Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E9322090F6B911EFA09E574C762E951A.roa
File: E9322090F6B911EFA09E574C762E951A.roa (raw, json)
Hash identifier: OPCrbbc8AW+JijRfLA+QEbQkP4zcP32C2YzWrWacs7M=
Subject key identifier: DE:1C:75:F5:30:D9:4D:E6:38:05:21:36:4F:24:2B:89:8F:32:61:46
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 016EE1
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E9322090F6B911EFA09E574C762E951A.roa
Signing time: Sat 01 Mar 2025 16:26:21 +0000
ROA not before: Sat 01 Mar 2025 16:26:18 +0000
ROA not after: Mon 31 Mar 2025 16:26:18 +0000
asID: 202656
IP address blocks: 154.219.221.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 93921 (0x16ee1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 1 16:26:18 2025 GMT
Not After : Mar 31 16:26:18 2025 GMT
Subject: CN=67c3352d-b6d4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:69:81:f2:94:04:5c:8d:5c:12:52:13:cc:0d:
44:98:5c:ef:d5:24:13:85:f1:18:1a:9c:fd:13:65:
9d:b4:bc:cc:c2:44:11:02:1d:1d:b7:d1:f0:ac:0f:
b4:80:e6:35:67:a2:5a:f7:2e:a7:38:e5:64:02:cb:
1c:09:ee:ec:74:46:98:0c:7b:72:cb:29:67:c5:50:
f4:34:a5:5a:5c:1e:65:09:5d:7f:55:d0:ab:61:de:
4b:c0:f9:fc:98:42:3d:1b:31:30:01:f6:de:f4:45:
c9:ca:ec:e8:8f:95:99:81:42:c4:b2:53:2f:6e:83:
76:b6:c9:5e:a9:e0:3d:88:9c:13:52:ce:f6:57:b4:
60:7c:d5:7d:ea:9a:9f:c8:6f:ad:a9:b6:cf:8f:9e:
34:f4:a9:b5:b0:14:e2:c1:b0:7e:7a:8c:1f:0d:ae:
ab:c8:80:6f:4e:b5:a7:5d:23:6c:0c:94:a5:11:58:
aa:06:ae:af:06:d1:5b:7a:92:de:8d:a1:28:57:2a:
d4:54:d3:f9:41:cf:0a:af:08:7d:0e:39:a0:40:ba:
3d:78:95:75:31:6f:b8:59:df:e2:f2:fd:f5:7b:86:
59:7a:e2:a2:c6:83:60:48:58:cd:22:fa:79:cb:88:
06:06:f1:be:6b:d6:04:41:8b:16:29:f9:5a:bd:9a:
17:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:1C:75:F5:30:D9:4D:E6:38:05:21:36:4F:24:2B:89:8F:32:61:46
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E9322090F6B911EFA09E574C762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.219.221.0/24
Signature Algorithm: sha256WithRSAEncryption
77:1f:7e:f3:4c:69:4b:a8:33:4d:e9:9f:ba:98:b3:c1:d2:83:
2a:64:e6:0d:e3:e2:30:9a:79:02:e6:d8:54:41:ad:11:64:a2:
ba:b9:75:3d:ea:cf:6d:77:28:e6:b4:c6:25:20:28:8f:2f:2d:
7b:e1:cd:fe:82:53:31:23:63:0f:d5:d7:c2:1d:bb:48:9c:a5:
74:1e:60:d9:42:64:2d:c9:1c:14:6d:65:93:2a:f9:89:fe:c3:
2f:e4:20:6d:6a:a1:aa:f6:6f:22:e2:bd:b5:b0:2f:16:5d:40:
01:08:b5:13:06:63:a7:5d:76:04:72:a1:be:4a:fd:53:e0:84:
2b:74:37:bc:4d:c2:b0:3b:80:4f:d1:42:ec:6d:64:94:24:0c:
99:b3:4d:8c:33:58:5d:5e:08:76:50:0d:58:c7:de:e7:1b:f1:
24:4d:76:ff:75:e1:9f:12:47:eb:14:21:d2:e8:5f:63:74:5c:
30:47:88:ee:08:cf:2a:5e:bc:7c:be:43:d5:f3:13:2b:8d:de:
a9:6c:09:3d:70:0e:c6:af:e4:b7:c3:c8:9c:d0:4b:69:cd:75:
31:71:47:7a:2e:3b:3b:7b:a5:7b:7d:db:c7:d1:d3:18:30:7c:
26:fa:3b:78:13:49:93:0b:25:d6:c8:00:fd:b0:35:1a:2a:23:
c1:8e:97:d1
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAW7hMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjUwMzAxMTYyNjE4WhcNMjUwMzMxMTYyNjE4WjAYMRYw
FAYDVQQDEw02N2MzMzUyZC1iNmQ0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAwGmB8pQEXI1cElITzA1EmFzv1SQThfEYGpz9E2WdtLzMwkQRAh0dt9Hw
rA+0gOY1Z6Ja9y6nOOVkAsscCe7sdEaYDHtyyylnxVD0NKVaXB5lCV1/VdCrYd5L
wPn8mEI9GzEwAfbe9EXJyuzoj5WZgULEslMvboN2tsleqeA9iJwTUs72V7RgfNV9
6pqfyG+tqbbPj5409Km1sBTiwbB+eowfDa6ryIBvTrWnXSNsDJSlEViqBq6vBtFb
epLejaEoVyrUVNP5Qc8Krwh9DjmgQLo9eJV1MW+4Wd/i8v31e4ZZeuKixoNgSFjN
Ivp5y4gGBvG+a9YEQYsWKflavZoXgQIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFN4c
dfUw2U3mOAUhNk8kK4mPMmFGMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC9FOTMyMjA5MEY2QjkxMUVGQTA5RTU3NEM3NjJFOTUxQS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmtvdMA0GCSqGSIb3DQEB
CwUAA4IBAQB3H37zTGlLqDNN6Z+6mLPB0oMqZOYN4+IwmnkC5thUQa0RZKK6uXU9
6s9tdyjmtMYlICiPLy174c3+glMxI2MP1dfCHbtInKV0HmDZQmQtyRwUbWWTKvmJ
/sMv5CBtaqGq9m8i4r21sC8WXUABCLUTBmOnXXYEcqG+Sv1T4IQrdDe8TcKwO4BP
0ULsbWSUJAyZs02MM1hdXgh2UA1Yx97nG/EkTXb/deGfEkfrFCHS6F9jdFwwR4ju
CM8qXrx8vkPV8xMrjd6pbAk9cA7Gr+S3w8ic0EtpzXUxcUd6Ljs7e6V7fdvH0dMY
MHwm+jt4E0mTCyXWyAD9sDUaKiPBjpfR
-----END CERTIFICATE-----
Generated at Fri May 9 06:47:43 2025 by rpki-client