Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/54C12F0CD8D011EFB28A8BB4762E951A.roa
File: 54C12F0CD8D011EFB28A8BB4762E951A.roa (raw, json)
Hash identifier: q6Dfm6Vy+dJFdBkdr4yfpF5Kcd0mCKdh8wVkegy/J4E=
Subject key identifier: B7:91:F1:FD:E1:00:DD:AC:B9:91:7B:18:8B:1C:A4:1F:A5:3B:FF:35
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 013FB4
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/54C12F0CD8D011EFB28A8BB4762E951A.roa
Signing time: Wed 22 Jan 2025 14:51:16 +0000
ROA not before: Wed 22 Jan 2025 14:51:12 +0000
ROA not after: Tue 01 Apr 2025 14:51:12 +0000
asID: 138915
IP address blocks: 154.93.99.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 81844 (0x13fb4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Jan 22 14:51:12 2025 GMT
Not After : Apr 1 14:51:12 2025 GMT
Subject: CN=679105e4-40dc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:62:a4:3b:10:8f:f0:64:c6:06:a0:60:5f:d0:
a8:08:e8:36:4c:c6:8f:cf:ae:72:81:d1:0b:a1:08:
7d:09:1a:6e:a0:ac:18:a8:36:61:4b:c9:3a:50:8a:
ff:c7:c8:bc:31:90:0c:41:33:fe:27:9c:af:d3:07:
a2:00:f1:c4:08:44:82:56:32:d7:62:8c:00:d5:8a:
0f:0d:09:7a:6e:2e:aa:42:1c:f0:05:18:b4:cc:37:
4e:18:c5:f8:ff:61:f7:f9:3c:9c:22:b4:c6:77:55:
57:ad:18:6f:68:71:ac:ce:82:10:e5:7d:93:19:62:
53:5a:1d:64:50:11:44:54:cc:b5:8f:77:84:0e:c2:
23:5c:41:a7:84:2d:a1:42:b3:42:81:93:17:93:33:
da:be:c4:79:68:b3:82:5d:33:80:c9:87:e0:f7:82:
9c:b8:66:c6:75:82:ad:34:c0:97:5d:d2:8a:23:18:
4c:b4:1f:90:09:df:04:52:6f:62:0e:40:7c:b1:9f:
78:90:61:1d:99:54:3c:2a:a4:4a:2d:4e:0a:41:64:
ce:7c:3f:c8:f6:23:c6:c7:5a:39:70:e3:be:b8:9e:
d9:5e:02:81:1d:92:b6:02:36:17:13:9b:75:82:33:
68:46:72:46:ca:fd:e4:f5:0f:84:5a:5b:d7:3b:86:
02:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:91:F1:FD:E1:00:DD:AC:B9:91:7B:18:8B:1C:A4:1F:A5:3B:FF:35
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/54C12F0CD8D011EFB28A8BB4762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.93.99.0/24
Signature Algorithm: sha256WithRSAEncryption
15:53:a4:28:a1:31:59:b0:a3:a2:7b:47:cc:50:2c:48:79:33:
15:f2:13:5f:f4:8d:d0:5a:f9:1f:99:b6:84:43:c5:89:42:74:
96:ee:be:d1:35:65:53:6c:6e:c3:56:c4:f6:9e:9a:a4:33:d3:
2a:75:70:f5:78:20:03:11:97:60:7b:38:e3:6d:da:19:c1:15:
fa:74:37:dd:26:de:73:d8:6c:7f:1a:cb:4d:40:43:2f:fa:fe:
34:87:28:ad:06:53:04:32:0d:1e:df:f9:fe:d4:73:ea:d3:d6:
ef:44:8f:23:56:dc:c2:e0:5a:04:cd:29:08:b3:1f:b9:6b:2c:
d3:62:4a:2c:95:87:ca:7d:5e:98:03:7c:40:8e:85:55:72:53:
78:49:4a:d7:94:92:43:ad:6f:9c:6d:55:94:cc:f7:41:94:f0:
25:d3:d1:df:03:92:01:cc:79:3d:69:d8:f4:47:c4:c5:8d:1b:
30:c1:71:ee:8e:bc:72:aa:38:ee:7f:90:42:b2:d4:94:5a:e6:
33:d6:c3:8c:84:3b:a6:7a:29:32:63:4b:df:53:3e:d2:df:09:
98:b9:d8:de:e8:55:0d:1a:9b:2f:cf:a6:b2:b5:c5:fd:8c:de:
cc:2f:85:c3:45:08:a5:4b:a9:34:87:86:c7:b4:a5:07:7e:57:
77:17:ab:e6
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAT+0MA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjUwMTIyMTQ1MTEyWhcNMjUwNDAxMTQ1MTEyWjAYMRYw
FAYDVQQDEw02NzkxMDVlNC00MGRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAp2KkOxCP8GTGBqBgX9CoCOg2TMaPz65ygdELoQh9CRpuoKwYqDZhS8k6
UIr/x8i8MZAMQTP+J5yv0weiAPHECESCVjLXYowA1YoPDQl6bi6qQhzwBRi0zDdO
GMX4/2H3+TycIrTGd1VXrRhvaHGszoIQ5X2TGWJTWh1kUBFEVMy1j3eEDsIjXEGn
hC2hQrNCgZMXkzPavsR5aLOCXTOAyYfg94KcuGbGdYKtNMCXXdKKIxhMtB+QCd8E
Um9iDkB8sZ94kGEdmVQ8KqRKLU4KQWTOfD/I9iPGx1o5cOO+uJ7ZXgKBHZK2AjYX
E5t1gjNoRnJGyv3k9Q+EWlvXO4YCCQIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFLeR
8f3hAN2suZF7GIscpB+lO/81MB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC81NEMxMkYwQ0Q4RDAxMUVGQjI4QThCQjQ3NjJFOTUxQS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAml1jMA0GCSqGSIb3DQEB
CwUAA4IBAQAVU6QooTFZsKOie0fMUCxIeTMV8hNf9I3QWvkfmbaEQ8WJQnSW7r7R
NWVTbG7DVsT2npqkM9MqdXD1eCADEZdgezjjbdoZwRX6dDfdJt5z2Gx/GstNQEMv
+v40hyitBlMEMg0e3/n+1HPq09bvRI8jVtzC4FoEzSkIsx+5ayzTYkoslYfKfV6Y
A3xAjoVVclN4SUrXlJJDrW+cbVWUzPdBlPAl09HfA5IBzHk9adj0R8TFjRswwXHu
jrxyqjjuf5BCstSUWuYz1sOMhDumeikyY0vfUz7S3wmYudje6FUNGpsvz6aytcX9
jN7ML4XDRQilS6k0h4bHtKUHfld3F6vm
-----END CERTIFICATE-----
Generated at Sat Apr 12 08:03:34 2025 by rpki-client