Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1CB00B8A8A8C11EE97B1117D4AD9E6FC.roa
File: 1CB00B8A8A8C11EE97B1117D4AD9E6FC.roa (raw, json)
Hash identifier: 8oiemknUFOYPgDdR8AYw51Zmpu7EIOJO/pZBJSfXL1A=
Subject key identifier: 81:58:B4:BD:16:46:D2:2E:B2:C6:DA:45:49:B0:7B:47:2E:61:07:26
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 534A
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1CB00B8A8A8C11EE97B1117D4AD9E6FC.roa
Signing time: Fri 24 Nov 2023 05:41:28 +0000
ROA not before: Fri 24 Nov 2023 05:41:24 +0000
ROA not after: Tue 26 Dec 2023 05:41:24 +0000
asID: 62240
IP address blocks: 154.194.7.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 21322 (0x534a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 24 05:41:24 2023 GMT
Not After : Dec 26 05:41:24 2023 GMT
Subject: CN=65603788-9127
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:9d:53:e9:f9:a7:06:82:a0:9f:9b:55:72:f2:
63:e3:8b:b5:5a:af:22:ed:8e:42:f5:f3:81:ed:5f:
21:34:f4:38:fc:05:83:b3:00:16:70:11:42:90:82:
73:f8:e0:12:48:50:64:ae:f0:e6:9b:ad:50:27:00:
60:b6:37:e0:61:48:b9:fc:b2:03:2b:38:00:06:d3:
9d:1c:71:4b:bd:07:b0:41:77:6f:af:13:bc:27:87:
0b:92:54:d6:67:d7:c2:ef:21:56:e2:4c:32:69:a0:
47:ad:e4:d5:a4:f8:6f:87:84:4a:81:6c:d9:c2:40:
04:98:9a:fe:5c:42:e4:7f:f6:72:bb:fd:03:9e:ed:
2f:b0:55:eb:14:25:d2:d1:56:04:50:a3:fc:5f:87:
5e:88:61:7d:cf:02:02:fb:27:79:00:73:3d:61:94:
42:79:24:ba:34:5c:cb:1d:1a:d1:1e:3e:44:64:8a:
47:24:3a:0a:33:f8:fc:69:95:11:0a:3a:ad:37:2d:
5d:02:dd:d0:bb:39:90:8d:d1:bc:80:b7:39:bb:5a:
a8:47:98:8a:5f:21:d7:93:d2:4e:ad:51:2e:38:4c:
cf:31:f0:64:ed:21:ba:59:81:dc:eb:1f:cb:0a:13:
a2:dd:3a:28:d6:d9:81:88:da:ea:fb:4e:c7:10:21:
a8:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:58:B4:BD:16:46:D2:2E:B2:C6:DA:45:49:B0:7B:47:2E:61:07:26
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1CB00B8A8A8C11EE97B1117D4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.194.7.0/24
Signature Algorithm: sha256WithRSAEncryption
46:56:fd:ca:fe:f0:ed:a5:ee:f0:3c:f4:67:4d:e0:19:96:9b:
cc:a2:56:75:82:f2:b1:58:d2:36:92:43:71:38:d1:6a:18:ee:
2f:5d:53:08:cd:0c:cc:02:18:41:d4:60:3d:6c:97:fc:fb:2a:
a2:72:57:d0:64:6b:7d:f7:ef:01:f3:62:04:f5:08:91:7d:ef:
16:8e:db:44:9c:f9:c4:43:e9:31:a5:7b:c1:ff:6c:45:5b:3c:
68:23:c5:fc:74:6d:b7:30:4f:7e:10:8f:f1:71:86:40:e2:00:
c6:cb:f2:ea:4f:63:d8:00:d4:7d:02:9d:09:37:7e:87:d2:8d:
47:32:27:88:9c:4d:19:49:cf:a3:99:1a:2d:55:00:62:70:20:
46:f1:54:ec:bc:b4:6b:0e:d6:8e:27:9a:cd:af:f6:9f:36:98:
ab:c8:ac:0d:a4:05:cd:b8:71:4c:b9:e5:2d:87:e0:12:0e:4e:
78:53:ee:cd:ab:80:20:b2:77:f4:dd:2b:ba:38:f4:02:4c:48:
16:68:cb:51:f9:d6:da:7b:ed:63:77:12:96:84:78:b2:8c:52:
1e:2a:59:0f:ff:0b:8c:8c:84:40:c0:e7:a8:27:f2:22:af:ed:
25:40:0f:bb:34:19:76:3a:09:bf:36:be:08:93:1d:cb:0a:62:
c1:09:f7:6e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 9 10:27:39 2025 by rpki-client