Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/9D21935AF4EA11EF8CBC606A762E951A.roa
File: 9D21935AF4EA11EF8CBC606A762E951A.roa (raw, json)
Hash identifier: 4i+kiNzzuXFvNpSLQzKuMVrrDgxbFDnRawOGI7nM5zg=
Subject key identifier: 07:8D:44:FB:45:B2:38:9C:25:A7:43:1E:03:6D:12:D4:28:4E:9A:AB
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 016713
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/9D21935AF4EA11EF8CBC606A762E951A.roa
Signing time: Thu 27 Feb 2025 09:09:57 +0000
ROA not before: Thu 27 Feb 2025 09:09:52 +0000
ROA not after: Wed 26 Mar 2025 09:09:52 +0000
asID: 62240
IP address blocks: 154.195.23.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 91923 (0x16713)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Feb 27 09:09:52 2025 GMT
Not After : Mar 26 09:09:52 2025 GMT
Subject: CN=67c02be5-8111
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:30:0a:35:a2:82:6a:c3:59:c4:58:e8:39:8e:
7f:47:35:2a:57:2a:ca:b4:39:fe:de:91:2b:6c:9c:
69:c5:23:ee:bc:09:d7:da:3f:67:15:ef:34:c1:f8:
73:9a:14:21:a3:90:ba:44:f2:e9:72:84:63:6e:cc:
16:7e:23:f3:08:8a:d9:d7:02:0c:e2:b2:7c:c8:b6:
bc:24:f3:dc:2e:db:6f:6a:87:bc:2d:16:c4:78:6e:
11:e4:b3:79:b4:04:bb:e7:da:37:37:61:31:32:ee:
7c:da:e0:21:c9:2a:63:a8:ce:02:8e:cd:55:6f:f9:
f8:0a:be:4c:ef:3f:76:6c:73:95:9c:59:7b:17:20:
c3:6d:b2:65:5f:4e:ed:2b:9b:a2:bd:c8:48:3e:54:
6d:7d:13:92:d1:63:0f:d3:ac:0c:55:8c:9e:81:a9:
56:90:b4:72:24:34:4e:51:4a:f4:eb:47:f8:6b:be:
00:c9:e5:be:2a:15:6e:90:4a:c7:6a:60:3f:02:4d:
12:58:ee:2d:f8:4b:a9:87:32:f9:8c:f4:01:55:52:
f0:54:78:d3:c6:4c:c8:74:b4:a8:fc:12:13:0c:d0:
46:1d:6d:5d:f7:6f:6d:2d:2b:61:e6:49:49:c5:9b:
e2:4a:ab:42:5d:24:54:5b:3e:52:78:63:0d:f7:00:
17:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:8D:44:FB:45:B2:38:9C:25:A7:43:1E:03:6D:12:D4:28:4E:9A:AB
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/9D21935AF4EA11EF8CBC606A762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.195.23.0/24
Signature Algorithm: sha256WithRSAEncryption
01:e3:b5:8e:33:e4:83:30:37:d7:03:f1:42:5c:ed:2b:8e:e2:
4b:35:21:db:36:ee:23:4f:00:7d:59:5b:a0:0e:04:18:c3:80:
1d:3b:9e:ec:22:17:fb:a8:9a:d7:99:3d:22:e1:82:3b:ba:e0:
03:12:03:ab:96:13:37:ac:c3:bc:e9:a0:6b:82:40:ce:d3:9f:
0b:2f:e2:dc:c8:4f:d2:35:5b:e8:ea:9d:2f:7e:5d:50:a2:8f:
a1:fb:ad:5c:03:34:37:c8:f4:fe:6c:99:62:d8:ad:7b:fd:b4:
51:c6:e3:e3:f1:f8:31:6a:30:53:95:dd:1f:b3:e5:fb:f4:22:
cd:42:3e:ac:4e:af:15:e8:85:30:a7:a3:f0:03:6a:d1:9e:75:
67:ac:17:e0:2c:a1:b8:5d:fa:41:56:94:73:19:b8:b6:dd:f1:
80:1f:df:47:2d:23:17:b7:cf:a6:d6:9f:a9:25:52:72:ac:e6:
e2:f3:70:fd:24:e5:77:24:71:62:8e:49:e4:8a:f7:91:e5:80:
c2:b2:9f:94:30:d3:24:de:0f:2a:ef:e0:1a:ea:7f:34:8e:c3:
4f:32:26:35:c1:58:a8:80:0e:f6:92:6d:f9:b2:f8:c2:50:cd:
ca:37:be:77:39:07:b0:18:ac:56:88:83:60:93:7c:10:62:59:
24:f8:ee:45
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAWcTMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjUwMjI3MDkwOTUyWhcNMjUwMzI2MDkwOTUyWjAYMRYw
FAYDVQQDEw02N2MwMmJlNS04MTExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAnjAKNaKCasNZxFjoOY5/RzUqVyrKtDn+3pErbJxpxSPuvAnX2j9nFe80
wfhzmhQho5C6RPLpcoRjbswWfiPzCIrZ1wIM4rJ8yLa8JPPcLttvaoe8LRbEeG4R
5LN5tAS759o3N2ExMu582uAhySpjqM4Cjs1Vb/n4Cr5M7z92bHOVnFl7FyDDbbJl
X07tK5uivchIPlRtfROS0WMP06wMVYyegalWkLRyJDROUUr060f4a74AyeW+KhVu
kErHamA/Ak0SWO4t+EuphzL5jPQBVVLwVHjTxkzIdLSo/BITDNBGHW1d929tLSth
5klJxZviSqtCXSRUWz5SeGMN9wAXvwIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFAeN
RPtFsjicJadDHgNtEtQoTpqrMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC85RDIxOTM1QUY0RUExMUVGOENCQzYwNkE3NjJFOTUxQS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmsMXMA0GCSqGSIb3DQEB
CwUAA4IBAQAB47WOM+SDMDfXA/FCXO0rjuJLNSHbNu4jTwB9WVugDgQYw4AdO57s
Ihf7qJrXmT0i4YI7uuADEgOrlhM3rMO86aBrgkDO058LL+LcyE/SNVvo6p0vfl1Q
oo+h+61cAzQ3yPT+bJli2K17/bRRxuPj8fgxajBTld0fs+X79CLNQj6sTq8V6IUw
p6PwA2rRnnVnrBfgLKG4XfpBVpRzGbi23fGAH99HLSMXt8+m1p+pJVJyrObi83D9
JOV3JHFijknkiveR5YDCsp+UMNMk3g8q7+Aa6n80jsNPMiY1wViogA72km35svjC
UM3KN753OQewGKxWiINgk3wQYlkk+O5F
-----END CERTIFICATE-----
Generated at Fri May 9 07:03:38 2025 by rpki-client