Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1A0DE652F1D511EF94434A67762E951A.roa
File: 1A0DE652F1D511EF94434A67762E951A.roa (raw, json)
Hash identifier: vm9l7+e4pUwnQZhLRaWYaxmhPxVX3F0TzE+ppVTmMZI=
Subject key identifier: C9:F7:9C:14:B5:FA:A2:93:BD:9F:5C:FE:11:3B:95:6B:6E:95:FC:0D
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 015B43
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1A0DE652F1D511EF94434A67762E951A.roa
Signing time: Sun 23 Feb 2025 10:58:24 +0000
ROA not before: Sun 23 Feb 2025 10:58:20 +0000
ROA not after: Wed 26 Mar 2025 10:58:20 +0000
asID: 197547
IP address blocks: 154.201.93.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 88899 (0x15b43)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Feb 23 10:58:20 2025 GMT
Not After : Mar 26 10:58:20 2025 GMT
Subject: CN=67baff50-6736
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:99:c7:6d:43:8e:57:21:63:07:df:4d:38:f2:
05:24:fc:20:80:10:22:c5:92:ce:fa:e3:3a:b8:83:
b7:1f:e7:c8:f6:e6:7e:2c:31:cc:ff:7a:04:00:59:
7d:af:b5:38:91:04:cd:a3:78:45:67:af:0d:cc:59:
8b:7d:a8:6f:d7:22:8a:df:d8:6e:91:c2:db:f3:60:
30:32:34:7b:ff:ff:87:d6:b8:15:9c:29:76:9f:3e:
a0:e7:31:f8:41:d0:12:30:3a:6e:19:12:6c:b5:cd:
a8:58:6b:2b:18:07:72:ea:45:bf:a5:b1:54:66:f5:
84:00:0b:d5:8d:19:11:d9:97:0f:ce:c1:c7:5e:2e:
83:11:c1:b9:41:6d:16:2b:bb:1c:a6:b2:61:62:6a:
01:3b:16:86:ca:6e:21:a1:83:77:0b:45:20:b7:ed:
ba:50:04:35:29:3a:92:d2:8d:7f:50:5b:cb:e0:3b:
94:5a:96:79:36:ab:e7:f6:6f:d7:7d:8e:4d:d3:82:
b5:89:05:75:cd:dc:39:4b:bb:1c:7b:05:03:bd:1d:
0d:99:3a:70:9f:39:18:fe:48:7f:3b:f6:da:64:05:
ef:3a:8e:47:fc:1b:5e:36:45:6f:9f:8e:8f:68:9a:
6d:15:5f:2d:32:5a:26:a8:0e:d9:2e:04:2a:c0:66:
32:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:F7:9C:14:B5:FA:A2:93:BD:9F:5C:FE:11:3B:95:6B:6E:95:FC:0D
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1A0DE652F1D511EF94434A67762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.201.93.0/24
Signature Algorithm: sha256WithRSAEncryption
92:be:1f:97:64:54:c0:5d:c8:bd:69:81:f7:4b:94:a0:4c:87:
d2:39:65:5f:55:23:8d:06:36:64:6d:98:c6:1d:30:0b:a7:e1:
a3:55:d1:e5:8e:6b:8c:e9:60:c1:fa:80:d5:e5:28:cc:76:22:
0e:da:e1:33:96:bf:d1:9a:93:52:77:09:1c:72:1d:4b:a8:eb:
23:1b:b9:19:ab:9a:8f:e3:b2:4d:15:30:3a:67:25:30:0d:d5:
91:d8:1f:a7:06:e5:d8:89:93:07:85:4e:d6:38:f7:09:d5:36:
38:c9:3b:8b:95:c8:61:0e:29:cc:4e:cd:8e:3d:e6:c5:e6:f4:
72:d7:18:e8:5b:07:a5:5f:30:a5:c4:bf:59:dc:db:35:52:99:
e3:c1:9c:d9:3c:54:1d:0f:96:cc:7a:05:b8:1b:5a:de:23:4c:
66:9e:30:53:de:8a:2f:10:c8:eb:8d:2f:82:22:ab:93:04:39:
8d:d1:58:0e:25:47:14:f0:ae:25:8b:1d:56:82:ce:64:83:d6:
ca:cd:81:4e:15:7c:b4:1e:f1:fb:0f:00:19:c3:fb:94:41:fd:
29:1a:0f:7c:ca:ab:04:9d:ff:e9:6c:fd:00:9c:a1:8a:0b:72:
e5:b8:a9:d5:8e:79:52:7e:fc:ef:96:6e:74:04:2c:ef:a4:35:
0f:59:14:10
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 9 06:57:14 2025 by rpki-client