Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/80831A6E46A411F0BA960EADDAE4EC9C.roa
File: 80831A6E46A411F0BA960EADDAE4EC9C.roa (raw, json)
Hash identifier: YiPIzSNwoOxqb2psLIky94WFeHNV+495I3V6yQZsxnU=
Subject key identifier: 35:84:DB:C0:B7:6F:58:3F:63:C4:8C:2E:B5:AF:F6:A2:97:C7:75:4D
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 018608
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/80831A6E46A411F0BA960EADDAE4EC9C.roa
Signing time: Wed 11 Jun 2025 09:14:40 +0000
ROA not before: Wed 11 Jun 2025 09:14:34 +0000
ROA not after: Mon 16 Jun 2025 09:14:34 +0000
asID: 54600
IP address blocks: 154.91.48.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 99848 (0x18608)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jun 11 09:14:34 2025 GMT
Not After : Jun 16 09:14:34 2025 GMT
Subject: CN=68494900-a44f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:55:2e:6b:d0:77:ba:08:c6:29:e5:e9:ca:d6:
43:0f:5c:50:73:88:b6:7e:07:9c:c9:ad:18:3a:72:
fb:4f:6b:79:0f:3c:40:33:79:19:c7:c2:52:f2:00:
f2:ed:69:30:43:6c:96:dc:ba:61:bc:81:ab:91:ab:
ac:91:7f:94:98:d8:b3:7e:b0:b6:aa:0d:cb:91:26:
44:fd:f9:5b:8a:0d:d4:49:40:82:2a:c0:2b:7d:60:
fe:d5:ed:18:93:5b:c0:74:24:16:d2:c5:ba:d0:fe:
ad:2a:ba:7b:b7:86:cc:8a:c5:af:e2:11:2e:e2:33:
26:35:08:cd:6e:42:0d:b8:3f:06:09:3a:1e:bf:25:
a4:de:31:c7:00:55:47:af:fa:35:b2:fb:32:cc:ea:
b4:6d:d0:1f:0e:d7:b0:31:bb:18:5a:33:82:80:cb:
a7:4d:33:3c:d9:9f:3f:c5:4d:c5:77:6e:47:e5:4b:
57:46:c6:92:d6:d9:57:a1:32:3d:1d:c3:db:93:ca:
ea:f1:be:9f:33:53:67:08:ba:4a:52:8c:22:c2:af:
8d:68:dc:03:4b:05:26:57:a4:22:6b:61:45:44:2b:
8f:54:af:e8:13:b8:35:e9:52:e6:a0:dc:82:a2:2d:
c1:64:0c:25:23:9b:55:56:ba:58:80:34:12:7e:8a:
ce:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:84:DB:C0:B7:6F:58:3F:63:C4:8C:2E:B5:AF:F6:A2:97:C7:75:4D
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/80831A6E46A411F0BA960EADDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.91.48.0/20
Signature Algorithm: sha256WithRSAEncryption
b6:f0:ea:51:39:28:04:b6:82:a1:4b:29:e6:af:59:aa:39:4c:
43:e5:46:a9:8d:40:42:7e:80:c5:e6:29:4c:39:d7:03:61:c0:
6a:8e:73:49:86:78:63:9c:09:25:a5:d1:97:1d:01:13:42:77:
8c:fd:69:40:1d:2c:ff:5b:44:a3:fe:b2:5e:9b:0a:46:bb:6d:
d7:cf:5c:ac:ed:6c:87:3e:92:bb:e4:9f:39:6f:d9:1a:9d:67:
86:d5:e2:06:76:d8:21:84:0b:e2:f8:3b:fd:ca:60:b0:ec:83:
e7:25:18:ee:f9:5e:59:6e:74:e7:bc:de:22:f7:33:77:f4:e0:
65:a2:ea:10:c1:27:c9:8e:53:a7:5a:4f:c7:2d:98:b5:6a:c6:
9a:95:24:9f:df:87:c4:c2:da:30:14:1b:96:f9:ec:5d:d5:e9:
0b:a5:fc:05:e8:1c:89:44:f0:03:9d:86:15:cd:00:b2:d1:b0:
75:1f:d5:8e:a3:73:4e:fb:56:c8:35:6d:40:20:ca:68:24:4d:
9d:df:32:74:ce:a1:04:11:35:c4:8b:07:c9:b6:01:93:af:10:
a8:10:53:2d:02:f9:ce:82:ee:61:dc:2a:b3:cf:8b:53:38:fb:
56:5d:6f:cd:f7:17:3e:eb:8d:60:ba:e8:58:9f:71:f6:8b:94:
5b:88:72:c1
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAYYIMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjUwNjExMDkxNDM0WhcNMjUwNjE2MDkxNDM0WjAYMRYw
FAYDVQQDEw02ODQ5NDkwMC1hNDRmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEA01Uua9B3ugjGKeXpytZDD1xQc4i2fgecya0YOnL7T2t5DzxAM3kZx8JS
8gDy7WkwQ2yW3LphvIGrkauskX+UmNizfrC2qg3LkSZE/flbig3USUCCKsArfWD+
1e0Yk1vAdCQW0sW60P6tKrp7t4bMisWv4hEu4jMmNQjNbkINuD8GCToevyWk3jHH
AFVHr/o1svsyzOq0bdAfDtewMbsYWjOCgMunTTM82Z8/xU3Fd25H5UtXRsaS1tlX
oTI9HcPbk8rq8b6fM1NnCLpKUowiwq+NaNwDSwUmV6Qia2FFRCuPVK/oE7g16VLm
oNyCoi3BZAwlI5tVVrpYgDQSforOcQIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFDWE
28C3b1g/Y8SMLrWv9qKXx3VNMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC84MDgzMUE2RTQ2QTQxMUYwQkE5NjBFQUREQUU0RUM5Qy5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQEmlswMA0GCSqGSIb3DQEB
CwUAA4IBAQC28OpROSgEtoKhSynmr1mqOUxD5UapjUBCfoDF5ilMOdcDYcBqjnNJ
hnhjnAklpdGXHQETQneM/WlAHSz/W0Sj/rJemwpGu23Xz1ys7WyHPpK75J85b9ka
nWeG1eIGdtghhAvi+Dv9ymCw7IPnJRju+V5ZbnTnvN4i9zN39OBlouoQwSfJjlOn
Wk/HLZi1asaalSSf34fEwtowFBuW+exd1ekLpfwF6ByJRPADnYYVzQCy0bB1H9WO
o3NO+1bINW1AIMpoJE2d3zJ0zqEEETXEiwfJtgGTrxCoEFMtAvnOgu5h3Cqzz4tT
OPtWXW/N9xc+641guuhYn3H2i5RbiHLB
-----END CERTIFICATE-----
Generated at Mon Jun 16 14:43:36 2025 by rpki-client