Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/931A8B268CDD11EE83037A644AD9E6FC.roa
File: 931A8B268CDD11EE83037A644AD9E6FC.roa (raw, json)
Hash identifier: DQTuvJJ5QdYsltub708vwIgZej9CDmPPJTMqxaaxvXw=
Subject key identifier: EE:EC:AA:0D:B9:50:E3:9B:69:89:47:42:50:B1:77:72:44:DC:D5:0C
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 54F8
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/931A8B268CDD11EE83037A644AD9E6FC.roa
Signing time: Mon 27 Nov 2023 04:29:38 +0000
ROA not before: Mon 27 Nov 2023 04:29:35 +0000
ROA not after: Tue 26 Dec 2023 04:29:35 +0000
asID: 62240
IP address blocks: 154.194.89.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 21752 (0x54f8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 27 04:29:35 2023 GMT
Not After : Dec 26 04:29:35 2023 GMT
Subject: CN=65641b32-1e33
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:9c:5a:95:13:a7:1e:37:c5:f2:13:40:51:ba:
e6:dd:d4:be:ef:e9:e1:30:12:42:59:55:36:58:54:
9c:b1:da:d0:ee:d4:98:64:da:6c:36:f6:71:ba:1a:
36:05:7d:8d:b9:48:89:f7:74:2d:ac:2a:d0:93:2d:
67:cf:0a:30:3e:b8:9e:c7:70:57:5d:0d:ad:b5:b2:
06:29:18:db:20:a3:b8:e7:2f:67:e2:49:8a:3d:6d:
12:43:3b:cb:1e:ef:dd:73:11:26:9d:52:fa:46:65:
57:70:9a:19:5f:a9:24:71:3a:53:c2:48:b8:8c:77:
5b:6a:b7:b9:8a:14:27:b0:74:48:cb:31:32:b5:1c:
f7:15:fb:3e:b8:fb:ea:33:43:eb:0a:7a:71:6c:d0:
c3:f2:50:8b:50:27:2e:bf:b8:2a:72:d6:a8:cd:b7:
65:18:97:9b:7b:22:21:5f:c0:80:f5:33:4c:8b:a0:
a8:c4:0f:f4:97:00:46:39:de:1d:32:93:ff:58:24:
82:8c:82:6f:fe:92:1a:cc:47:e1:b4:b6:a8:e6:95:
d1:27:9b:de:e1:35:af:52:d5:0b:3b:db:1f:83:89:
bc:86:f8:ac:bf:b2:6c:9d:32:d6:b3:b6:ad:ef:d7:
3d:08:a6:2b:6f:9c:d5:56:87:d1:cf:80:0c:a5:f4:
17:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:EC:AA:0D:B9:50:E3:9B:69:89:47:42:50:B1:77:72:44:DC:D5:0C
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/931A8B268CDD11EE83037A644AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.194.89.0/24
Signature Algorithm: sha256WithRSAEncryption
2e:ed:9b:c9:6c:15:52:3f:1c:e1:a0:d0:a1:ef:d7:ff:d6:82:
c9:5e:a8:90:37:cb:ca:5c:1b:00:a2:54:c9:e3:2e:44:c7:41:
c7:be:fb:09:30:4a:ba:de:70:f9:f6:fb:2a:7a:3b:9f:17:d9:
d0:e2:a9:7f:fd:db:f0:e2:59:c9:dc:6e:1d:cf:79:f7:a8:e9:
fd:40:ed:9b:c4:a5:ce:7e:f3:fd:ce:db:fc:61:e5:62:d3:aa:
68:45:22:e2:a1:82:c2:da:7f:a5:0a:aa:76:28:b3:d6:f3:c2:
4c:1f:c1:02:d2:6e:a7:e1:26:d3:7b:83:c4:8e:3d:e4:65:6a:
