7:a0:11:82:46:d4:2c:
54:31:5c:4b:01:56:91:95:97:5d:7a:2b:d7:8a:89:c2:49:f1:
8e:5a:7e:f3:a4:fd:f2:89:83:28:b7:51:df:bc:d0:03:ae:e1:
04:85:16:97:02:d8:cf:d0:70:7e:d9:f8:37:6a:e0:23:44:3d:
8d:b2:e0:8d:d0:07:7c:b3:cd:81:5b:6e:3e:9f:7c:9a:db:95:
d1:d1:f9:77:70:6e:be:fc:56:f2:49:78:ec:6d:b1:8a:b7:29:
2c:40:97:10:c6:6b:62:64:cb:38:1a:e0:88:f8:7b:c5:5e:92:
b6:28:c9:8f:00:b4:8a:c2:d6:f5:ac:9f:be:19:90:4a:1d:ff:
86:4f:56:46:fe:8e:de:35:d5:5f:d2:4e:83:fb:76:5e:4f:84:
c9:28:12:4a:bf:65:76:22:25:9c:37:55:b3:99:4f:35:70:29:
66:9c:0e:d6:5b:73:4d:3e:5e:be:84:bb:34:9e:c0:c8:48:7c:
c3:86:d1:7b:10:c1:f6:88:af:46:db:e1:a9:e2:42:51:30:cd:
4a:7c:c5:e3
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAWc1MA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjUwMjI3MDkyODU0WhcNMjUwMzI2MDkyODU0WjAYMRYw
FAYDVQQDEw02N2MwMzA1YS1hMjY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEA2fLq7tbNI0vmiVGTEruVPVEPjFSdVhFU7MkQ8I4Oxq7fYsuDpdjBT8ZM
TO50Ji62DarAgU+MAzhNZ4G6Herm5OVA16GPqieZVbBSAC40pB13kvQttr1b36Mi
lEowhMWzQxacwHQFciixBS6RIgaiIy70fvvGGTIRblCx1xm9X6CGQSANs8rzUCJd
rX9QPXzQEi6Mtps+yZVH+lF1epBTZ43aNu30OLYNumVUHv6cgfXOBivmGeSMo4ah
GkxzRpdoNq5TASG4KpdfoaZxamTw02z2MzyIB6wK+dkBU7JF6brrgl82dHtiYQOW
WSEN6yGR+4/M4p09rBLms9UyUw0/RwIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFHT4
PXQ+65Dl8hXxBbmmzYDigK68MB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC80NTVCN0YwMkY0RUQxMUVGQTVEQUUyN0M3NjJFOTUxQS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmsMfMA0GCSqGSIb3DQEB
CwUAA4IBAQBPgJb+eWqStFWdTr/H6WzuHl39379ovS3mM1l0lo0XUVsH1l9njBrt
CEaN6aheFMegEYJG1CxUMVxLAVaRlZddeivXionCSfGOWn7zpP3yiYMot1HfvNAD
ruEEhRaXAtjP0HB+2fg3auAjRD2NsuCN0Ad8s82BW24+n3ya25XR0fl3cG6+/Fby
SXjsbbGKtyksQJcQxmtiZMs4GuCI+HvFXpK2KMmPALSKwtb1rJ++GZBKHf+GT1ZG
/o7eNdVf0k6D+3ZeT4TJKBJKv2V2IiWcN1WzmU81cClmnA7WW3NNPl6+hLs0nsDI
SHzDhtF7EMH2iK9G2+Gp4kJRMM1KfMXj
-----END CERTIFICATE-----
Generated at Fri May 9 12:01:54 2025 by rpki-client