Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/188FE05E8CDD11EEA315FD624AD9E6FC.roa
File: 188FE05E8CDD11EEA315FD624AD9E6FC.roa (raw, json)
Hash identifier: ND15pEC5eKPEjNzgZXSX4CMtaDEzCP6dMwYRC/eXUko=
Subject key identifier: 72:01:9A:3C:89:2E:60:4F:F3:06:E4:AE:07:A3:90:5C:8E:32:C4:FE
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 54EB
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/188FE05E8CDD11EEA315FD624AD9E6FC.roa
Signing time: Mon 27 Nov 2023 04:26:12 +0000
ROA not before: Mon 27 Nov 2023 04:26:09 +0000
ROA not after: Tue 26 Dec 2023 04:26:09 +0000
asID: 62240
IP address blocks: 154.196.79.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 21739 (0x54eb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 27 04:26:09 2023 GMT
Not After : Dec 26 04:26:09 2023 GMT
Subject: CN=65641a64-d8e3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:47:ce:4d:91:70:3c:ca:a9:21:f1:89:f6:fd:
bf:b4:ae:ce:37:18:e5:fc:5f:00:f7:59:37:36:6f:
11:16:f3:71:ce:4d:57:03:f7:a7:93:89:44:bc:35:
8b:ad:31:23:20:c3:30:88:f6:d1:b0:a7:06:e3:8c:
c1:aa:bd:cd:40:30:65:4f:7d:44:7b:8c:5c:97:ed:
0e:f0:bc:c3:c6:36:5d:67:7a:b2:0a:5b:e1:4c:6c:
f4:e0:86:1a:41:fb:51:0d:62:a3:61:c3:30:85:bf:
75:4f:c0:74:3e:f9:9e:43:4e:f3:d2:3f:1c:43:09:
35:90:b6:2b:16:97:b7:be:ec:24:22:6a:b0:6a:5b:
01:be:cb:26:18:80:b2:c9:49:b3:92:42:79:68:3f:
ca:48:21:2f:33:a3:20:1d:c5:d0:53:dd:41:e4:71:
3a:9a:81:02:22:d9:42:cf:29:f8:da:29:98:81:ba:
b2:22:db:67:ad:6b:35:e6:ed:f1:54:93:4c:b2:ea:
48:5a:bb:27:42:fa:6b:f5:5d:2d:57:6b:c9:85:36:
56:7b:9e:83:76:cd:62:40:01:87:63:84:49:3e:a7:
c4:7e:a1:d8:a5:91:8b:c9:89:e9:fb:b6:b1:2a:2a:
35:fc:be:6b:8e:da:58:ad:fa:65:9b:75:c6:a5:46:
9a:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:01:9A:3C:89:2E:60:4F:F3:06:E4:AE:07:A3:90:5C:8E:32:C4:FE
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/188FE05E8CDD11EEA315FD624AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.196.79.0/24
Signature Algorithm: sha256WithRSAEncryption
0c:dc:36:b2:0b:2a:c3:5a:b8:ce:8f:b1:cd:6d:63:13:1f:68:
8d:68:d0:83:46:0b:8c:be:db:17:86:55:8f:c0:e1:91:49:17:
8a:cf:9d:db:15:29:1d:f6:25:df:2e:b9:ab:a1:1f:4e:d8:77:
df:57:a0:9a:0b:fd:0b:4c:95:ab:d1:1e:c5:67:f2:85:50:c0:
5c:b2:62:e3:d8:41:c5:2f:6b:c3:23:01:f1:8a:c2:07:e8:f8:
2e:5d:8e:11:ca:4c:f9:66:fc:e4:62:86:85:07:94:0b:75:26:
cf:32:8d:41:fc:06:4e:8f:58:c9:a7:19:f1:7c:89:96:2f:26:
5a:ce:85:1b:a3:9e:af:9f:63:bd:27:a2:f0:fd:a8:76:ee:52:
81:01:0b:f1:1c:cb:08:5a:7e:be:d7:15:3d:a0:fe:f3:f6:58:
ba:fb:01:72:98:35:46:ec:be:a8:61:bb:7b:51:b9:b6:d6:af:
aa:d5:92:f6:91:50:4c:18:c6:ed:93:d1:81:b2:68:d4:1c:27:
ab:3d:e9:dc:b9:bc:b1:f5:72:18:3f:4a:8e:37:5e:e0:3c:52:
bb:92:aa:2e:67:b1:3c:fd:24:47:63:e3:9a:45:13:c4:26:04:
10:69:d7:7d:21:a0:76:2e:43:e7:5b:1b:6a:51:7a:a9:c9:5b:
66:e0:b5:af
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 9 10:56:59 2025 by rpki-client