Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36E8BF7/EEE6EFAC0AA211EEAA1E21434AD9E6FC/97FBCD6C376511EEAC09BF394AD9E6FC.roa
File: 97FBCD6C376511EEAC09BF394AD9E6FC.roa (raw, json)
Hash identifier: 1V/8nCSj4jD+zRc6Zk0qi4Zw9OLG0ax5vKxu/+qSMS4=
Subject key identifier: DC:E6:27:99:32:E2:F4:1E:E4:F0:62:27:24:7C:C6:E4:FD:23:BB:36
Certificate issuer: /CN=F36E8BF7AF/serialNumber=C733ED1A767420EEF53E056187810BE3934AA520
Certificate serial: 46
Authority key identifier: C7:33:ED:1A:76:74:20:EE:F5:3E:05:61:87:81:0B:E3:93:4A:A5:20
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/xzPtGnZ0IO71PgVhh4EL45NKpSA.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36E8BF7/EEE6EFAC0AA211EEAA1E21434AD9E6FC/97FBCD6C376511EEAC09BF394AD9E6FC.roa
Signing time: Thu 10 Aug 2023 10:06:38 +0000
ROA not before: Thu 10 Aug 2023 10:06:34 +0000
ROA not after: Fri 14 Jun 2024 10:06:34 +0000
asID: 37496
IP address blocks: 196.216.235.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 70 (0x46)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36E8BF7AF
Validity
Not Before: Aug 10 10:06:34 2023 GMT
Not After : Jun 14 10:06:34 2024 GMT
Subject: CN=64d4b6ad-6cfa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:a8:ef:f0:29:8e:07:46:4e:ca:49:11:41:8e:
96:b1:e4:c5:98:8f:d6:61:a7:5d:79:13:b5:51:46:
99:2f:fa:a8:39:c0:8a:13:6d:cc:f7:81:1a:7b:ed:
cc:6c:0e:27:a2:80:40:d2:b2:2c:c2:1e:a4:ae:49:
81:cc:0c:92:d0:ae:c0:fe:93:1b:46:8a:70:99:44:
76:ef:77:43:a3:45:32:19:6b:da:1d:ab:91:06:ac:
9f:2a:0c:dd:29:e4:25:00:5a:d7:6b:b1:f8:d9:2d:
e4:d7:f8:97:c2:4b:3e:9f:52:13:e8:79:c8:d2:ad:
bd:6c:a2:e7:17:71:04:3d:c9:60:f7:a7:22:a4:10:
7c:45:6c:27:55:df:64:b5:88:ee:97:2e:b1:ae:b7:
ea:0e:01:56:72:ed:56:2d:4f:c6:9a:d4:30:f9:42:
20:3e:9d:76:35:c7:79:20:ed:82:91:9a:56:87:0b:
cd:24:8e:d0:b9:93:43:27:1d:5d:3c:a5:33:7f:f8:
fd:a2:1c:83:a0:7e:bc:4e:1d:33:5e:f8:5a:6e:d6:
90:55:bd:7d:d4:d2:62:66:4b:15:f0:0e:96:dc:ce:
e7:99:e1:aa:45:f6:73:ce:f8:be:9d:3e:94:d3:df:
e7:c0:07:00:27:56:57:da:53:92:1c:a8:4e:ee:86:
62:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:E6:27:99:32:E2:F4:1E:E4:F0:62:27:24:7C:C6:E4:FD:23:BB:36
X509v3 Authority Key Identifier:
keyid:C7:33:ED:1A:76:74:20:EE:F5:3E:05:61:87:81:0B:E3:93:4A:A5:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36E8BF7/EEE6EFAC0AA211EEAA1E21434AD9E6FC/xzPtGnZ0IO71PgVhh4EL45NKpSA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/xzPtGnZ0IO71PgVhh4EL45NKpSA.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36E8BF7/EEE6EFAC0AA211EEAA1E21434AD9E6FC/97FBCD6C376511EEAC09BF394AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
196.216.235.0/24
Signature Algorithm: sha256WithRSAEncryption
08:bc:2d:34:85:c9:fe:1a:ee:75:df:59:90:03:44:dd:41:0b:
e6:fb:04:45:b7:f9:2c:5f:22:a3:0f:d3:e6:c1:48:2d:4f:6b:
