Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/07B81288F4E711EFB50C0253762E951A.roa
File: 07B81288F4E711EFB50C0253762E951A.roa (raw, json)
Hash identifier: AT3b6DnKy5yuzV/UUK9Qv9aKsaIG6zazPLf7GYv9ihA=
Subject key identifier: 76:EA:5D:00:FC:A9:35:91:30:61:6D:4C:0B:0B:CE:73:66:EE:DB:B6
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0166FF
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/07B81288F4E711EFB50C0253762E951A.roa
Signing time: Thu 27 Feb 2025 08:44:18 +0000
ROA not before: Thu 27 Feb 2025 08:44:14 +0000
ROA not after: Wed 26 Mar 2025 08:44:14 +0000
asID: 62240
IP address blocks: 154.195.190.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 91903 (0x166ff)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Feb 27 08:44:14 2025 GMT
Not After : Mar 26 08:44:14 2025 GMT
Subject: CN=67c025e1-e150
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:00:6a:b3:d5:6d:21:5b:92:3d:c6:01:31:50:
99:0d:b2:59:07:ad:83:70:6a:a2:78:3d:02:67:4a:
63:0c:d2:eb:70:e6:af:cd:0d:1c:e8:3a:08:10:2a:
88:2b:e7:cb:29:6b:3b:2e:db:72:c5:cc:7c:45:90:
ac:67:70:79:9e:62:cf:a5:0e:95:56:9f:9f:7b:bb:
a5:cb:6e:44:30:5a:1a:66:22:ad:89:65:63:17:c1:
a7:3f:e4:f3:da:1d:ed:c5:32:3f:6e:34:f1:ed:a0:
a1:11:62:f1:c0:96:0a:f7:e6:a0:41:95:ce:92:af:
7d:0a:5f:d0:ac:64:fa:22:ca:8c:ae:35:ed:dd:c4:
b7:22:6c:47:a1:d0:87:0f:dd:98:77:6f:58:7a:a2:
94:c5:ba:a4:17:c0:2d:9a:11:97:d6:7e:15:f0:01:
29:71:a1:49:1a:09:f9:18:b2:37:64:a1:49:d6:17:
d9:58:ab:67:d7:ed:30:97:ed:f4:56:fb:85:d3:7f:
da:bc:df:5a:2d:c3:cc:72:1f:b1:02:b4:40:fe:d9:
32:64:9c:6e:32:d3:48:24:4d:69:91:b8:c3:6d:32:
62:21:ec:27:c8:8c:06:9c:fb:76:6e:a8:c3:79:a0:
99:7d:af:bd:4a:98:2b:ad:54:cc:65:f8:e6:f1:51:
d1:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:EA:5D:00:FC:A9:35:91:30:61:6D:4C:0B:0B:CE:73:66:EE:DB:B6
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/07B81288F4E711EFB50C0253762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.195.190.0/24
Signature Algorithm: sha256WithRSAEncryption
1b:7a:7a:84:bb:47:9e:27:ad:47:3a:0d:11:ee:7b:a9:31:68:
cb:e9:f6:e0:d7:e6:2f:b2:fd:e6:06:b0:03:ff:a8:8d:ac:6e:
01:9f:cf:4c:1f:27:cf:bf:ce:40:f6:67:f1:8b:a4:4e:63:03:
0f:05:e6:e6:82:11:01:b9:ac:cf:6f:67:6d:8c:24:30:f4:07:
1a:0a:7e:37:21:08:41:dc:0e:a9:59:88:78:79:ba:57:27:97:
7c:c5:be:ac:ba:1a:89:a1:22:d9:34:1c:c1:13:72:fd:9e:58:
41:63:98:7a:04:3d:48:51:23:2c:ae:ae:93:ed:7c:07:73:ec:
42:02:93:f2:b6:05:8c:3b:9c:b0:ec:d8:06:c8:58:40:3c:69:
b9:96:cc:2b:0b:0e:17:70:03:2c:a6:e2:b9:57:db:3d:90:2f:
fc:7c:d9:ad:12:9c:62:64:54:8a:62:3a:74:2d:e9:3e:11:8e:
63:b4:5a:e6:dc:66:49:6f:46:95:bb:79:4a:df:a7:dc:96:0e:
d6:00:cc:6c:4d:51:7b:09:a5:f0:fb:e8:8e:68:fa:b3:2b:05:
91:91:e9:43:d4:d8:84:7e:90:4a:75:2d:b8:2f:b1:56:db:87:
1f:7e:c3:50:da:a6:4d:e4:b9:fa:0a:a7:66:12:1c:4c:a3:41:
a4:db:5e:9e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 9 06:27:40 2025 by rpki-client