Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1A230EEA8A9511EE88FC341C4AD9E6FC.roa
File: 1A230EEA8A9511EE88FC341C4AD9E6FC.roa (raw, json)
Hash identifier: s47nf7yPUSoia3ZO2Q7uZHJ36/1eotWHzSsI54iUn5k=
Subject key identifier: 7B:FD:7E:BA:73:B2:7D:47:E7:98:90:EB:8F:45:CE:23:13:45:74:A8
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 53EB
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1A230EEA8A9511EE88FC341C4AD9E6FC.roa
Signing time: Fri 24 Nov 2023 06:45:49 +0000
ROA not before: Fri 24 Nov 2023 06:45:45 +0000
ROA not after: Tue 26 Dec 2023 06:45:45 +0000
asID: 62240
IP address blocks: 154.194.107.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 21483 (0x53eb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 24 06:45:45 2023 GMT
Not After : Dec 26 06:45:45 2023 GMT
Subject: CN=6560469d-2be7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:3b:4a:11:02:d6:4d:d4:89:0f:f5:24:96:ec:
f5:df:04:3f:64:2c:e4:b3:ab:4b:86:cd:4d:ce:df:
89:48:53:fd:6a:4f:26:86:1a:13:09:0a:e0:de:8f:
78:14:a3:8d:4d:ec:04:13:d1:30:dc:5a:f2:af:50:
fe:56:08:80:20:b0:fd:23:dc:ff:f0:43:28:e5:a5:
69:ee:2f:3b:1a:37:38:c3:46:c5:71:d9:6b:68:21:
87:06:f3:e4:49:97:ce:38:69:bc:01:55:2d:56:f0:
0c:c9:43:13:98:55:7d:1b:37:59:d9:ef:53:c5:75:
d4:cc:9f:75:32:d8:05:68:7c:a9:30:56:75:b0:c9:
35:76:7b:a7:00:d0:ee:e3:ff:21:ba:6e:bb:3d:5f:
33:54:e7:b7:2d:13:80:aa:3e:47:a4:f3:6e:79:28:
43:bc:61:2a:16:5b:93:89:e5:c8:71:1d:48:94:48:
cc:62:14:74:c0:7a:94:4b:a6:c4:4a:8d:ef:99:70:
30:b1:ae:f2:db:a3:64:84:43:e9:35:02:c9:a6:d6:
c4:f9:0d:ae:46:99:62:ac:51:b9:a1:d6:fb:8d:4c:
bb:c8:79:77:a9:ba:a8:23:90:e0:cd:8e:b2:d1:9b:
f8:92:e7:f3:4c:b8:fe:87:cd:9c:df:0f:36:10:3f:
07:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:FD:7E:BA:73:B2:7D:47:E7:98:90:EB:8F:45:CE:23:13:45:74:A8
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1A230EEA8A9511EE88FC341C4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.194.107.0/24
Signature Algorithm: sha256WithRSAEncryption
a3:1f:70:8c:2b:9e:75:a5:39:87:0c:57:a6:63:7d:ab:d9:8e:
b9:be:cb:fd:e3:da:15:12:9f:4d:60:78:0e:bb:84:a7:30:d3:
fa:31:76:e4:26:8c:a1:dd:0d:91:2c:24:d0:49:49:3f:26:d9:
9d:17:4d:68:1e:35:30:b5:6f:5a:d7:a4:2d:29:b0:cb:4b:04:
0a:56:6b:b1:f3:9e:00:df:b7:fd:15:1a:2c:cb:a4:8f:05:a9:
28:b7:50:ed:e3:65:64:55:ff:43:16:12:48:ea:8f:00:de:57:
75:1a:09:c7:12:06:4b:0a:31:9c:99:01:61:3d:da:12:8b:96:
4c:6a:0f:22:3c:44:92:70:46:b2:c7:42:68:09:db:9b:47:fb:
b6:b2:93:b1:df:0e:9d:b7:22:56:31:5c:81:05:c5:a5:d7:b2:
43:ef:87:4c:69:f8:9f:b4:c5:55:9a:57:bd:c2:3e:85:ee:2a:
16:14:69:b1:05:1e:fa:60:94:4d:52:15:2c:b9:8b:d2:2e:5f:
b0:2e:21:dc:8e:0e:ec:ae:27:c2:41:37:24:9a:fa:39:7f:46:
06:c7:74:ac:b4:43:73:31:f5:91:d3:3e:83:23:b1:13:7d:08:
d4:17:73:55:8a:ca:17:0b:20:c1:b9:02:0d:92:c4:1b:05:5a:
e1:88:99:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 9 10:50:00 2025 by rpki-client