ec:22:20:69:6d:c6:5e:b6:38:7a:f1:bc:6c:46:6b:02:48:84:
f6:47:3a:87:e4:94:af:f5:3e:03:f0:c8:a6:fb:d6:98:63:ef:
fd:19:32:07:92:2e:52:b7:76:c5:31:34:0b:82:66:72:a7:4a:
14:69:3a:75:52:8f:3c:6a:cc:ad:fc:8e:8d:d9:49:66:c0:08:
4b:79:10:b5:25:b2:18:8b:1b:37:bb:95:19:12:cd:6e:dd:56:
19:98:f8:c4:f9:b9:17:ef:fb:79:0c:b9:b8:34:0d:57:f9:76:
03:70:17:0d:c8:35:27:10:74:e9:16:84:c1:e2:8b:e0:fe:b5:
d9:ff:95:75:ee:ba:e5:e3:14:b2:6b:07:47:a7:8c:6b:42:08:
85:0d:53:ca:da:1f:54:e5:43:b8:c7:24:cc:7d:99:1d:ba:d1:
9a:04:8e:12:56:0a:a3:4d:a3:de:93:59:96:c8:6d:4a:28:82:
c4:37:44:76:3a:36:da:cd:45:c7:ab:6a:d6:f1:57:0a:79:ce:
ce:ad:ef:60:b4:3c:ee:a8:3c:4d:be:5f:58:b4:dd:d9:cf:fe:
17:13:f8:9f
-----BEGIN CERTIFICATE-----
MIIFgjCCBGqgAwIBAgIBRjANBgkqhkiG9w0BAQsFADBIMRMwEQYDVQQDEwpGMzZF
OEJGN0FGMTEwLwYDVQQFEyhDNzMzRUQxQTc2NzQyMEVFRjUzRTA1NjE4NzgxMEJF
MzkzNEFBNTIwMB4XDTIzMDgxMDEwMDYzNFoXDTI0MDYxNDEwMDYzNFowGDEWMBQG
A1UEAxMNNjRkNGI2YWQtNmNmYTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC
ggEBAM2o7/ApjgdGTspJEUGOlrHkxZiP1mGnXXkTtVFGmS/6qDnAihNtzPeBGnvt
zGwOJ6KAQNKyLMIepK5JgcwMktCuwP6TG0aKcJlEdu93Q6NFMhlr2h2rkQasnyoM
3SnkJQBa12ux+Nkt5Nf4l8JLPp9SE+h5yNKtvWyi5xdxBD3JYPenIqQQfEVsJ1Xf
ZLWI7pcusa636g4BVnLtVi1PxprUMPlCID6ddjXHeSDtgpGaVocLzSSO0LmTQycd
XTylM3/4/aIcg6B+vE4dM174Wm7WkFW9fdTSYmZLFfAOltzO55nhqkX2c874vp0+
lNPf58AHACdWV9pTkhyoTu6GYtkCAwEAAaOCAqUwggKhMB0GA1UdDgQWBBTc5ieZ
MuL0HuTwYickfMbk/SO7NjAfBgNVHSMEGDAWgBTHM+0adnQg7vU+BWGHgQvjk0ql
IDAOBgNVHQ8BAf8EBAMCB4AwgZUGA1UdHwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6
Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvbWVtYmVyX3JlcG9zaXRvcnkv
RjM2RThCRjcvRUVFNkVGQUMwQUEyMTFFRUFBMUUyMTQzNEFEOUU2RkMveHpQdEdu
WjBJTzcxUGdWaGg0RUw0NU5LcFNBLmNybDBnBggrBgEFBQcBAQRbMFkwVwYIKwYB
BQUHMAKGS3JzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L2Fmcmlu
aWMveHpQdEduWjBJTzcxUGdWaGg0RUw0NU5LcFNBLmNlcjBPBgNVHSABAf8ERTBD
MEEGCCsGAQUFBw4CMDUwMwYIKwYBBQUHAgEWJ2h0dHBzOi8vcnBraS5hZnJpbmlj
Lm5ldC9wb2xpY3kvQ1BTLnBkZjCB2wYIKwYBBQUHAQsEgc4wgcswgZEGCCsGAQUF
BzALhoGEcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvbWVtYmVy
X3JlcG9zaXRvcnkvRjM2RThCRjcvRUVFNkVGQUMwQUEyMTFFRUFBMUUyMTQzNEFE
OUU2RkMvOTdGQkNENkMzNzY1MTFFRUFDMDlCRjM5NEFEOUU2RkMucm9hMDUGCCsG
AQUFBzANhilodHRwczovL3JyZHAuYWZyaW5pYy5uZXQvbm90aWZpY2F0aW9uLnht
bDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMTY6zANBgkqhkiG9w0BAQsF
AAOCAQEACLwtNIXJ/hrudd9ZkANE3UEL5vsERbf5LF8iow/T5sFILU9r7CIgaW3G
XrY4evG8bEZrAkiE9kc6h+SUr/U+A/DIpvvWmGPv/RkyB5IuUrd2xTE0C4JmcqdK
FGk6dVKPPGrMrfyOjdlJZsAIS3kQtSWyGIsbN7uVGRLNbt1WGZj4xPm5F+/7eQy5
uDQNV/l2A3AXDcg1JxB06RaEweKL4P612f+Vde665eMUsmsHR6eMa0IIhQ1Tytof
VOVDuMckzH2ZHbrRmgSOElYKo02j3pNZlshtSiiCxDdEdjo22s1Fx6tq1vFXCnnO
zq3vYLQ87qg8Tb5fWLTd2c/+FxP4nw==
-----END CERTIFICATE-----
Generated at Sat Apr 5 07:49:07 2025 by rpki-client