Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/76C4DD308A9B11EE8A63E4304AD9E6FC.roa
File: 76C4DD308A9B11EE8A63E4304AD9E6FC.roa (raw, json)
Hash identifier: 7o9SdsBGLgMFMi7A0v7FYkvddKCr09SSZ6+tuCDVmLQ=
Subject key identifier: 3D:93:73:20:18:56:83:BA:8B:C7:21:33:8F:48:09:78:C9:32:C4:8F
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 5478
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/76C4DD308A9B11EE8A63E4304AD9E6FC.roa
Signing time: Fri 24 Nov 2023 07:31:21 +0000
ROA not before: Fri 24 Nov 2023 07:31:18 +0000
ROA not after: Tue 26 Dec 2023 07:31:18 +0000
asID: 62240
IP address blocks: 154.194.86.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 21624 (0x5478)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 24 07:31:18 2023 GMT
Not After : Dec 26 07:31:18 2023 GMT
Subject: CN=65605149-9f2e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:fd:c4:0b:50:c4:a2:50:e4:3b:eb:fd:ca:e4:
bb:5d:91:6f:b0:11:db:46:ea:9b:14:c9:c3:18:72:
97:58:bd:e2:39:3a:d9:51:f5:2f:54:f2:78:00:97:
f6:5c:73:73:0c:c9:53:f0:f0:aa:93:79:51:a9:29:
51:f2:50:a7:c8:f4:da:36:f8:64:e0:6e:ad:b3:d8:
b0:4e:71:63:33:b4:32:9c:c9:f1:54:99:e4:c8:13:
ad:38:d4:1b:f4:b7:82:c1:6e:68:50:bb:49:c1:fe:
3e:9b:5d:f3:32:6d:53:85:4b:8e:84:90:a4:e5:3e:
53:37:84:bc:f1:cb:bc:04:02:08:0f:05:e8:48:08:
47:1b:33:ea:1d:bd:54:12:43:aa:fc:92:e7:1b:16:
4a:d8:1e:13:cd:34:72:cc:49:17:6f:ec:40:09:5f:
81:43:5f:2a:e8:63:c0:bc:a5:44:9e:0a:58:35:2e:
5e:c2:65:3f:17:5c:de:30:6b:de:4f:ce:2c:d2:69:
8d:7f:60:89:d3:3d:31:4f:66:54:15:7d:b7:91:e8:
0c:96:c8:30:67:72:d1:33:79:ef:aa:31:3a:51:b7:
75:09:45:89:a1:cd:f1:61:59:5a:80:ad:2a:1c:e8:
3e:b0:5a:33:3d:79:c9:26:60:28:7d:c5:e6:6c:7c:
14:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:93:73:20:18:56:83:BA:8B:C7:21:33:8F:48:09:78:C9:32:C4:8F
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/76C4DD308A9B11EE8A63E4304AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.194.86.0/24
Signature Algorithm: sha256WithRSAEncryption
35:7c:9f:87:85:4e:c9:b6:c7:90:ca:38:90:48:43:a3:cd:8e:
75:ce:5a:f9:46:fb:51:e8:58:36:4f:31:d4:a0:b8:96:8f:9e:
fb:06:bb:3f:90:37:7d:0b:91:ea:24:c8:45:69:05:19:dc:16:
c8:f2:ec:e4:02:65:6b:79:3f:c7:12:54:83:0c:96:bc:a4:82:
c6:7f:fb:17:85:8e:0b:a2:aa:0b:55:5e:2d:cb:65:5c:cc:93:
e5:2b:2d:ba:8e:7c:23:a1:df:d7:0e:bc:f7:94:1e:33:97:f0:
73:03:f7:fe:a8:4b:4f:95:98:ff:4c:c7:44:b0:61:97:1d:d8:
