![](/console.gif)
Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5CC318E8014C11EF9CEB16F9007001B1.roa
File: 5CC318E8014C11EF9CEB16F9007001B1.roa (raw, json)
Hash identifier: bThZGiaKBxuWSJJwEJzXKZ2Cq5QM7IijueWEKrbTwQY=
Subject key identifier: 53:6A:01:50:C9:2F:7F:96:5D:21:0F:5D:B4:23:80:49:56:C6:88:77
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: AF1B
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5CC318E8014C11EF9CEB16F9007001B1.roa
Signing time: Tue 23 Apr 2024 08:34:56 +0000
ROA not before: Tue 23 Apr 2024 08:34:52 +0000
ROA not after: Sun 26 May 2024 08:34:52 +0000
asID: 197547
IP address blocks: 154.201.93.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 44827 (0xaf1b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 23 08:34:52 2024 GMT
Not After : May 26 08:34:52 2024 GMT
Subject: CN=662772b0-61af
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:99:0e:c6:14:b0:c6:eb:c6:08:7d:4c:e1:56:
21:21:b5:9d:01:ab:9b:ea:e3:f0:c0:b9:a0:48:53:
ec:02:37:af:70:72:46:41:2a:41:4e:46:49:61:85:
b2:7a:48:0c:78:92:c4:88:d2:bb:87:fd:c9:55:ac:
80:23:ed:67:4c:a9:1d:14:ff:b7:90:9c:66:83:ce:
71:63:5c:49:ec:7b:6a:b0:88:d3:97:f1:f9:1b:99:
eb:1b:80:d0:48:0a:b4:59:0f:82:5e:8e:f4:9b:45:
1a:c6:94:2f:31:0c:49:92:ab:2e:b9:0c:24:7f:c5:
d8:a9:ae:aa:d2:b5:b4:e0:b2:59:7b:0f:e2:37:4f:
2c:83:12:f1:63:d9:f2:fd:63:76:b2:18:6c:21:8d:
50:81:aa:58:3f:50:4b:fd:c5:fd:f6:d2:48:ee:56:
62:29:f0:2f:05:15:f6:c6:80:00:aa:88:5c:af:cd:
0d:48:23:9d:a6:54:15:df:dd:07:58:a0:c9:28:af:
8c:a2:f3:3d:c4:01:99:64:05:7a:40:cb:72:a3:14:
51:a4:2e:a4:75:fa:dc:fe:2c:a3:97:12:e6:71:3d:
89:e6:5d:56:f8:c9:11:6c:08:b5:71:90:dd:83:9b:
20:24:48:1d:10:e9:e5:41:35:36:35:c6:9d:20:60:
f8:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:6A:01:50:C9:2F:7F:96:5D:21:0F:5D:B4:23:80:49:56:C6:88:77
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5CC318E8014C11EF9CEB16F9007001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.201.93.0/24
Signature Algorithm: sha256WithRSAEncryption
b9:1f:c1:75:51:86:b8:08:e5:59:b9:a1:0f:69:2d:dc:82:b4:
75:03:e5:ce:4b:4d:9f:14:f7:38:ff:4d:96:71:f6:5b:a2:05:
97:b9:35:8b:27:8d:a2:4d:6d:83:8b:af:63:8a:72:9b:e7:30:
9b:73:d5:7a:89:8b:ef:f1:91:6c:8c:53:d4:a5:ed:dc:08:20:
54:8b:c1:4a:e1:83:e1:99:fc:7b:d0:2d:52:1f:e4:68:fd:10:
11:56:8b:0a:5b:92:b9:72:95:d5:f9:de:21:9b:cb:b7:9f:17:
a5:e2:15:e1:f8:d3:73:54:d7:e6:a4:40:cd:17:f8:7e:24:b7:
b3:e5:b5:e6:53:d4:3d:0e:89:4f:76:0b:18:43:11:c8:8f:8a:
b9:c8:6f:b2:7a:6a:8f:cd:bb:69:d9:68:19:74:11:e6:ed:11:
96:dd:b7:27:24:94:9c:8d:3f:58:4a:01:7e:cf:1f:b5:7b:af:
4f:70:e9:be:6f:2c:53:37:44:a6:0a:db:32:ef:b3:5b:f3:f5:
57:7a:ff:a4:37:9a:b9:e1:7c:72:9b:76:da:7f:ad:f6:4d:13:
52:0d:30:d3:cf:10:c1:e3:27:85:27:db:9a:48:f8:1d:bb:b3:
59:d9:7f:96:5c:4f:b0:07:95:47:b0:70:d4:0e:c8:e0:83:d5:
58:4d:cf:43
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAK8bMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQwNDIzMDgzNDUyWhcNMjQwNTI2MDgzNDUyWjAYMRYw
FAYDVQQDEw02NjI3NzJiMC02MWFmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAoJkOxhSwxuvGCH1M4VYhIbWdAaub6uPwwLmgSFPsAjevcHJGQSpBTkZJ
YYWyekgMeJLEiNK7h/3JVayAI+1nTKkdFP+3kJxmg85xY1xJ7HtqsIjTl/H5G5nr
G4DQSAq0WQ+CXo70m0UaxpQvMQxJkqsuuQwkf8XYqa6q0rW04LJZew/iN08sgxLx
Y9ny/WN2shhsIY1QgapYP1BL/cX99tJI7lZiKfAvBRX2xoAAqohcr80NSCOdplQV
390HWKDJKK+MovM9xAGZZAV6QMtyoxRRpC6kdfrc/iyjlxLmcT2J5l1W+MkRbAi1
cZDdg5sgJEgdEOnlQTU2NcadIGD4eQIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFFNq
AVDJL3+WXSEPXbQjgElWxoh3MB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC81Q0MzMThFODAxNEMxMUVGOUNFQjE2RjkwMDcwMDFCMS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmsldMA0GCSqGSIb3DQEB
CwUAA4IBAQC5H8F1UYa4COVZuaEPaS3cgrR1A+XOS02fFPc4/02WcfZbogWXuTWL
J42iTW2Di69jinKb5zCbc9V6iYvv8ZFsjFPUpe3cCCBUi8FK4YPhmfx70C1SH+Ro
/RARVosKW5K5cpXV+d4hm8u3nxel4hXh+NNzVNfmpEDNF/h+JLez5bXmU9Q9DolP
dgsYQxHIj4q5yG+yemqPzbtp2WgZdBHm7RGW3bcnJJScjT9YSgF+zx+1e69PcOm+
byxTN0SmCtsy77Nb8/VXev+kN5q54Xxym3baf632TRNSDTDTzxDB4yeFJ9uaSPgd
u7NZ2X+WXE+wB5VHsHDUDsjgg9VYTc9D
-----END CERTIFICATE-----
Generated at Thu Jun 6 16:48:16 2024 by rpki-client on console-fra.rpki-client.org