Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8A9687E6F50C11EFA0646053762E951A.roa
File: 8A9687E6F50C11EFA0646053762E951A.roa (raw, json)
Hash identifier: izvkpg7CRKxEqsdJIDMleytDP5ALW4C45lsnSQJMC4Q=
Subject key identifier: 9C:B0:47:0D:82:F1:AE:73:69:43:5F:3C:32:63:67:EE:79:B0:FF:9F
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 016872
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8A9687E6F50C11EFA0646053762E951A.roa
Signing time: Thu 27 Feb 2025 13:12:49 +0000
ROA not before: Thu 27 Feb 2025 13:12:45 +0000
ROA not after: Wed 26 Mar 2025 13:12:45 +0000
asID: 62240
IP address blocks: 154.196.51.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 92274 (0x16872)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Feb 27 13:12:45 2025 GMT
Not After : Mar 26 13:12:45 2025 GMT
Subject: CN=67c064d0-d583
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:4a:76:b6:85:cf:c1:56:f0:bb:a3:f9:d3:41:
c4:e9:86:91:6d:5d:80:88:af:63:39:2a:64:8d:b1:
31:82:c5:ce:4a:75:ef:46:bb:48:54:05:8c:06:70:
8c:31:56:7f:0e:84:84:d4:e0:7d:a1:30:e3:8b:95:
44:8a:85:ab:03:32:8d:47:b1:7b:a3:ec:c4:a4:5a:
08:d8:b7:d5:78:92:b5:6d:b7:eb:52:3d:01:77:91:
d8:0e:65:77:89:eb:30:1c:d7:d6:9e:89:42:07:50:
23:0b:c9:be:96:51:10:6d:43:e4:bd:96:eb:20:d8:
99:33:a5:80:d4:33:73:e3:3c:1f:ca:89:18:cf:cd:
4c:52:52:3e:11:53:62:31:80:e7:b6:55:1d:61:4c:
24:84:3c:39:2e:0b:9a:b6:53:31:92:10:af:b1:15:
3c:72:32:4e:5f:f6:cd:31:96:25:74:0e:b4:63:c4:
54:3b:96:59:c7:51:23:28:49:be:1a:bf:83:0e:ff:
c7:4f:63:22:65:15:14:08:68:01:37:7b:10:e1:82:
3f:53:08:77:12:c8:bb:f4:db:7b:c4:35:da:53:e9:
6d:05:92:e8:36:40:8b:0a:49:91:ed:04:ae:b4:ec:
e0:ea:bd:87:4f:ec:06:7a:ad:28:a1:a7:db:60:50:
0d:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:B0:47:0D:82:F1:AE:73:69:43:5F:3C:32:63:67:EE:79:B0:FF:9F
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8A9687E6F50C11EFA0646053762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.196.51.0/24
Signature Algorithm: sha256WithRSAEncryption
2d:8e:5d:a8:20:24:c0:93:73:28:95:80:ce:1a:c4:fc:98:19:
17:94:57:d2:da:2f:7f:67:50:3d:b9:ea:02:2c:8b:26:05:d0:
58:6a:1b:38:24:60:d5:9c:47:fa:d4:dc:0f:e4:c4:50:10:2d:
03:96:88:68:27:aa:a1:a2:64:84:37:a4:bd:52:17:71:cd:5f:
07:97:42:24:e8:57:87:f2:39:70:98:66:be:8e:3e:23:88:2a:
b8:45:6b:30:23:65:9b:80:24:44:23:5f:21:27:08:dc:1a:1c:
06:ee:5b:37:d7:6b:b4:52:44:78:78:d5:85:09:bc:80:ad:82:
2f:58:39:bf:96:64:8c:f1:d7:26:09:9a:24:ef:ed:bc:f7:b9:
1b:01:53:a8:dc:01:93:ed:4a:d4:73:62:68:16:92:7f:be:f4:
c7:dd:04:de:09:e5:f9:58:9d:b6:67:7a:c3:98:86:0a:0c:b7:
d6:5c:20:ca:07:16:b1:04:88:38:19:61:e4:9f:24:e9:08:00:
53:08:3e:65:5e:bf:56:4b:3d:96:5c:78:88:f7:06:9f:7b:e8:
9d:5e:9d:27:ce:ed:5f:46:52:2a:13:9c:77:ec:55:50:b1:f8:
46:e1:88:ec:95:12:61:c6:d2:0b:0a:47:8f:2d:64:f9:cc:51:
7e:2f:39:8b
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAWhyMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjUwMjI3MTMxMjQ1WhcNMjUwMzI2MTMxMjQ1WjAYMRYw
FAYDVQQDEw02N2MwNjRkMC1kNTgzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEA0Up2toXPwVbwu6P500HE6YaRbV2AiK9jOSpkjbExgsXOSnXvRrtIVAWM
BnCMMVZ/DoSE1OB9oTDji5VEioWrAzKNR7F7o+zEpFoI2LfVeJK1bbfrUj0Bd5HY
DmV3ieswHNfWnolCB1AjC8m+llEQbUPkvZbrINiZM6WA1DNz4zwfyokYz81MUlI+
EVNiMYDntlUdYUwkhDw5LguatlMxkhCvsRU8cjJOX/bNMZYldA60Y8RUO5ZZx1Ej
KEm+Gr+DDv/HT2MiZRUUCGgBN3sQ4YI/Uwh3Esi79Nt7xDXaU+ltBZLoNkCLCkmR
7QSutOzg6r2HT+wGeq0ooafbYFANVQIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFJyw
Rw2C8a5zaUNfPDJjZ+55sP+fMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC84QTk2ODdFNkY1MEMxMUVGQTA2NDYwNTM3NjJFOTUxQS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmsQzMA0GCSqGSIb3DQEB
CwUAA4IBAQAtjl2oICTAk3MolYDOGsT8mBkXlFfS2i9/Z1A9ueoCLIsmBdBYahs4
JGDVnEf61NwP5MRQEC0DlohoJ6qhomSEN6S9UhdxzV8Hl0Ik6FeH8jlwmGa+jj4j
iCq4RWswI2WbgCREI18hJwjcGhwG7ls312u0UkR4eNWFCbyArYIvWDm/lmSM8dcm
CZok7+2897kbAVOo3AGT7UrUc2JoFpJ/vvTH3QTeCeX5WJ22Z3rDmIYKDLfWXCDK
BxaxBIg4GWHknyTpCABTCD5lXr9WSz2WXHiI9wafe+idXp0nzu1fRlIqE5x37FVQ
sfhG4YjslRJhxtILCkePLWT5zFF+LzmL
-----END CERTIFICATE-----
Generated at Fri May 9 06:49:25 2025 by rpki-client