aa:20:95:62:9a:df:1b:62:5f:8a:0b:58:42:7f:ac:ec:5d:ff:
81:9c:75:b2:a2:73:4c:1f:27:29:33:be:b6:c5:c7:1a:33:5b:
e7:2c:18:d9:f9:4c:e9:0f:8c:27:5b:37:11:c9:58:8d:68:c3:
af:79:45:e9:bc:4c:a8:94:57:55:2d:96:c2:cb:d6:df:e7:9f:
e1:06:66:d6:39:09:7a:b0:f3:a9:87:f0:38:f5:a0:06:5f:a1:
a7:ff:a4:28:46:b1:cc:23:45:75:5d:fc:b4:de:de:0a:77:aa:
bd:d3:98:79:79:74:87:34:f5:ba:b0:b9:ac:23:b7:54:f9:47:
03:2f:55:d2
-----BEGIN CERTIFICATE-----
MIIFgzCCBGugAwIBAgICVHgwDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAwwKRjM2
OEYyRDBBRjExMC8GA1UEBRMoMjVENjNFMDhFQUJFN0NGQTY3ODVENEMxRDZEMzQx
MTZERTE1QjNEQzAeFw0yMzExMjQwNzMxMThaFw0yMzEyMjYwNzMxMThaMBgxFjAU
BgNVBAMTDTY1NjA1MTQ5LTlmMmUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQC8/cQLUMSiUOQ76/3K5LtdkW+wEdtG6psUycMYcpdYveI5OtlR9S9U8ngA
l/Zcc3MMyVPw8KqTeVGpKVHyUKfI9No2+GTgbq2z2LBOcWMztDKcyfFUmeTIE604
1Bv0t4LBbmhQu0nB/j6bXfMybVOFS46EkKTlPlM3hLzxy7wEAggPBehICEcbM+od
vVQSQ6r8kucbFkrYHhPNNHLMSRdv7EAJX4FDXyroY8C8pUSeClg1Ll7CZT8XXN4w
a95PzizSaY1/YInTPTFPZlQVfbeR6AyWyDBnctEzee+qMTpRt3UJRYmhzfFhWVqA
rSoc6D6wWjM9eckmYCh9xeZsfBTrAgMBAAGjggKlMIICoTAdBgNVHQ4EFgQUPZNz
IBhWg7qLxyEzj0gJeMkyxI8wHwYDVR0jBBgwFoAUJdY+COq+fPpnhdTB1tNBFt4V
s9wwDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjhGMkQwLzdGNEE5OEVBNkUwNTExRTg5QzBENkU0QkY4QUVBMjI4L0pkWS1D
T3EtZlBwbmhkVEIxdE5CRnQ0VnM5dy5jcmwwZwYIKwYBBQUHAQEEWzBZMFcGCCsG
AQUFBzAChktyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hZnJp
bmljL0pkWS1DT3EtZlBwbmhkVEIxdE5CRnQ0VnM5dy5jZXIwTwYDVR0gAQH/BEUw
QzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5p
Yy5uZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEF
BQcwC4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJl
cl9yZXBvc2l0b3J5L0YzNjhGMkQwLzdGNEE5OEVBNkUwNTExRTg5QzBENkU0QkY4
QUVBMjI4Lzc2QzRERDMwOEE5QjExRUU4QTYzRTQzMDRBRDlFNkZDLnJvYTA1Bggr
BgEFBQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54
bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBACawlYwDQYJKoZIhvcNAQEL
BQADggEBADV8n4eFTsm2x5DKOJBIQ6PNjnXOWvlG+1HoWDZPMdSguJaPnvsGuz+Q
N30LkeokyEVpBRncFsjy7OQCZWt5P8cSVIMMlrykgsZ/+xeFjguiqgtVXi3LZVzM
k+UrLbqOfCOh39cOvPeUHjOX8HMD9/6oS0+VmP9Mx0SwYZcd2KoglWKa3xtiX4oL
WEJ/rOxd/4GcdbKic0wfJykzvrbFxxozW+csGNn5TOkPjCdbNxHJWI1ow695Rem8
TKiUV1UtlsLL1t/nn+EGZtY5CXqw86mH8Dj1oAZfoaf/pChGscwjRXVd/LTe3gp3
qr3TmHl5dIc09bqwuawjt1T5RwMvVdI=
-----END CERTIFICATE-----
Generated at Fri May 9 21:54:49 2025 by rpki-client