Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/042825DA8A8611EEA44218694AD9E6FC.roa
File: 042825DA8A8611EEA44218694AD9E6FC.roa (raw, json)
Hash identifier: onAHkE5HpikmHSz85cnoQAv4LpjgIVD84J7+x0WWlo8=
Subject key identifier: 0D:BE:B9:AB:40:0C:30:25:1D:AF:4D:17:32:F6:73:20:56:3A:45:57
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 5302
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/042825DA8A8611EEA44218694AD9E6FC.roa
Signing time: Fri 24 Nov 2023 04:57:50 +0000
ROA not before: Fri 24 Nov 2023 04:57:46 +0000
ROA not after: Tue 26 Dec 2023 04:57:46 +0000
asID: 62240
IP address blocks: 154.194.118.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 21250 (0x5302)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 24 04:57:46 2023 GMT
Not After : Dec 26 04:57:46 2023 GMT
Subject: CN=65602d4d-ffe2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:b5:a9:dd:e9:c5:1f:4f:61:26:93:ab:71:3e:
5f:8c:ad:a3:c4:fc:38:cf:d5:94:fd:03:c0:d1:27:
71:5c:60:13:96:82:31:a6:7e:d6:ed:73:10:5b:1d:
b5:c5:8e:d7:8a:b3:0b:7b:0c:90:5c:35:c2:5f:ea:
96:9e:c2:11:a8:1b:c8:c3:ef:49:3a:80:97:90:69:
07:66:88:7b:be:e8:cb:b7:f8:c4:8e:59:5f:fd:53:
ef:49:82:d0:a5:47:fd:49:6a:b7:db:56:be:8c:ae:
5f:04:69:fe:7e:f8:97:6a:77:ba:89:b9:c7:23:95:
1f:f8:8f:9e:27:cf:af:be:15:3a:75:f0:9e:7f:c7:
22:95:97:6b:90:0d:ec:ce:ba:93:28:a2:3c:66:7e:
21:7d:18:5e:21:49:97:7c:84:d4:95:a0:bc:b1:82:
3e:3e:3e:04:9f:60:bf:64:a2:fc:f6:8b:04:be:22:
a7:88:f5:72:e8:87:57:78:64:b3:fa:d5:4a:20:f5:
92:11:c6:f9:44:e9:5e:69:38:42:9c:6c:79:99:67:
2d:a8:8b:e0:57:df:ec:65:4e:ed:db:97:68:66:58:
10:6d:a3:9e:65:40:30:fa:96:f4:bf:1e:09:6d:35:
8c:7f:5e:33:b9:bc:61:21:aa:a1:fc:f7:f4:21:63:
3d:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:BE:B9:AB:40:0C:30:25:1D:AF:4D:17:32:F6:73:20:56:3A:45:57
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/042825DA8A8611EEA44218694AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.194.118.0/24
Signature Algorithm: sha256WithRSAEncryption
34:8d:ae:2c:61:b0:eb:fe:4a:93:c0:3c:d8:ac:c1:41:f5:00:
0c:fd:5e:10:91:8e:3e:9c:89:b6:d0:60:38:10:1a:90:22:09:
90:7a:f3:45:85:6f:91:cf:3e:f5:c8:5d:e8:4e:9b:38:aa:bb:
7b:26:fd:ad:37:73:37:0b:10:b6:63:93:dc:d4:8a:65:c7:3e:
b5:2d:25:3a:05:4b:e2:3e:12:35:17:03:96:57:fb:c2:b8:62:
e7:6b:4c:61:3a:70:3b:32:c0:ff:43:1e:7f:83:3f:7e:25:95:
be:7a:61:83:92:66:dc:cd:d8:72:48:65:04:7d:57:41:59:7f:
80:fd:12:1a:97:c1:2c:23:60:8c:57:3e:f8:b2:eb:1b:de:5a:
55:a9:f2:3a:bb:ee:fd:a3:60:6c:f4:65:46:10:e8:e1:98:01:
8c:ad:da:51:48:78:43:c0:1f:fb:e1:0f:f3:cf:90:8a:0a:81:
37:93:46:ab:ae:7b:07:99:5a:cc:1c:69:e4:a2:b0:ed:54:de:
54:f7:3d:dd:d0:36:ba:16:25:a2:e7:13:85:fe:77:64:3d:c3:
df:25:6e:10:f2:16:dd:c2:46:76:47:bb:77:28:5c:40:d7:e5:
43:cd:e2:7a:28:7c:48:2c:3b:e9:e5:3b:db:f7:63:62:92:fa:
50:f0:70:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 9 20:53:42 2025 by rpki-client