Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F2F029D6977F11EFB34EB164762E951A.roa
File: F2F029D6977F11EFB34EB164762E951A.roa (raw, json)
Hash identifier: Fe8qx6X/92aujpVEpNAoiNrWtR/tEUtXQQ38qowbwQY=
Subject key identifier: 14:8B:5F:FA:15:A3:AD:B0:09:60:8A:34:D7:F1:CD:C8:8C:A9:22:D3
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01049A
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F2F029D6977F11EFB34EB164762E951A.roa
Signing time: Thu 31 Oct 2024 12:02:07 +0000
ROA not before: Thu 31 Oct 2024 12:02:00 +0000
ROA not after: Fri 27 Dec 2024 12:02:00 +0000
asID: 20473
IP address blocks: 154.197.32.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 66714 (0x1049a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Oct 31 12:02:00 2024 GMT
Not After : Dec 27 12:02:00 2024 GMT
Subject: CN=672371be-cf0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:5c:97:94:df:74:1f:22:2c:94:60:f5:15:ab:
98:9f:46:0b:03:b4:08:1e:71:2e:40:09:cf:f6:41:
fe:ea:44:e5:b3:6d:60:8c:0b:5d:18:5f:bc:13:08:
48:aa:c7:94:cd:9a:b2:80:19:cf:0a:84:b7:2d:83:
a0:04:a0:ed:24:49:88:c7:60:56:55:52:b0:36:13:
f0:0d:d3:e5:e6:bd:9f:bb:63:b2:1f:a2:e6:77:85:
0a:86:f9:ec:50:33:e5:e2:10:b2:1e:4c:55:93:fd:
d5:e3:fb:99:e1:17:15:4c:03:46:ba:28:4e:95:48:
76:31:de:4d:b1:ad:0b:6a:7e:c7:33:53:e0:80:e1:
53:8d:7a:72:9c:35:37:5f:e3:b7:c5:01:35:c7:3c:
09:b6:a4:44:93:73:e9:78:9b:bd:cc:45:37:11:de:
f1:d1:06:f3:32:c3:e9:71:49:de:f3:db:7d:bf:56:
5c:f5:af:0a:26:ab:8a:c5:23:e1:ac:72:91:b8:7d:
8f:bf:07:9d:3b:fa:6a:d4:80:3a:50:5c:3e:41:cc:
b4:a9:89:f7:2c:75:f2:64:09:fe:84:e8:93:ee:71:
10:0e:43:06:74:3a:76:3d:4e:3d:84:6d:2e:3a:f8:
0f:2c:43:fb:4e:d7:c7:df:fe:b9:c5:ed:e9:15:cb:
1b:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:8B:5F:FA:15:A3:AD:B0:09:60:8A:34:D7:F1:CD:C8:8C:A9:22:D3
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F2F029D6977F11EFB34EB164762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.197.32.0/24
Signature Algorithm: sha256WithRSAEncryption
c4:27:95:b8:7a:9e:17:a1:84:7b:a8:c2:cf:43:cf:de:cd:91:
00:7d:ac:5e:6f:62:52:aa:c1:73:d3:87:f3:60:b5:73:c1:22:
25:ef:7e:eb:81:b3:74:60:89:bd:be:82:63:c8:39:6d:dc:37:
10:42:e9:c8:51:1b:7b:cc:46:67:a9:9e:f8:91:7b:27:0e:cb:
c1:43:ab:32:09:84:c5:67:c4:ae:93:bd:7c:85:96:41:81:9a:
62:aa:06:2c:7d:17:54:b3:72:99:ac:d7:9f:7b:56:42:6f:40:
b1:eb:54:23:8f:da:b1:74:18:8a:b4:fc:17:6d:73:02:5d:63:
a7:a5:6c:6f:6b:91:7f:8b:a2:3e:23:15:7b:f2:d2:c6:8e:54:
06:ab:d4:aa:f7:59:f5:22:2e:32:76:94:73:0a:31:7b:ee:44:
d8:9e:ab:6a:29:7d:1d:e3:b7:9a:68:83:61:9d:22:f1:d2:c8:
4a:70:e6:7e:26:c9:de:b2:03:da:2a:08:d4:7a:81:f7:b0:8d:
f6:dd:ae:05:10:02:4c:2e:21:10:b2:c4:03:65:8a:16:1d:63:
b2:d0:1f:15:e4:d8:98:11:dd:bf:6a:7d:46:43:5d:b7:ff:f9:
42:a7:67:2d:61:b8:2c:e6:25:7b:7e:ef:b7:b6:0d:f2:98:bd:
04:94:c7:02
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAQSaMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQxMDMxMTIwMjAwWhcNMjQxMjI3MTIwMjAwWjAYMRYw
FAYDVQQDEw02NzIzNzFiZS1jZjBlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAuFyXlN90HyIslGD1FauYn0YLA7QIHnEuQAnP9kH+6kTls21gjAtdGF+8
EwhIqseUzZqygBnPCoS3LYOgBKDtJEmIx2BWVVKwNhPwDdPl5r2fu2OyH6Lmd4UK
hvnsUDPl4hCyHkxVk/3V4/uZ4RcVTANGuihOlUh2Md5Nsa0Lan7HM1PggOFTjXpy
nDU3X+O3xQE1xzwJtqREk3PpeJu9zEU3Ed7x0QbzMsPpcUne89t9v1Zc9a8KJquK
xSPhrHKRuH2PvwedO/pq1IA6UFw+Qcy0qYn3LHXyZAn+hOiT7nEQDkMGdDp2PU49
hG0uOvgPLEP7TtfH3/65xe3pFcsbTQIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFBSL
X/oVo62wCWCKNNfxzciMqSLTMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC9GMkYwMjlENjk3N0YxMUVGQjM0RUIxNjQ3NjJFOTUxQS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmsUgMA0GCSqGSIb3DQEB
CwUAA4IBAQDEJ5W4ep4XoYR7qMLPQ8/ezZEAfaxeb2JSqsFz04fzYLVzwSIl737r
gbN0YIm9voJjyDlt3DcQQunIURt7zEZnqZ74kXsnDsvBQ6syCYTFZ8Suk718hZZB
gZpiqgYsfRdUs3KZrNefe1ZCb0Cx61Qjj9qxdBiKtPwXbXMCXWOnpWxva5F/i6I+
IxV78tLGjlQGq9Sq91n1Ii4ydpRzCjF77kTYnqtqKX0d47eaaINhnSLx0shKcOZ+
JsnesgPaKgjUeoH3sI323a4FEAJMLiEQssQDZYoWHWOy0B8V5NiYEd2/an1GQ123
//lCp2ctYbgs5iV7fu+3tg3ymL0ElMcC
-----END CERTIFICATE-----
Generated at Sun Feb 16 15:43:24 2025 by rpki-client