Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/04BFE4F0F2BE11EFB6790574762E951A.roa
File: 04BFE4F0F2BE11EFB6790574762E951A.roa (raw, json)
Hash identifier: Q5nd4SghYh9ep+8ysdCQLzEpBYNeK6frlxo9mMLCavo=
Subject key identifier: 70:31:76:3B:52:3F:4A:E5:38:D4:F1:F5:B9:F1:65:8F:63:53:07:D8
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 015C34
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/04BFE4F0F2BE11EFB6790574762E951A.roa
Signing time: Mon 24 Feb 2025 14:45:42 +0000
ROA not before: Mon 24 Feb 2025 14:45:36 +0000
ROA not after: Sat 29 Mar 2025 14:45:36 +0000
asID: 203020
IP address blocks: 154.223.186.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 89140 (0x15c34)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Feb 24 14:45:36 2025 GMT
Not After : Mar 29 14:45:36 2025 GMT
Subject: CN=67bc8616-00ab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:7c:ef:aa:65:f4:5a:15:42:3a:50:69:87:e3:
28:b7:77:37:98:e7:1b:52:21:ba:cb:60:7a:d2:95:
97:a3:25:69:39:1f:6d:d4:81:19:67:d1:a3:cb:3c:
43:3f:db:a4:8d:c8:d2:2e:83:d7:d4:a5:03:d9:67:
25:97:b0:17:48:1c:ce:66:05:19:d5:3a:89:2a:52:
f4:9d:73:3d:dc:c2:3d:7a:5f:68:5f:0a:32:7a:5c:
27:2b:77:e5:da:23:3e:e5:a1:90:2b:a3:1b:cf:f6:
47:89:43:cb:bb:38:d9:84:05:5b:e8:64:bd:af:85:
e7:1e:d4:21:a7:2c:c8:8f:fa:68:8f:b7:73:0d:83:
a4:ad:19:0b:8a:3b:d0:02:fe:5d:cd:0c:15:bf:c1:
0f:85:4a:86:49:ff:0e:3e:13:3e:1e:64:2d:89:de:
56:01:21:e4:c6:4f:44:a5:5f:bc:ee:84:9a:d9:4b:
fe:91:7c:63:75:d4:6d:9e:51:56:da:03:a1:50:17:
39:7e:33:fa:bc:e0:ec:fd:a3:23:22:fe:34:da:7a:
b9:7d:f9:a7:4e:11:98:cd:6b:14:da:66:5e:00:22:
82:72:ae:48:75:07:46:b3:a9:f3:cb:d6:48:b8:02:
95:c8:6d:71:81:0b:9a:8d:b7:d8:39:ea:cc:57:42:
10:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:31:76:3B:52:3F:4A:E5:38:D4:F1:F5:B9:F1:65:8F:63:53:07:D8
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/04BFE4F0F2BE11EFB6790574762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.223.186.0/24
Signature Algorithm: sha256WithRSAEncryption
7e:27:c1:67:18:38:ad:8e:bb:f0:84:b3:9a:ae:4e:93:2f:b1:
6d:ab:37:c3:ca:75:ff:94:02:e2:1a:1b:7b:6c:3b:37:97:4e:
b8:3e:ad:b1:53:f8:e3:9a:2f:f1:35:29:b7:ff:ad:1c:62:6f:
0a:73:4e:bf:bb:2c:0a:a0:14:08:2d:92:09:f1:2d:a3:fd:2c:
23:4f:9c:0b:43:df:c0:e5:46:b8:2e:d8:b9:37:06:3b:e9:b9:
ab:12:4a:fd:95:cb:3a:bf:f8:a6:89:3c:fd:41:5c:1f:b6:32:
da:d3:41:a1:14:c8:f0:17:35:dc:a7:31:70:aa:c7:62:db:1c:
73:57:fe:33:3f:7f:11:54:3a:0c:56:08:00:db:83:f8:fe:49:
4c:6e:2e:f1:97:62:66:b0:fb:1d:f7:f6:28:3a:55:ae:35:0d:
3b:ed:85:71:21:78:ae:a3:2a:ab:2d:da:f2:ab:0e:a4:9a:f3:
ae:4e:1d:4c:63:e3:24:3f:fc:78:27:2c:51:50:47:b4:db:5a:
6c:06:d5:e5:a8:cf:45:cb:a6:2d:81:8a:90:cf:64:82:fa:a7:
41:e0:43:e7:50:04:06:6a:87:40:fc:78:ee:2d:6e:87:d9:7d:
48:6c:97:4d:59:e3:fa:f7:bc:75:05:49:1f:3a:38:e3:a5:58:
01:68:2c:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 12 05:05:45 2025 by rpki-client