Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/54C1DB4C8F8C11EF8BA6344D762E951A.roa
File: 54C1DB4C8F8C11EF8BA6344D762E951A.roa (raw, json)
Hash identifier: iCfeQeeWGR+su4TvtBEINRW/e4LYX/S2UWTkqKWamwg=
Subject key identifier: F8:5A:72:DC:07:22:38:76:40:A0:24:F5:C2:3D:6E:0F:2A:9D:BD:98
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 010040
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/54C1DB4C8F8C11EF8BA6344D762E951A.roa
Signing time: Mon 21 Oct 2024 09:10:35 +0000
ROA not before: Mon 21 Oct 2024 09:10:32 +0000
ROA not after: Tue 26 Nov 2024 09:10:32 +0000
asID: 62240
IP address blocks: 154.194.4.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 65600 (0x10040)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Oct 21 09:10:32 2024 GMT
Not After : Nov 26 09:10:32 2024 GMT
Subject: CN=67161a8b-363a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:b3:42:59:ba:55:66:6e:94:00:ec:c8:9e:90:
e7:9c:be:56:d5:fa:a2:94:34:4d:f6:e1:72:cb:3b:
ce:b7:e3:03:2e:3e:60:6a:2b:dc:e4:ee:11:c3:9a:
26:2f:75:87:35:4d:fc:83:e0:1b:13:d3:db:bb:70:
eb:0e:2a:86:27:fe:5a:38:47:0c:7e:9b:e5:6f:d6:
49:0b:7e:86:d9:fd:f0:d8:99:4d:2f:1a:92:4e:44:
da:68:62:95:61:88:67:e8:07:57:09:38:13:4f:d4:
67:dc:35:80:89:25:99:fa:aa:c7:64:cc:2e:db:22:
74:a3:2a:a9:93:83:88:c3:5a:d4:82:08:af:06:ee:
18:59:ec:6c:e1:71:7b:1e:58:e0:d6:aa:3d:2c:59:
1a:d7:23:1b:66:f2:60:b2:7f:af:11:1f:c2:1c:22:
12:42:a3:fb:17:a7:09:70:14:27:3a:4f:ed:c2:e4:
45:b3:c0:26:d7:a4:a2:e0:26:68:73:fb:96:8d:40:
4e:cc:50:63:48:eb:9f:7a:9d:0a:30:78:53:6e:5c:
fb:f2:7f:03:b3:82:c9:07:e2:5e:14:f0:42:56:4b:
61:49:db:95:eb:b2:cd:5d:87:33:20:14:0a:61:cb:
8c:e4:cb:e9:1b:b5:78:07:5c:5a:cb:db:86:0c:a7:
7c:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:5A:72:DC:07:22:38:76:40:A0:24:F5:C2:3D:6E:0F:2A:9D:BD:98
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/54C1DB4C8F8C11EF8BA6344D762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.194.4.0/24
Signature Algorithm: sha256WithRSAEncryption
1e:cb:78:d9:f6:e7:0b:99:f5:54:9d:99:66:39:5a:69:06:32:
5e:b4:7b:af:4c:8f:6b:86:f5:a7:54:16:9d:d1:75:a1:f7:80:
91:3f:f1:02:2b:42:78:f9:59:2b:77:89:93:58:46:30:66:41:
a8:e8:06:6c:57:07:56:05:83:f8:00:86:45:7b:b9:2e:52:8b:
7b:3a:8c:c3:f4:ca:b7:7f:d6:16:a7:ea:80:5c:be:56:ec:d9:
5b:da:e0:2c:aa:4e:13:b3:2d:84:3a:81:0a:32:7d:88:5e:4a:
c9:95:45:ea:55:e6:b6:ea:a8:b3:c7:d5:d8:89:f3:b4:c0:ba:
e5:15:2e:d7:89:ee:3d:4a:96:02:cf:c1:cb:ad:23:38:07:93:
2f:87:d1:d5:0b:99:2a:69:b1:34:36:5c:55:b8:12:8d:7b:0f:
d3:32:ad:5c:58:05:d9:99:2e:a9:b5:d2:03:b8:30:4d:de:f4:
bf:e6:a3:dd:d1:16:be:4a:1d:85:cd:89:99:73:62:eb:43:ae:
43:f7:da:15:2c:d3:2f:92:02:12:91:12:e2:8a:f0:20:cc:5a:
b7:b1:62:e6:3a:8a:8d:c9:bf:7c:68:00:4a:02:e6:30:5e:85:
25:d5:c2:73:54:10:a2:d4:c0:71:bb:de:af:ac:e1:6a:78:ac:
9c:c6:55:f4
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAQBAMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQxMDIxMDkxMDMyWhcNMjQxMTI2MDkxMDMyWjAYMRYw
FAYDVQQDEw02NzE2MWE4Yi0zNjNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEA3bNCWbpVZm6UAOzInpDnnL5W1fqilDRN9uFyyzvOt+MDLj5gaivc5O4R
w5omL3WHNU38g+AbE9Pbu3DrDiqGJ/5aOEcMfpvlb9ZJC36G2f3w2JlNLxqSTkTa
aGKVYYhn6AdXCTgTT9Rn3DWAiSWZ+qrHZMwu2yJ0oyqpk4OIw1rUggivBu4YWexs
4XF7Hljg1qo9LFka1yMbZvJgsn+vER/CHCISQqP7F6cJcBQnOk/twuRFs8Am16Si
4CZoc/uWjUBOzFBjSOufep0KMHhTblz78n8Ds4LJB+JeFPBCVkthSduV67LNXYcz
IBQKYcuM5MvpG7V4B1xay9uGDKd8BQIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFPha
ctwHIjh2QKAk9cI9bg8qnb2YMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC81NEMxREI0QzhGOEMxMUVGOEJBNjM0NEQ3NjJFOTUxQS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmsIEMA0GCSqGSIb3DQEB
CwUAA4IBAQAey3jZ9ucLmfVUnZlmOVppBjJetHuvTI9rhvWnVBad0XWh94CRP/EC
K0J4+Vkrd4mTWEYwZkGo6AZsVwdWBYP4AIZFe7kuUot7OozD9Mq3f9YWp+qAXL5W
7Nlb2uAsqk4Tsy2EOoEKMn2IXkrJlUXqVea26qizx9XYifO0wLrlFS7Xie49SpYC
z8HLrSM4B5Mvh9HVC5kqabE0NlxVuBKNew/TMq1cWAXZmS6ptdIDuDBN3vS/5qPd
0Ra+Sh2FzYmZc2LrQ65D99oVLNMvkgISkRLiivAgzFq3sWLmOoqNyb98aABKAuYw
XoUl1cJzVBCi1MBxu96vrOFqeKycxlX0
-----END CERTIFICATE-----
Generated at Sun Feb 16 15:20:13 2025 by rpki-client