Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8A972108F2D011EF83078D72762E951A.roa
File: 8A972108F2D011EF83078D72762E951A.roa (raw, json)
Hash identifier: 4+6WhQCym6Js2PWRrrs+QJuFcwoz6TdrAJG0SBwgan4=
Subject key identifier: 5C:B0:F1:AB:45:95:CD:06:A8:06:39:15:EF:EC:72:67:03:8E:5C:4A
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 015C8A
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8A972108F2D011EF83078D72762E951A.roa
Signing time: Mon 24 Feb 2025 16:58:16 +0000
ROA not before: Mon 24 Feb 2025 16:58:13 +0000
ROA not after: Sat 29 Mar 2025 16:58:13 +0000
asID: 203020
IP address blocks: 154.223.162.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 89226 (0x15c8a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Feb 24 16:58:13 2025 GMT
Not After : Mar 29 16:58:13 2025 GMT
Subject: CN=67bca528-2e58
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:24:42:5b:d0:08:65:92:a6:a3:fd:8b:74:ac:
d8:3d:c5:9d:9c:df:c1:f4:75:f0:6b:fe:cd:38:41:
6b:04:d5:1f:3d:42:8c:0b:d6:25:fd:52:7d:35:6b:
68:d3:3b:9a:d8:7e:95:c7:aa:f2:9a:56:3e:82:14:
46:e3:38:37:0c:97:48:a5:b3:1b:2a:71:08:f3:27:
8f:43:74:f9:6f:b0:d8:a6:4f:a3:ae:65:1b:81:ce:
a7:19:5e:9d:2e:93:91:17:77:a1:5d:36:16:6c:0c:
e3:46:b8:1b:3d:4a:53:ae:6a:d7:ef:c4:0c:9a:9a:
77:96:10:38:5b:87:2f:64:3b:d3:b0:63:74:0d:96:
36:31:90:f7:01:a9:5e:29:d6:d7:4f:e3:c8:45:9d:
2e:1b:c7:ff:26:b3:41:fe:40:6b:96:f8:f2:19:5c:
65:38:dc:7e:5f:5a:06:ff:d8:70:23:44:51:b6:84:
b5:6a:f4:54:94:88:86:a4:8e:dd:aa:20:32:1e:49:
e9:61:47:ae:7b:0d:66:7f:c0:e7:7d:0b:c3:a9:67:
d8:0b:f7:f0:40:24:26:63:df:65:ca:12:6e:7e:25:
50:49:54:52:43:7b:28:2b:41:5b:a0:76:e5:8d:6c:
47:b8:6d:49:63:97:3f:0f:b8:27:77:84:d5:7a:5d:
50:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:B0:F1:AB:45:95:CD:06:A8:06:39:15:EF:EC:72:67:03:8E:5C:4A
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8A972108F2D011EF83078D72762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.223.162.0/24
Signature Algorithm: sha256WithRSAEncryption
8b:f5:89:6d:1c:ce:c4:1f:1d:17:38:d0:5c:2a:5c:92:8d:59:
14:f7:87:53:6d:59:a8:ec:da:40:14:96:e6:92:a9:13:d5:50:
9e:ea:3e:81:77:d9:be:7b:f3:f2:2e:59:18:b2:85:25:fc:09:
87:1d:82:3d:ec:d0:e0:02:3b:7f:fa:60:37:69:0c:fd:4c:57:
e8:8a:6b:8e:00:71:ff:29:73:9c:e1:69:19:28:d8:70:13:6b:
6c:6c:28:14:54:8a:55:ed:dc:43:5e:2b:b5:90:5d:35:ef:06:
d5:75:40:67:78:0f:94:a8:d9:cc:fa:20:56:74:b0:d0:70:a9:
c3:98:dd:05:68:0e:67:0f:cc:1f:72:a4:00:9e:58:44:85:c4:
cb:ef:4d:05:92:1f:7c:b5:b2:fc:97:a7:ae:e0:de:44:08:61:
13:1f:24:57:f7:d8:b5:67:72:48:46:67:48:5d:56:63:c0:8e:
31:c9:27:a0:bb:59:0c:b8:ed:76:7b:ad:49:c3:c8:ef:1c:33:
0a:21:6f:be:c5:c7:9c:b9:d8:81:11:c5:fb:c5:c6:1c:d0:41:
b1:de:17:37:cb:60:fd:7d:dc:57:fd:d0:d3:e0:e3:24:dd:b0:
57:96:13:64:f4:01:4e:13:ce:8d:79:e5:e4:50:82:d6:45:b6:
2d:25:31:72
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAVyKMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjUwMjI0MTY1ODEzWhcNMjUwMzI5MTY1ODEzWjAYMRYw
FAYDVQQDEw02N2JjYTUyOC0yZTU4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAtiRCW9AIZZKmo/2LdKzYPcWdnN/B9HXwa/7NOEFrBNUfPUKMC9Yl/VJ9
NWto0zua2H6Vx6rymlY+ghRG4zg3DJdIpbMbKnEI8yePQ3T5b7DYpk+jrmUbgc6n
GV6dLpORF3ehXTYWbAzjRrgbPUpTrmrX78QMmpp3lhA4W4cvZDvTsGN0DZY2MZD3
AaleKdbXT+PIRZ0uG8f/JrNB/kBrlvjyGVxlONx+X1oG/9hwI0RRtoS1avRUlIiG
pI7dqiAyHknpYUeuew1mf8DnfQvDqWfYC/fwQCQmY99lyhJufiVQSVRSQ3soK0Fb
oHbljWxHuG1JY5c/D7gnd4TVel1QXwIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFFyw
8atFlc0GqAY5Fe/scmcDjlxKMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC84QTk3MjEwOEYyRDAxMUVGODMwNzhENzI3NjJFOTUxQS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmt+iMA0GCSqGSIb3DQEB
CwUAA4IBAQCL9YltHM7EHx0XONBcKlySjVkU94dTbVmo7NpAFJbmkqkT1VCe6j6B
d9m+e/PyLlkYsoUl/AmHHYI97NDgAjt/+mA3aQz9TFfoimuOAHH/KXOc4WkZKNhw
E2tsbCgUVIpV7dxDXiu1kF017wbVdUBneA+UqNnM+iBWdLDQcKnDmN0FaA5nD8wf
cqQAnlhEhcTL700Fkh98tbL8l6eu4N5ECGETHyRX99i1Z3JIRmdIXVZjwI4xySeg
u1kMuO12e61Jw8jvHDMKIW++xcecudiBEcX7xcYc0EGx3hc3y2D9fdxX/dDT4OMk
3bBXlhNk9AFOE86NeeXkUILWRbYtJTFy
-----END CERTIFICATE-----
Generated at Sat Apr 12 05:09:24 2025 by rpki-client