Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/EE5BFB5E807711EE998293744AD9E6FC.roa
File: EE5BFB5E807711EE998293744AD9E6FC.roa (raw, json)
Hash identifier: BfWiHLhKgJgc3OQUXUHigjsDY81EqIS/NADAwTpPetQ=
Subject key identifier: 78:B2:C6:CF:38:60:35:00:8B:13:53:60:E4:BA:7D:E6:16:2E:66:74
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 4F47
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/EE5BFB5E807711EE998293744AD9E6FC.roa
Signing time: Sat 11 Nov 2023 09:51:48 +0000
ROA not before: Sat 11 Nov 2023 09:51:45 +0000
ROA not after: Wed 13 Dec 2023 09:51:45 +0000
asID: 147176
IP address blocks: 154.197.116.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 20295 (0x4f47)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 11 09:51:45 2023 GMT
Not After : Dec 13 09:51:45 2023 GMT
Subject: CN=654f4eb4-c1d0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:3c:d5:f9:0f:c8:9e:1b:08:e5:d1:81:c7:61:
a3:db:a5:c5:bd:8d:f1:1f:a9:12:a4:d3:53:e9:96:
be:77:be:73:82:92:82:ee:55:25:76:bc:b3:06:28:
c4:d7:b8:39:fe:83:ea:7e:d5:94:a0:0e:af:ec:0c:
df:81:4e:44:9a:8e:ff:99:13:53:ce:09:c3:af:62:
77:8a:33:fb:ed:30:2c:5b:bc:77:2d:0e:e9:8f:dd:
8b:77:f5:0b:4a:e0:29:83:bd:13:60:e4:54:7d:57:
aa:3d:c4:55:41:6e:97:7c:f6:f1:24:a3:12:0a:6d:
30:b4:a3:19:1b:25:c7:13:9f:b6:cd:6b:85:a1:6b:
66:55:dc:9f:44:a4:ec:f8:1a:b9:0d:63:eb:ce:97:
d4:21:ed:ae:f8:11:1a:d7:25:23:37:44:f8:62:36:
ed:c2:af:07:88:ed:22:e9:99:63:86:ed:9a:85:21:
48:22:64:80:79:bf:61:c1:20:70:19:cc:05:08:3f:
a3:8d:1a:fc:4d:85:89:f0:c6:98:41:cc:6b:c0:c8:
9e:53:5f:68:5f:4a:8c:0f:d8:b7:34:f4:3a:8c:fa:
95:bc:72:e7:a9:84:c8:c1:01:d6:63:e7:8c:56:1f:
a8:9b:c7:0f:72:6a:6c:ab:b9:c9:a9:67:cb:96:c1:
97:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:B2:C6:CF:38:60:35:00:8B:13:53:60:E4:BA:7D:E6:16:2E:66:74
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/EE5BFB5E807711EE998293744AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.197.116.0/24
Signature Algorithm: sha256WithRSAEncryption
21:86:99:92:40:94:ac:33:ac:cc:2d:00:49:9a:59:6f:27:2d:
e0:3d:d3:29:dc:e8:50:7d:7f:38:46:df:6d:c3:2c:27:66:86:
ee:ef:88:b6:d0:34:7b:fe:a6:6d:b8:e7:04:f3:9c:99:3e:be:
8b:88:10:99:91:f6:9d:2b:57:1d:f1:d8:16:9b:64:86:a2:2d:
47:b1:45:6f:a8:0a:e6:5f:f5:c7:5b:de:ab:9b:b3:5d:17:43:
20:cc:72:1e:c5:7a:a9:39:9e:5b:2c:52:39:f5:98:0b:3e:6a:
59:04:a7:c7:10:bc:8b:33:e8:bd:f4:3d:fe:5c:40:e1:8a:e8:
