Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0B93BD80F4F111EFB1CAC094762E951A.roa
File: 0B93BD80F4F111EFB1CAC094762E951A.roa (raw, json)
Hash identifier: NaB30xwZPgDUB2nUAe9lHoZmMqlzs87TOZVbr6ckHsk=
Subject key identifier: 31:C3:43:75:3B:44:2A:79:26:2C:F2:02:DD:4E:0C:2B:0D:23:B5:AB
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01676E
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0B93BD80F4F111EFB1CAC094762E951A.roa
Signing time: Thu 27 Feb 2025 09:55:59 +0000
ROA not before: Thu 27 Feb 2025 09:55:55 +0000
ROA not after: Wed 26 Mar 2025 09:55:55 +0000
asID: 62240
IP address blocks: 154.195.104.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 92014 (0x1676e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Feb 27 09:55:55 2025 GMT
Not After : Mar 26 09:55:55 2025 GMT
Subject: CN=67c036af-2e4c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:f9:f5:18:ef:78:6d:54:29:c6:7c:21:1c:e9:
f7:a7:a7:8a:3a:e7:23:19:1e:0a:df:51:d3:55:8d:
f9:fc:c7:d1:ec:cb:3a:04:af:09:0c:7f:5f:b1:72:
af:8d:19:98:3a:d8:ec:a7:29:fe:a1:3c:d7:90:49:
7d:ae:3c:92:16:10:cd:fd:51:d9:52:ac:08:89:b8:
b0:2a:f7:cd:10:d5:ce:c1:c7:06:15:7e:20:15:a3:
9b:c7:41:f4:73:8a:a7:e9:36:08:0c:f9:c5:d1:4d:
a4:8a:96:d5:27:c5:a4:2a:06:d3:54:3c:a4:51:bc:
e8:9f:1d:92:0f:d8:43:31:77:2e:0a:e0:57:3a:8a:
0f:4f:40:93:c2:25:a4:80:14:ed:ed:19:05:36:78:
c8:39:3e:17:28:f7:af:95:6f:8a:08:98:9f:c1:62:
b7:d6:41:69:78:3e:31:f4:69:74:bd:b9:6a:13:68:
da:41:6b:da:b5:23:03:92:6d:a4:32:7c:c5:35:f4:
4f:9e:eb:ac:a0:6d:8e:01:e3:3b:6d:dc:ef:83:63:
c6:b5:4f:f9:eb:3a:36:c7:69:b5:69:15:15:b5:32:
18:7e:fd:ac:4e:13:ae:89:4d:cc:a4:b0:06:8f:11:
8d:18:b5:22:f0:16:18:47:ca:58:66:c8:c1:63:31:
cc:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:C3:43:75:3B:44:2A:79:26:2C:F2:02:DD:4E:0C:2B:0D:23:B5:AB
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0B93BD80F4F111EFB1CAC094762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.195.104.0/24
Signature Algorithm: sha256WithRSAEncryption
b7:ff:06:11:a6:c5:d5:d5:16:ea:a7:e3:20:bd:b6:74:4c:f5:
b6:dc:72:47:85:ff:e7:a6:8b:a9:09:18:97:f6:23:7d:bc:29:
3b:ee:c8:51:29:fa:2e:da:84:49:a1:c5:28:3d:67:b5:d1:ad:
64:af:cf:ab:8c:af:e1:73:8a:f1:b3:ca:9c:c0:6f:7f:71:67:
93:29:28:5a:60:5e:b2:c6:2c:69:83:68:51:4f:33:6d:16:3c:
9d:d7:44:f6:e3:4a:9b:60:a3:f6:38:74:37:19:af:fd:e6:29:
99:5c:8e:e0:e6:55:e5:ad:2f:b7:f5:83:7b:36:8a:5c:b9:bb:
d9:0a:9c:a7:ac:87:a8:03:65:cd:4a:62:68:7f:4b:1f:30:55:
ec:55:1a:f5:fa:8c:d3:6f:5c:75:a5:f5:3f:45:29:4e:dc:07:
af:06:0b:93:32:b0:4e:cc:0e:4c:a4:6a:3f:a7:b8:94:f8:8c:
4f:a8:74:0c:14:44:a1:80:c8:18:e8:7f:06:17:16:ba:7c:f3:
28:f9:87:d9:44:71:34:8d:56:08:12:1c:f5:f8:46:84:2c:09:
ea:2b:dd:31:d4:4c:24:e2:9b:05:76:8b:4a:2d:d7:ae:85:9f:
48:44:c2:61:e1:5a:ff:fb:01:9f:2b:66:a0:98:e9:7e:f8:42:
20:33:b4:7b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 9 12:25:05 2025 by rpki-client