Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/80F8E412107911F0B622164D762E951A.roa
File: 80F8E412107911F0B622164D762E951A.roa (raw, json)
Hash identifier: oAa0e7zJhYNVzj91bzzWWnkZRAmRxvpnGeBfn4brlnM=
Subject key identifier: 10:11:B1:22:81:56:93:E1:9A:D1:4C:94:EC:80:89:AB:39:6D:BD:BC
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 017773
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/80F8E412107911F0B622164D762E951A.roa
Signing time: Thu 03 Apr 2025 10:50:49 +0000
ROA not before: Thu 03 Apr 2025 10:50:45 +0000
ROA not after: Mon 14 Apr 2025 10:50:45 +0000
asID: 5065
IP address blocks: 154.83.203.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 96115 (0x17773)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 3 10:50:45 2025 GMT
Not After : Apr 14 10:50:45 2025 GMT
Subject: CN=67ee6809-3b9b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:b9:c1:69:6a:d0:ff:f5:c1:3d:3b:1b:10:f9:
f7:72:43:84:95:20:17:da:9b:17:1b:59:ec:05:57:
28:2c:4f:42:9a:b2:45:8c:9c:0c:f2:2b:fd:65:44:
ee:c6:34:a4:07:0a:f7:ae:07:08:5f:06:5f:6e:aa:
11:50:c7:de:61:2e:0b:14:2a:51:33:8f:d2:01:51:
e0:ec:b8:93:77:0d:d6:b0:83:1d:9a:d5:65:dc:1c:
f7:f8:ff:1a:53:62:23:76:2d:1f:1d:2b:3e:57:55:
01:7e:7e:c7:33:35:2b:d0:28:9d:04:c3:57:89:eb:
41:4d:b2:e6:ea:78:90:e6:9b:3a:69:6b:b4:60:1b:
06:50:e8:37:af:06:45:b3:57:bb:54:e9:8f:72:3b:
90:64:70:a7:9a:52:3c:b2:8c:78:a0:82:c5:6a:28:
ba:4f:9b:af:ac:bc:b6:c7:89:3c:df:15:e1:09:bf:
d4:33:e9:60:42:94:da:a2:65:22:a2:06:c0:be:92:
b8:6a:af:60:a5:aa:63:56:f9:6a:5c:d7:68:3e:af:
12:c8:f1:9b:4e:8a:95:89:ca:91:77:c3:78:5d:e9:
37:04:a0:b1:07:98:10:dd:f2:62:0b:a1:44:f0:4a:
61:74:49:30:61:a3:b1:54:1e:17:5f:ca:cb:c7:15:
50:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:11:B1:22:81:56:93:E1:9A:D1:4C:94:EC:80:89:AB:39:6D:BD:BC
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/80F8E412107911F0B622164D762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.83.203.0/24
Signature Algorithm: sha256WithRSAEncryption
50:23:8f:d8:13:97:00:c1:f4:c4:54:71:0d:58:72:0b:e9:63:
2b:b0:25:6d:3a:e8:42:f8:85:d1:a4:45:4f:64:68:75:2f:73:
b7:2d:a2:c2:c9:13:e7:b4:49:83:14:1a:40:27:79:9e:7a:78:
05:c0:45:f3:05:40:5c:38:4c:89:8f:77:a5:a5:3b:24:90:d1:
76:3f:dc:c7:a3:41:ca:95:65:60:3a:e1:0c:04:35:f5:17:7f:
77:b0:8e:16:31:cc:8f:7b:97:cd:8e:b7:8d:26:3f:fc:0f:6c:
a2:13:a5:c0:08:ae:f2:60:0a:f7:2a:cd:1e:8d:25:0a:e3:18:
fa:94:f9:c8:2d:85:05:2e:19:d3:8a:fe:d3:ee:0d:b1:fd:a5:
68:06:3c:37:4a:a8:a3:20:e8:de:95:50:20:b9:8f:cd:3c:96:
49:e8:10:88:19:a7:d2:79:95:b0:3d:a2:9b:37:a1:a0:0c:2c:
89:16:9a:97:e3:7b:8a:94:dd:a7:86:2c:37:d6:37:cc:fe:ee:
e4:72:9d:9a:1c:7f:fa:be:76:f5:92:28:dd:93:a8:07:61:bc:
fb:64:f0:ab:30:1f:c4:2c:d8:98:50:db:e3:a9:c4:38:d1:82:
d1:a3:78:f5:e4:56:84:c3:eb:3d:ac:d3:c1:19:a2:94:b7:48:
b0:26:56:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 23:04:18 2025 by rpki-client