Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/08AC019C8CE011EEBE8E636C4AD9E6FC.roa
File: 08AC019C8CE011EEBE8E636C4AD9E6FC.roa (raw, json)
Hash identifier: NP33U7cmvqOx6on772+BnpxGVd6SkpnRPIZMVqe4ii4=
Subject key identifier: 12:B9:E7:30:12:0B:F8:04:1D:BF:45:68:38:69:24:65:05:F3:16:2B
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 552F
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/08AC019C8CE011EEBE8E636C4AD9E6FC.roa
Signing time: Mon 27 Nov 2023 04:47:14 +0000
ROA not before: Mon 27 Nov 2023 04:47:11 +0000
ROA not after: Tue 26 Dec 2023 04:47:11 +0000
asID: 62240
IP address blocks: 154.195.187.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 21807 (0x552f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 27 04:47:11 2023 GMT
Not After : Dec 26 04:47:11 2023 GMT
Subject: CN=65641f52-7058
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:0c:96:ca:64:d0:06:81:fe:d7:d7:6b:0b:b2:
28:a5:67:a8:d4:00:e1:29:b1:4c:c6:81:fa:f7:10:
90:c7:86:1b:a3:2e:f2:71:68:a3:21:55:23:4a:dd:
ba:d0:57:d0:5d:f1:6c:9c:42:01:7b:76:5c:a6:45:
d6:d2:11:97:8e:cf:d5:a4:a4:40:0f:71:6b:c0:3f:
bb:78:89:52:de:c3:e4:b3:03:9c:4e:05:36:59:ce:
b7:45:aa:91:36:cf:42:bd:6a:f1:41:39:0b:46:8f:
45:8e:3a:f7:d6:22:06:1c:78:e6:32:a6:7a:87:f1:
38:94:5b:15:e0:81:a3:4b:e7:13:54:51:cc:ac:6b:
e1:d9:b6:95:66:4c:24:d5:eb:d6:37:be:b2:73:6e:
a4:2b:63:c5:56:5f:8b:c9:33:e9:8c:44:ec:cf:79:
db:d6:a4:8e:2e:ac:81:72:e3:e6:30:d5:67:b0:d7:
fa:3c:2a:c3:f0:0b:ee:e1:c0:31:08:3f:2f:67:e1:
bb:79:12:03:51:bc:62:db:fa:9a:cb:ef:75:aa:9b:
14:11:98:f9:d4:ae:38:5b:ae:5e:24:f9:54:63:bb:
00:57:e9:9a:b7:fc:d8:f0:74:97:37:d9:27:ab:62:
2a:0e:9d:84:9f:88:52:1d:40:e2:81:6b:77:dc:f4:
cd:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:B9:E7:30:12:0B:F8:04:1D:BF:45:68:38:69:24:65:05:F3:16:2B
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/08AC019C8CE011EEBE8E636C4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.195.187.0/24
Signature Algorithm: sha256WithRSAEncryption
68:17:25:9f:b7:71:f3:54:67:d4:6f:b8:5d:01:43:c6:3c:a1:
d5:b0:d1:76:c0:fb:74:3e:92:5e:57:9c:9a:cc:7e:d0:6c:48:
2c:51:1e:ad:73:5c:58:0f:0c:b8:0c:a8:db:ee:f2:d3:1f:39:
1f:49:13:c2:96:84:fc:a0:ea:61:88:7b:78:20:64:83:8b:7f:
3a:72:67:65:bf:56:ef:db:8d:bc:42:9a:74:be:b7:a8:cd:fd:
44:a5:9d:84:99:fd:23:d2:39:6f:01:95:02:be:b6:55:cb:3f:
78:33:25:61:13:a3:b5:4c:cc:f4:8b:57:d7:bc:d9:d0:ec:e5:
07:52:46:c0:91:6f:68:dc:30:89:68:47:a7:a4:1b:b3:62:b2:
f5:61:24:5b:3d:fa:32:24:72:dd:9b:51:69:2c:5f:e3:e5:14:
9c:c2:d1:62:1b:31:32:d8:be:0c:39:de:dd:7d:85:2f:6c:71:
47:0c:2e:8c:5e:94:dc:fd:72:c9:81:40:47:25:0c:35:c5:96:
09:9a:2b:53:d6:2c:3a:32:f2:76:fa:23:3e:26:77:25:3e:54:
a6:c9:c2:c5:94:24:73:aa:37:1b:3e:43:4e:7f:5c:63:0e:cd:
ae:bc:fb:a8:a9:ee:38:59:48:9b:bc:cd:68:4b:04:45:75:65:
e7:7c:1f:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 9 11:14:04 2025 by rpki-client