Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/EA0D58D6F53311EFB9F9545C762E951A.roa
File: EA0D58D6F53311EFB9F9545C762E951A.roa (raw, json)
Hash identifier: p9IHUana1Xj7xxb7zY2airo3caGcPZIZC5QYl8mpPrU=
Subject key identifier: DB:7F:E6:04:D9:10:0B:F3:1A:00:0C:C8:76:94:D5:35:A2:3C:A3:11
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01696E
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/EA0D58D6F53311EFB9F9545C762E951A.roa
Signing time: Thu 27 Feb 2025 17:54:39 +0000
ROA not before: Thu 27 Feb 2025 17:54:35 +0000
ROA not after: Wed 26 Mar 2025 17:54:35 +0000
asID: 62240
IP address blocks: 154.196.22.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 92526 (0x1696e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Feb 27 17:54:35 2025 GMT
Not After : Mar 26 17:54:35 2025 GMT
Subject: CN=67c0a6df-61ff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:b4:c5:9f:a5:fa:8f:2b:11:40:cd:5b:ed:b1:
7e:22:74:11:a6:79:5d:19:10:27:0d:d3:56:07:16:
62:59:16:0a:e7:9a:11:30:a2:1b:00:13:ec:ec:b8:
19:fc:e4:0c:37:ed:0d:b4:c1:6d:ee:e9:75:4a:c6:
a6:79:49:3d:4c:69:8e:54:5b:82:ac:84:88:cf:f3:
0b:c9:26:94:2c:ee:15:9e:64:16:e1:90:bc:0e:a7:
ea:5d:05:9d:fb:64:58:36:13:ed:5a:a6:99:2d:6f:
a9:01:f1:c2:0b:16:e5:c7:aa:0a:c2:c2:95:df:07:
f9:af:d6:34:20:70:3c:c7:16:84:23:b5:0e:80:fa:
e8:31:e4:bc:af:d0:58:2c:4a:6d:25:b1:99:6f:24:
2b:96:3a:de:99:e6:3c:a6:e4:32:78:d6:68:46:d6:
a0:6b:0c:f8:a4:c6:6a:f7:a2:ef:96:96:2f:6a:14:
18:5d:d5:6b:9d:b1:86:cf:0b:8c:1b:41:03:7d:e1:
9c:e9:7f:25:3c:19:f3:f2:4d:cf:ca:53:62:06:98:
c2:3c:84:72:32:74:4c:3e:78:a3:72:cc:bf:9c:c9:
82:33:f3:79:26:83:b9:7f:f9:00:cb:3d:4c:d9:f8:
f2:6a:53:0f:af:29:1d:c7:60:c5:67:04:93:6b:10:
8c:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:7F:E6:04:D9:10:0B:F3:1A:00:0C:C8:76:94:D5:35:A2:3C:A3:11
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/EA0D58D6F53311EFB9F9545C762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.196.22.0/24
Signature Algorithm: sha256WithRSAEncryption
b4:9d:c5:e9:ee:55:8c:0c:c2:09:28:a0:01:a4:ea:e9:eb:01:
57:72:ee:d0:45:c2:1a:b5:fc:5a:af:8d:f5:04:b8:39:a2:c5:
21:ba:58:c9:0b:a5:ac:53:c3:0e:95:f0:ad:1d:6f:16:4b:dd:
b9:14:82:ff:79:29:69:8e:8c:74:b9:00:ef:2b:8e:09:c9:ef:
1b:35:03:89:e4:75:54:26:e1:cf:da:66:89:58:90:9a:e8:e1:
d0:e5:85:b2:7e:37:b8:aa:51:12:95:a5:a9:c7:4d:2c:24:ed:
34:28:e2:ba:d3:a4:9c:d7:c9:40:83:d4:f8:92:27:29:37:cf:
00:4c:66:c3:d9:17:a9:bb:63:f4:23:40:1d:bc:bc:77:40:39:
0b:70:cb:8a:cc:d9:e3:9c:4f:ba:5a:ef:92:2c:ed:62:ee:9f:
ac:67:0d:d5:cf:f6:c3:68:94:84:83:95:bd:bc:5d:c1:89:10:
0b:c6:96:ff:4a:44:25:d8:96:bc:f4:c1:9f:21:45:e9:49:8e:
17:f6:8f:2a:fb:34:bc:8e:46:cd:36:c6:49:e7:1b:5c:2f:d3:
f4:7b:41:88:58:51:76:41:42:36:7f:02:47:7b:4f:03:bd:f7:
6d:b2:9f:10:32:75:ec:81:e5:56:70:84:00:ee:3f:9f:81:19:
a9:84:8e:37
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAWluMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjUwMjI3MTc1NDM1WhcNMjUwMzI2MTc1NDM1WjAYMRYw
FAYDVQQDEw02N2MwYTZkZi02MWZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEA7LTFn6X6jysRQM1b7bF+InQRpnldGRAnDdNWBxZiWRYK55oRMKIbABPs
7LgZ/OQMN+0NtMFt7ul1SsameUk9TGmOVFuCrISIz/MLySaULO4VnmQW4ZC8Dqfq
XQWd+2RYNhPtWqaZLW+pAfHCCxblx6oKwsKV3wf5r9Y0IHA8xxaEI7UOgProMeS8
r9BYLEptJbGZbyQrljremeY8puQyeNZoRtagawz4pMZq96LvlpYvahQYXdVrnbGG
zwuMG0EDfeGc6X8lPBnz8k3PylNiBpjCPIRyMnRMPnijcsy/nMmCM/N5JoO5f/kA
yz1M2fjyalMPrykdx2DFZwSTaxCMOwIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFNt/
5gTZEAvzGgAMyHaU1TWiPKMRMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC9FQTBENThENkY1MzMxMUVGQjlGOTU0NUM3NjJFOTUxQS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmsQWMA0GCSqGSIb3DQEB
CwUAA4IBAQC0ncXp7lWMDMIJKKABpOrp6wFXcu7QRcIatfxar431BLg5osUhuljJ
C6WsU8MOlfCtHW8WS925FIL/eSlpjox0uQDvK44Jye8bNQOJ5HVUJuHP2maJWJCa
6OHQ5YWyfje4qlESlaWpx00sJO00KOK606Sc18lAg9T4kicpN88ATGbD2Repu2P0
I0AdvLx3QDkLcMuKzNnjnE+6Wu+SLO1i7p+sZw3Vz/bDaJSEg5W9vF3BiRALxpb/
SkQl2Ja89MGfIUXpSY4X9o8q+zS8jkbNNsZJ5xtcL9P0e0GIWFF2QUI2fwJHe08D
vfdtsp8QMnXsgeVWcIQA7j+fgRmphI43
-----END CERTIFICATE-----
Generated at Fri May 9 06:34:46 2025 by rpki-client