Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E88AE802DC1011EF8B355FA6762E951A.roa
File: E88AE802DC1011EF8B355FA6762E951A.roa (raw, json)
Hash identifier: gnEwqUq4j7C42OOFYsI+XCmSWb2Orft6rnrT469EZac=
Subject key identifier: 50:89:17:D9:A9:04:F4:17:B7:11:46:6A:81:08:2C:82:AE:77:6B:12
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 014B46
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E88AE802DC1011EF8B355FA6762E951A.roa
Signing time: Sun 26 Jan 2025 18:11:05 +0000
ROA not before: Sun 26 Jan 2025 18:11:01 +0000
ROA not after: Tue 01 Apr 2025 18:11:01 +0000
asID: 63139
IP address blocks: 154.94.93.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 84806 (0x14b46)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Jan 26 18:11:01 2025 GMT
Not After : Apr 1 18:11:01 2025 GMT
Subject: CN=67967ab9-138b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:f3:37:21:07:f5:63:7f:9e:b0:f6:ba:44:23:
e1:50:10:83:da:a6:f7:ba:28:00:c9:0c:e3:85:b2:
3b:59:38:ca:44:6d:3f:97:d0:ea:34:71:f1:5a:53:
17:d2:84:16:b2:5a:cf:c3:c3:86:f4:4a:11:84:ab:
62:c4:e5:cb:a0:11:8d:52:fa:3f:df:68:fa:e4:e5:
e0:81:0d:74:87:42:ad:ea:82:75:10:9d:f2:1d:f4:
55:93:ca:a4:b0:47:84:07:48:10:f2:a4:7b:8a:b7:
61:9a:47:f0:3d:0b:8f:98:8a:bb:d2:7a:82:e3:ff:
d9:0d:c5:a5:a8:47:2d:15:ed:23:cf:f9:91:e1:5a:
50:74:a3:eb:08:14:fa:dd:82:1e:43:5c:3d:6e:8b:
b5:52:de:5f:23:b4:fe:5f:02:c9:27:ac:88:69:b9:
24:63:5b:93:6d:ba:7e:37:20:9e:35:80:ad:ae:cd:
af:e4:5f:7a:95:0c:9e:b8:0e:38:ec:c3:bf:43:7e:
56:00:d9:e3:bf:36:28:2a:d2:48:4b:09:c9:39:92:
c2:55:72:43:1e:d0:31:0d:0b:c1:32:d5:57:d3:3a:
25:3f:13:01:6b:c4:f3:f4:17:af:8b:ad:69:75:7f:
f1:4f:7c:5a:fe:08:b1:28:c1:55:d5:ba:c5:d5:aa:
a8:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:89:17:D9:A9:04:F4:17:B7:11:46:6A:81:08:2C:82:AE:77:6B:12
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E88AE802DC1011EF8B355FA6762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.94.93.0/24
Signature Algorithm: sha256WithRSAEncryption
1a:cc:fc:9c:59:a0:8b:f9:20:b9:03:93:3d:b0:a1:c0:fb:c7:
18:5d:f9:29:57:f0:27:7c:65:63:d1:79:f2:7c:80:74:85:bb:
ec:1d:50:a4:c1:54:27:e2:85:23:6e:01:79:55:1f:56:29:1d:
34:17:45:a7:59:f7:70:a6:26:e6:ae:6c:56:0b:cc:8d:53:67:
1e:93:b5:98:8b:38:e5:65:c4:13:5d:d7:bd:d8:b3:6c:f3:b9:
77:7a:e7:c0:87:0d:ab:8b:3f:51:5c:6b:7e:00:59:9e:a2:83:
df:72:6f:3c:04:33:62:e5:a8:00:20:a2:02:b8:77:01:68:a6:
95:8f:78:31:a3:af:37:23:36:22:87:c0:0e:58:6c:c4:9f:66:
d0:3a:ea:e0:fa:cf:4d:3b:40:22:b0:e9:1a:ba:d3:0a:74:8d:
6b:02:9f:01:3f:6f:91:6d:80:79:19:9a:b8:5c:33:50:13:2b:
ec:08:df:2e:97:0a:be:8e:68:76:6f:e0:20:55:78:6f:6a:98:
e4:f5:68:e1:cc:67:7a:80:a4:eb:7c:aa:75:e3:cf:70:ab:be:
b0:4b:fb:93:6a:f3:9c:a5:cf:43:6c:44:7e:30:81:cd:38:35:
d8:03:cd:16:b4:31:1a:ef:70:da:97:50:39:b0:e9:4d:80:d8:
cd:98:23:88
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAUtGMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjUwMTI2MTgxMTAxWhcNMjUwNDAxMTgxMTAxWjAYMRYw
FAYDVQQDEw02Nzk2N2FiOS0xMzhiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEA5fM3IQf1Y3+esPa6RCPhUBCD2qb3uigAyQzjhbI7WTjKRG0/l9DqNHHx
WlMX0oQWslrPw8OG9EoRhKtixOXLoBGNUvo/32j65OXggQ10h0Kt6oJ1EJ3yHfRV
k8qksEeEB0gQ8qR7irdhmkfwPQuPmIq70nqC4//ZDcWlqEctFe0jz/mR4VpQdKPr
CBT63YIeQ1w9bou1Ut5fI7T+XwLJJ6yIabkkY1uTbbp+NyCeNYCtrs2v5F96lQye
uA447MO/Q35WANnjvzYoKtJISwnJOZLCVXJDHtAxDQvBMtVX0zolPxMBa8Tz9Bev
i61pdX/xT3xa/gixKMFV1brF1aqonwIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFFCJ
F9mpBPQXtxFGaoEILIKud2sSMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC9FODhBRTgwMkRDMTAxMUVGOEIzNTVGQTY3NjJFOTUxQS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAml5dMA0GCSqGSIb3DQEB
CwUAA4IBAQAazPycWaCL+SC5A5M9sKHA+8cYXfkpV/AnfGVj0XnyfIB0hbvsHVCk
wVQn4oUjbgF5VR9WKR00F0WnWfdwpibmrmxWC8yNU2cek7WYizjlZcQTXde92LNs
87l3eufAhw2riz9RXGt+AFmeooPfcm88BDNi5agAIKICuHcBaKaVj3gxo683IzYi
h8AOWGzEn2bQOurg+s9NO0AisOkautMKdI1rAp8BP2+RbYB5GZq4XDNQEyvsCN8u
lwq+jmh2b+AgVXhvapjk9WjhzGd6gKTrfKp1489wq76wS/uTavOcpc9DbER+MIHN
ODXYA80WtDEa73Dal1A5sOlNgNjNmCOI
-----END CERTIFICATE-----
Generated at Sat Apr 12 05:03:47 2025 by rpki-client