Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1203A792F67811EFBED5938F762E951A.roa
File: 1203A792F67811EFBED5938F762E951A.roa (raw, json)
Hash identifier: THyyH1bSGtAr4PPvlgDFtHd9r8RtMNSiuIfbGQiifm8=
Subject key identifier: D0:D3:3C:88:54:77:2F:10:43:02:97:8A:5A:07:53:79:EC:5B:26:06
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 016D60
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1203A792F67811EFBED5938F762E951A.roa
Signing time: Sat 01 Mar 2025 08:35:03 +0000
ROA not before: Sat 01 Mar 2025 08:34:59 +0000
ROA not after: Mon 31 Mar 2025 08:34:59 +0000
asID: 202656
IP address blocks: 154.219.247.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 93536 (0x16d60)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 1 08:34:59 2025 GMT
Not After : Mar 31 08:34:59 2025 GMT
Subject: CN=67c2c6b7-a136
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:ae:cc:ac:67:16:5b:ad:62:be:9a:72:16:bc:
6d:98:94:33:af:53:a9:4d:07:41:77:62:20:01:52:
24:39:b7:8c:2d:97:9e:17:5d:94:07:05:5d:2d:78:
8a:78:8d:f8:e3:5c:19:84:98:53:8e:ee:03:64:d0:
40:63:75:3d:46:f6:78:54:ec:95:c8:3a:fc:4c:34:
a1:d3:89:7d:b2:ab:3a:8d:cf:e5:e2:c2:3e:d0:65:
c8:40:49:6e:5e:72:8c:ac:2e:ed:e1:b0:96:39:84:
94:a5:8b:e1:34:6a:67:42:a2:37:2d:69:74:f1:8e:
2d:f1:3f:e0:26:d4:46:50:d3:8c:20:9e:1e:94:83:
d6:42:c5:b8:f8:fc:8a:07:ad:f3:47:c0:ac:56:7c:
7f:30:dd:9f:a0:ee:3d:a5:01:ad:2f:68:87:0d:9b:
21:74:50:13:3f:87:cf:b1:67:ac:c9:84:97:53:5c:
89:60:31:33:95:b6:70:89:5c:61:62:21:3f:03:9c:
da:6c:48:61:4a:fb:6e:29:05:5a:8b:25:a2:ac:08:
76:de:6b:74:31:80:be:2c:e8:59:21:db:57:ed:94:
a4:71:4f:19:3e:06:5d:dc:47:f3:87:44:ca:60:68:
ae:b9:5d:3e:fb:8b:36:23:7b:99:7d:bd:08:6a:72:
1b:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:D3:3C:88:54:77:2F:10:43:02:97:8A:5A:07:53:79:EC:5B:26:06
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1203A792F67811EFBED5938F762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.219.247.0/24
Signature Algorithm: sha256WithRSAEncryption
cf:ea:f8:10:b1:4e:0c:1a:a8:69:e0:9e:5e:fc:39:a8:81:d7:
d5:a1:0f:8c:1b:fd:87:93:6c:38:87:75:0b:17:bc:da:aa:d0:
8e:dd:d5:38:d3:50:6c:1f:4b:f5:2a:aa:9b:5d:88:c7:6c:01:
3c:8d:6d:aa:1e:e8:66:3a:05:a5:86:d1:7b:8c:a2:48:ce:9f:
61:8b:b5:d3:27:10:45:da:50:a6:43:f9:d2:b2:cf:49:84:55:
fe:c8:b2:33:96:f2:51:d8:3b:95:8b:b7:0b:f1:98:96:d3:4e:
19:2b:00:ac:ed:04:aa:63:79:e0:16:2c:5c:e0:34:21:2a:f8:
9f:7b:70:8c:b8:46:03:54:37:4a:da:ce:80:77:3b:dc:45:4d:
54:27:df:e7:29:a2:29:99:d3:72:83:4d:5f:ab:89:ff:fe:45:
b8:2a:41:56:c3:a0:a1:1c:73:9a:66:1c:a0:a4:c1:0a:32:89:
52:ca:c3:e7:e6:62:1d:b8:09:75:09:43:86:9c:0f:02:fe:39:
60:58:fa:46:e6:2e:c3:83:3c:b1:c0:69:ff:19:e7:4e:39:8e:
b8:9d:d1:dc:f4:30:8f:71:bf:e3:49:e4:94:db:02:f9:b4:15:
20:b9:b6:dc:55:f6:10:c4:f6:86:bd:3e:d5:cf:58:e1:a6:fc:
24:6e:1b:8a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 9 06:53:28 2025 by rpki-client