84:6b:8f:0e:ad:f7:26:c8:88:c9:8d:df:de:bc:21:da:d9:01:
0b:b2:a6:5a:56:03:94:94:d7:bf:a0:a5:69:f4:63:e1:1b:ee:
1e:2c:73:07:bc:a6:85:1f:68:f2:49:32:6f:75:16:8c:30:9b:
d5:d9:b9:07:62:cb:93:61:06:37:f9:be:f7:8c:3c:9e:c3:bf:
be:6e:e9:23:5b:d9:3f:b2:52:e0:b4:3f:b4:a7:86:d2:e0:d7:
4a:a5:b8:fd:48:44:bb:ec:8f:ee:9f:5a:48:81:36:01:1c:55:
46:28:e8:d6:2b:14:a7:26:ce:77:0b:43:03:7b:68:f8:71:0d:
7e:55:18:e7
-----BEGIN CERTIFICATE-----
MIIFgzCCBGugAwIBAgICT0cwDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAwwKRjM2
OEYyRDBBRjExMC8GA1UEBRMoMjVENjNFMDhFQUJFN0NGQTY3ODVENEMxRDZEMzQx
MTZERTE1QjNEQzAeFw0yMzExMTEwOTUxNDVaFw0yMzEyMTMwOTUxNDVaMBgxFjAU
BgNVBAMTDTY1NGY0ZWI0LWMxZDAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQCwPNX5D8ieGwjl0YHHYaPbpcW9jfEfqRKk01Pplr53vnOCkoLuVSV2vLMG
KMTXuDn+g+p+1ZSgDq/sDN+BTkSajv+ZE1POCcOvYneKM/vtMCxbvHctDumP3Yt3
9QtK4CmDvRNg5FR9V6o9xFVBbpd89vEkoxIKbTC0oxkbJccTn7bNa4Wha2ZV3J9E
pOz4GrkNY+vOl9Qh7a74ERrXJSM3RPhiNu3CrweI7SLpmWOG7ZqFIUgiZIB5v2HB
IHAZzAUIP6ONGvxNhYnwxphBzGvAyJ5TX2hfSowP2Lc09DqM+pW8cuephMjBAdZj
54xWH6ibxw9yamyrucmpZ8uWwZc9AgMBAAGjggKlMIICoTAdBgNVHQ4EFgQUeLLG
zzhgNQCLE1Ng5Lp95hYuZnQwHwYDVR0jBBgwFoAUJdY+COq+fPpnhdTB1tNBFt4V
s9wwDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjhGMkQwLzdGNEE5OEVBNkUwNTExRTg5QzBENkU0QkY4QUVBMjI4L0pkWS1D
T3EtZlBwbmhkVEIxdE5CRnQ0VnM5dy5jcmwwZwYIKwYBBQUHAQEEWzBZMFcGCCsG
AQUFBzAChktyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hZnJp
bmljL0pkWS1DT3EtZlBwbmhkVEIxdE5CRnQ0VnM5dy5jZXIwTwYDVR0gAQH/BEUw
QzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5p
Yy5uZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEF
BQcwC4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJl
cl9yZXBvc2l0b3J5L0YzNjhGMkQwLzdGNEE5OEVBNkUwNTExRTg5QzBENkU0QkY4
QUVBMjI4L0VFNUJGQjVFODA3NzExRUU5OTgyOTM3NDRBRDlFNkZDLnJvYTA1Bggr
BgEFBQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54
bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBACaxXQwDQYJKoZIhvcNAQEL
BQADggEBACGGmZJAlKwzrMwtAEmaWW8nLeA90ync6FB9fzhG323DLCdmhu7viLbQ
NHv+pm245wTznJk+vouIEJmR9p0rVx3x2BabZIaiLUexRW+oCuZf9cdb3qubs10X
QyDMch7Feqk5nlssUjn1mAs+alkEp8cQvIsz6L30Pf5cQOGK6IRrjw6t9ybIiMmN
3968IdrZAQuyplpWA5SU17+gpWn0Y+Eb7h4scwe8poUfaPJJMm91Fowwm9XZuQdi
y5NhBjf5vveMPJ7Dv75u6SNb2T+yUuC0P7SnhtLg10qluP1IRLvsj+6fWkiBNgEc
VUYo6NYrFKcmzncLQwN7aPhxDX5VGOc=
-----END CERTIFICATE-----
Generated at Sun May 11 17:22:49 2025 by rpki-client