7e:86:88:3e:92:25:99:2d:db:14:04:10:5a:fb:ca:ad:bb:fe:
a7:60:5f:ec:64:59:9d:56:d6:9a:cf:8c:b1:46:72:7f:91:5d:
ce:1a:59:17:2e:c8:af:8e:2c:2e:17:ec:af:9d:5c:62:f4:fc:
61:8f:b5:64:8a:24:4d:8a:02:67:1c:d1:85:8b:4c:16:d0:f9:
2d:63:0c:76:be:2c:95:04:de:d8:91:71:13:f9:41:b1:be:34:
ac:97:f0:66:f2:ed:26:dd:96:b5:16:11:65:0e:3f:3c:ac:0e:
3d:76:f0:96:50:ef:ef:df:af:25:f3:e5:13:d1:96:0e:98:98:
f6:3c:66:46
-----BEGIN CERTIFICATE-----
MIIFgzCCBGugAwIBAgICVPgwDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAwwKRjM2
OEYyRDBBRjExMC8GA1UEBRMoMjVENjNFMDhFQUJFN0NGQTY3ODVENEMxRDZEMzQx
MTZERTE1QjNEQzAeFw0yMzExMjcwNDI5MzVaFw0yMzEyMjYwNDI5MzVaMBgxFjAU
BgNVBAMTDTY1NjQxYjMyLTFlMzMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQC6nFqVE6ceN8XyE0BRuubd1L7v6eEwEkJZVTZYVJyx2tDu1Jhk2mw29nG6
GjYFfY25SIn3dC2sKtCTLWfPCjA+uJ7HcFddDa21sgYpGNsgo7jnL2fiSYo9bRJD
O8se791zESadUvpGZVdwmhlfqSRxOlPCSLiMd1tqt7mKFCewdEjLMTK1HPcV+z64
++ozQ+sKenFs0MPyUItQJy6/uCpy1qjNt2UYl5t7IiFfwID1M0yLoKjED/SXAEY5
3h0yk/9YJIKMgm/+khrMR+G0tqjmldEnm97hNa9S1Qs72x+DibyG+Ky/smydMtaz
tq3v1z0IpitvnNVWh9HPgAyl9Be5AgMBAAGjggKlMIICoTAdBgNVHQ4EFgQU7uyq
DblQ45tpiUdCULF3ckTc1QwwHwYDVR0jBBgwFoAUJdY+COq+fPpnhdTB1tNBFt4V
s9wwDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjhGMkQwLzdGNEE5OEVBNkUwNTExRTg5QzBENkU0QkY4QUVBMjI4L0pkWS1D
T3EtZlBwbmhkVEIxdE5CRnQ0VnM5dy5jcmwwZwYIKwYBBQUHAQEEWzBZMFcGCCsG
AQUFBzAChktyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hZnJp
bmljL0pkWS1DT3EtZlBwbmhkVEIxdE5CRnQ0VnM5dy5jZXIwTwYDVR0gAQH/BEUw
QzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5p
Yy5uZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEF
BQcwC4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJl
cl9yZXBvc2l0b3J5L0YzNjhGMkQwLzdGNEE5OEVBNkUwNTExRTg5QzBENkU0QkY4
QUVBMjI4LzkzMUE4QjI2OENERDExRUU4MzAzN0E2NDRBRDlFNkZDLnJvYTA1Bggr
BgEFBQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54
bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBACawlkwDQYJKoZIhvcNAQEL
BQADggEBAC7tm8lsFVI/HOGg0KHv1//WgsleqJA3y8pcGwCiVMnjLkTHQce++wkw
SrrecPn2+yp6O58X2dDiqX/92/DiWcncbh3Pefeo6f1A7ZvEpc5+8/3O2/xh5WLT
qmhFIuKhgsLaf6UKqnYos9bzwkwfwQLSbqfhJtN7g8SOPeRlan6GiD6SJZkt2xQE
EFr7yq27/qdgX+xkWZ1W1prPjLFGcn+RXc4aWRcuyK+OLC4X7K+dXGL0/GGPtWSK
JE2KAmcc0YWLTBbQ+S1jDHa+LJUE3tiRcRP5QbG+NKyX8Gby7SbdlrUWEWUOPzys
Dj128JZQ7+/fryXz5RPRlg6YmPY8ZkY=
-----END CERTIFICATE-----
Generated at Fri May 9 11:09:03 2025 by rpki-client