Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/82A21588F82111EF9A382058762E951A.roa
File: 82A21588F82111EF9A382058762E951A.roa (raw, json)
Hash identifier: s4fiQ1wQJpzxKUC1ZUFy7EDAvMKXZVzmYJsO/Uqt+fQ=
Subject key identifier: F5:C5:35:CC:8E:92:0D:AE:1C:C9:62:5F:AE:D4:1A:D0:7E:20:47:83
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 017069
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/82A21588F82111EF9A382058762E951A.roa
Signing time: Mon 03 Mar 2025 11:20:28 +0000
ROA not before: Mon 03 Mar 2025 11:20:24 +0000
ROA not after: Mon 31 Mar 2025 11:20:24 +0000
asID: 48031
IP address blocks: 154.215.13.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 94313 (0x17069)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Mar 3 11:20:24 2025 GMT
Not After : Mar 31 11:20:24 2025 GMT
Subject: CN=67c5907c-9a5f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:07:df:d6:af:00:6f:aa:78:2d:c7:78:99:58:
80:4c:c2:b2:93:05:25:e5:cf:e5:55:fc:5b:c2:e9:
7e:93:a6:60:81:af:c6:20:37:97:50:d1:29:51:34:
0c:09:4f:b1:98:a0:91:83:af:f3:56:00:27:a6:46:
11:fb:c2:0d:67:38:6a:cb:b5:75:36:ab:d6:b8:a4:
98:69:f0:55:0d:23:ca:dc:df:4a:c6:75:6c:32:d0:
91:f8:6e:21:3b:cc:31:85:d6:41:ea:43:f9:53:5a:
df:73:68:59:0e:66:75:66:b2:02:ca:49:97:ac:59:
c1:f6:f8:0b:bc:a3:b4:a5:4f:dd:30:03:eb:46:5f:
b6:94:84:f6:6c:2e:ca:00:66:0c:78:79:2e:f9:5c:
8f:42:0c:ac:cc:ed:5c:e4:c1:80:0d:a2:66:29:db:
60:89:e8:5a:98:96:5c:8e:65:94:af:03:79:80:78:
8d:36:d2:c3:68:38:ab:32:f6:5a:a7:e2:5e:ee:68:
67:af:94:05:14:da:93:14:52:23:00:71:e8:09:31:
7e:97:c4:99:68:f1:22:be:2d:b6:c9:7f:06:c6:db:
19:ca:82:e2:ac:9a:fb:b6:06:e1:9d:dc:30:96:0e:
95:9e:17:d9:65:e0:f3:d0:94:04:00:3e:82:91:4b:
c2:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:C5:35:CC:8E:92:0D:AE:1C:C9:62:5F:AE:D4:1A:D0:7E:20:47:83
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/82A21588F82111EF9A382058762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.215.13.0/24
Signature Algorithm: sha256WithRSAEncryption
3a:95:37:9d:28:66:7b:d2:45:55:e3:d0:8e:90:97:5f:a6:e7:
f2:c7:fd:d8:96:8e:d4:4b:93:b1:e7:d6:8e:01:08:72:f4:fa:
7c:90:85:f0:6a:a0:f3:bb:9c:cc:51:f9:6d:e1:30:e8:d8:c5:
ee:8c:08:c4:80:74:5f:93:45:f7:04:47:68:76:1c:d9:69:49:
80:cc:26:88:93:95:fd:06:15:fe:30:34:93:af:ae:a6:aa:0d:
c5:de:aa:26:ee:bb:34:b0:75:2f:1a:03:5c:86:83:0d:7e:a1:
d1:f9:9e:39:ca:c7:6e:b1:93:4c:a6:fd:b5:3e:c9:52:3a:06:
c1:e9:63:d0:0b:07:32:ce:f7:57:27:59:aa:cb:f1:0f:93:38:
a7:4c:93:ab:41:b9:ff:63:1d:80:0a:a2:33:77:cd:ef:c5:3c:
02:73:af:8d:26:2b:43:93:4e:64:62:f4:ac:d1:26:58:4a:c8:
d6:1e:4e:9c:4a:ad:3b:7b:a5:64:3f:02:6f:56:11:44:0a:98:
c2:60:ca:2a:91:a3:0c:67:05:38:b5:53:94:c4:df:71:c6:25:
ff:21:18:7f:f5:7d:15:1f:2c:29:09:0d:3f:ff:e5:1f:8c:f2:
c4:ac:6c:b9:b3:ef:45:26:04:d5:2a:05:ed:a3:d3:71:4e:a2:
60:c3:3a:e0
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAXBpMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjUwMzAzMTEyMDI0WhcNMjUwMzMxMTEyMDI0WjAYMRYw
FAYDVQQDEw02N2M1OTA3Yy05YTVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAtgff1q8Ab6p4Lcd4mViATMKykwUl5c/lVfxbwul+k6Zgga/GIDeXUNEp
UTQMCU+xmKCRg6/zVgAnpkYR+8INZzhqy7V1NqvWuKSYafBVDSPK3N9KxnVsMtCR
+G4hO8wxhdZB6kP5U1rfc2hZDmZ1ZrICykmXrFnB9vgLvKO0pU/dMAPrRl+2lIT2
bC7KAGYMeHku+VyPQgyszO1c5MGADaJmKdtgiehamJZcjmWUrwN5gHiNNtLDaDir
MvZap+Je7mhnr5QFFNqTFFIjAHHoCTF+l8SZaPEivi22yX8GxtsZyoLirJr7tgbh
ndwwlg6VnhfZZeDz0JQEAD6CkUvCIQIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFPXF
NcyOkg2uHMliX67UGtB+IEeDMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC84MkEyMTU4OEY4MjExMUVGOUEzODIwNTg3NjJFOTUxQS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmtcNMA0GCSqGSIb3DQEB
CwUAA4IBAQA6lTedKGZ70kVV49COkJdfpufyx/3Ylo7US5Ox59aOAQhy9Pp8kIXw
aqDzu5zMUflt4TDo2MXujAjEgHRfk0X3BEdodhzZaUmAzCaIk5X9BhX+MDSTr66m
qg3F3qom7rs0sHUvGgNchoMNfqHR+Z45ysdusZNMpv21PslSOgbB6WPQCwcyzvdX
J1mqy/EPkzinTJOrQbn/Yx2ACqIzd83vxTwCc6+NJitDk05kYvSs0SZYSsjWHk6c
Sq07e6VkPwJvVhFECpjCYMoqkaMMZwU4tVOUxN9xxiX/IRh/9X0VHywpCQ0//+Uf
jPLErGy5s+9FJgTVKgXto9NxTqJgwzrg
-----END CERTIFICATE-----
Generated at Thu Apr 10 16:52:28 2025 by rpki-client