Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/147C6F98F62511EFA14D894D762E951A.roa
File: 147C6F98F62511EFA14D894D762E951A.roa (raw, json)
Hash identifier: PAFD52kk4Mf4Dwxqi2SCwzicAtAgdSvgbQ6pls2QayQ=
Subject key identifier: EF:66:B1:5D:0D:E5:79:E9:56:46:21:F0:BF:11:72:ED:96:16:25:C2
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 016C99
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/147C6F98F62511EFA14D894D762E951A.roa
Signing time: Fri 28 Feb 2025 22:40:59 +0000
ROA not before: Fri 28 Feb 2025 22:40:55 +0000
ROA not after: Wed 26 Mar 2025 22:40:55 +0000
asID: 62240
IP address blocks: 154.196.91.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 93337 (0x16c99)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Feb 28 22:40:55 2025 GMT
Not After : Mar 26 22:40:55 2025 GMT
Subject: CN=67c23b7b-8bce
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:a2:cf:88:25:65:22:83:3c:81:a7:91:d8:d1:
24:48:32:7c:90:72:1d:26:9b:7c:02:6b:a0:2f:c0:
78:df:6f:71:e3:40:a1:15:a6:1e:15:c8:19:2e:97:
92:c8:64:c8:59:61:fa:f3:a5:d6:f8:84:9d:34:da:
05:65:ff:94:d8:11:a3:0e:99:05:32:93:77:80:62:
19:e4:3b:0e:ce:80:27:a8:1c:a0:93:6a:b3:9d:f3:
fe:b8:cd:ea:ca:01:b4:95:f7:3b:58:c4:d4:48:b5:
6b:de:48:2d:14:ff:f1:94:48:c8:24:95:80:1f:f0:
21:03:fc:e8:da:97:4d:f9:24:b2:f5:95:87:13:9a:
99:23:50:98:fd:d3:03:86:ba:28:91:2d:75:b1:62:
3e:a2:04:53:5d:3b:af:8e:44:43:5d:82:aa:21:38:
ae:7f:66:c0:b9:27:a2:e8:61:ac:14:92:34:8a:15:
32:97:bb:de:4a:5d:ee:61:28:3f:8b:22:da:de:cb:
8f:ee:f6:bc:2d:f4:ab:ff:aa:5a:bc:bd:9e:ae:64:
df:25:b4:0b:80:0f:f9:c2:d4:b1:13:28:a5:c2:11:
04:91:f4:11:60:55:69:ab:51:58:c1:63:6f:c4:fc:
85:13:28:5e:96:b9:22:d9:35:d4:3b:5e:a2:8d:bf:
65:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:66:B1:5D:0D:E5:79:E9:56:46:21:F0:BF:11:72:ED:96:16:25:C2
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/147C6F98F62511EFA14D894D762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.196.91.0/24
Signature Algorithm: sha256WithRSAEncryption
a2:1c:41:d9:ee:8a:af:55:64:4c:a4:be:06:85:51:1e:1c:76:
bb:53:73:ec:62:32:29:41:78:59:68:c6:de:9e:66:72:45:ad:
e8:b5:94:39:a3:4d:d8:a5:5a:cc:60:74:90:4a:83:17:89:ee:
e5:d3:27:16:e1:ae:1f:b3:84:76:1a:8c:d9:f0:65:a2:d8:1f:
c8:d5:6d:df:cf:cd:ea:dc:00:a3:7f:f6:64:38:1e:75:e0:40:
da:d2:dc:f6:15:da:59:de:0d:d1:51:7e:67:64:16:06:0d:5e:
da:d1:0b:33:47:f9:87:a5:0f:0b:e1:4b:ed:df:b8:0b:75:f9:
f2:b1:5b:04:3b:49:76:ab:2f:03:6a:cd:82:f3:08:64:31:36:
a7:43:5c:de:58:01:4a:d0:fb:a1:8f:9f:be:5b:38:15:4e:0f:
5d:eb:5c:65:f8:61:c6:20:d3:28:cc:53:2d:a6:57:91:47:8a:
63:e4:9e:61:b8:77:0c:87:28:0a:bb:c1:1e:27:51:3c:b4:3b:
da:04:da:b4:e1:16:aa:fd:81:9f:16:d5:a7:2c:14:e1:47:88:
88:3a:6b:5d:70:53:66:24:72:54:60:53:c9:95:16:40:e9:cf:
7e:97:48:ef:33:fd:fa:72:2b:7d:74:33:7a:ce:ba:f3:e3:12:
d2:b5:35:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 9 06:31:00 2025 by rpki-client