Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/07E2E1F2473711EE994F8E524AD9E6FC.roa
File: 07E2E1F2473711EE994F8E524AD9E6FC.roa (raw, json)
Hash identifier: ngnUAbJYvy/INwPFNOdQQJgskUBxytP8CrChnfueZDc=
Subject key identifier: A9:76:54:D9:F6:C4:18:6A:46:1A:EF:F2:75:C0:E6:46:AA:8C:FF:A8
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 3AD1
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/07E2E1F2473711EE994F8E524AD9E6FC.roa
Signing time: Wed 30 Aug 2023 13:13:38 +0000
ROA not before: Wed 30 Aug 2023 13:13:35 +0000
ROA not after: Thu 08 Aug 2024 13:13:35 +0000
asID: 133199
IP address blocks: 154.204.57.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 15057 (0x3ad1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Aug 30 13:13:35 2023 GMT
Not After : Aug 8 13:13:35 2024 GMT
Subject: CN=64ef4081-551b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:0f:f8:46:ed:77:ec:2b:28:a0:f7:db:cf:7b:
6e:85:a0:75:d1:dd:fb:0e:82:cd:e9:48:6a:8c:a7:
52:0f:9b:51:56:a8:4b:9d:e4:34:52:8c:e0:ee:2d:
e1:98:e1:d8:0f:bf:46:96:f7:65:67:df:d3:f2:e1:
05:e8:c5:af:80:ad:7d:3c:72:82:62:3f:25:5e:43:
5e:50:9f:d2:b2:a3:ad:ba:d3:ec:36:fa:23:47:04:
fa:e3:d2:02:6f:b3:15:0e:12:1f:db:72:95:68:f2:
29:97:fc:0b:c1:df:14:06:bb:fe:34:04:c7:9a:25:
4c:02:b4:75:3b:ed:dc:29:bc:b0:d3:d9:3c:3e:a9:
30:c2:8f:cc:41:f0:3e:a4:7f:76:cd:0a:7c:8f:64:
cb:2a:a5:4d:99:e5:58:3b:d8:bf:7e:c2:9e:53:72:
b9:bb:eb:59:75:68:ee:3d:87:6b:77:d9:8b:7e:94:
1d:d8:33:42:07:88:7b:df:db:a6:1f:d7:30:25:dd:
52:35:a9:cd:1b:92:37:0c:a8:2b:f4:3b:7c:8f:27:
c8:25:0b:e4:36:4b:c5:21:f4:d5:16:6c:b7:4c:b6:
90:37:4f:51:be:95:84:ae:7b:29:1b:f9:bf:1c:ec:
ea:2f:1b:31:5e:20:9b:b0:2b:26:fd:59:3f:17:85:
38:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:76:54:D9:F6:C4:18:6A:46:1A:EF:F2:75:C0:E6:46:AA:8C:FF:A8
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/07E2E1F2473711EE994F8E524AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.204.57.0/24
Signature Algorithm: sha256WithRSAEncryption
12:0c:6a:ab:fc:6c:c8:bf:64:b9:f8:2b:eb:4f:d5:26:b4:66:
4e:4b:d9:fb:67:ff:75:ed:12:c8:f6:81:dd:ec:10:2c:9c:07:
b4:38:f4:5f:7b:36:10:fb:aa:54:a3:d1:13:52:48:b6:28:9d:
49:d6:5e:b9:b3:79:45:2b:c9:3f:72:8a:1b:f9:f1:e2:63:b1:
ef:05:c6:04:a5:a5:2f:0c:74:83:4c:1e:88:bc:85:2e:14:c6:
59:95:81:82:b1:9c:34:78:b1:4f:dd:b1:e6:db:e5:8c:27:b5:
a9:52:58:9d:bf:85:e3:01:a8:6b:64:bd:fd:32:78:e9:c9:e2:
34:5a:52:4c:bc:68:06:64:cb:f1:55:aa:dd:4e:37:52:25:56:
65:e5:19:8a:d5:a9:2f:51:d8:22:b2:ef:26:44:32:43:f6:b9:
4c:8b:dd:09:4a:d2:2c:f7:e7:cf:c8:2c:1f:c6:64:8b:d9:b4:
76:28:84:fb:6f:41:7e:29:3f:e1:41:54:d6:3a:dc:db:6d:87:
de:90:80:51:7c:84:86:91:01:4c:03:e7:77:bd:6b:d6:17:80:
87:60:4f:15:33:9e:72:4b:98:c7:a8:cd:e4:e1:50:df:8d:37:
19:8a:d5:df:da:f0:48:ad:ec:41:58:64:48:1a:f8:45:98:c9:
92:18:c2:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 11 15:28:01 2025 by rpki-client