Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1D3AD390F67A11EFAB0A9E9D762E951A.roa
File: 1D3AD390F67A11EFAB0A9E9D762E951A.roa (raw, json)
Hash identifier: w5ChD/E7R9OgiqcrKfRjwzWXDvpNyPaHZoi0bqXQw6s=
Subject key identifier: CD:76:A9:77:FA:9A:FB:9D:8C:47:22:76:EE:85:AB:CC:1F:E4:F5:6C
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 016D6D
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1D3AD390F67A11EFAB0A9E9D762E951A.roa
Signing time: Sat 01 Mar 2025 08:49:41 +0000
ROA not before: Sat 01 Mar 2025 08:49:37 +0000
ROA not after: Mon 31 Mar 2025 08:49:37 +0000
asID: 49505
IP address blocks: 154.212.31.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 93549 (0x16d6d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Mar 1 08:49:37 2025 GMT
Not After : Mar 31 08:49:37 2025 GMT
Subject: CN=67c2ca25-2359
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:c5:fe:13:44:0d:7e:b1:f4:c3:25:d2:49:6b:
e8:bd:06:21:2b:79:28:ce:b2:81:1f:b1:d7:f0:44:
49:e9:64:39:bc:5a:b9:1c:3b:5e:3d:81:04:84:17:
03:04:15:61:a6:1e:bc:3e:b7:4f:82:88:4f:a4:1b:
18:ad:9c:09:41:2a:56:c4:53:78:77:dd:ac:73:0d:
bf:14:b6:eb:ce:7a:23:b7:43:eb:bb:1e:52:3d:15:
5e:97:b4:6b:1f:e0:cb:f1:80:67:60:93:76:f9:ce:
b7:f6:98:97:cb:05:43:ec:d1:de:d0:b3:97:b8:1b:
e2:77:6c:68:fa:f6:7a:fd:9a:89:ff:fd:72:9c:0e:
35:f4:08:73:2f:23:44:d3:39:16:27:9f:c0:0b:a7:
b8:3d:9e:0f:99:1e:d7:be:af:5a:71:fe:97:ce:9f:
30:ec:e6:ae:c9:43:27:21:27:99:ae:4f:6a:13:7b:
cf:f1:45:21:ef:ad:7a:ca:99:11:12:2a:40:97:5d:
ab:22:94:2f:06:e8:9b:56:44:a5:68:79:73:b3:e9:
40:74:9c:6b:c5:a1:2c:cd:d9:8d:62:00:66:74:77:
3d:b3:86:6d:c4:aa:75:0a:50:50:a8:0c:aa:8f:6b:
b0:6b:3d:f8:24:7d:41:ca:fa:11:a1:8a:4c:4f:d0:
40:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:76:A9:77:FA:9A:FB:9D:8C:47:22:76:EE:85:AB:CC:1F:E4:F5:6C
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1D3AD390F67A11EFAB0A9E9D762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.212.31.0/24
Signature Algorithm: sha256WithRSAEncryption
56:bf:f2:20:4a:19:a3:eb:af:27:97:6b:1e:45:2e:4a:05:87:
37:2b:31:36:0e:8b:72:77:4c:01:30:70:8a:30:7f:0f:62:25:
6e:47:04:48:f8:94:82:8a:c2:11:0c:73:4b:06:d0:51:c2:70:
5c:27:73:25:e1:c2:04:f6:98:09:90:fa:d6:32:c4:af:1c:fd:
5e:8b:dd:a3:ba:50:83:13:23:ca:af:35:d9:22:a2:b5:0f:78:
1f:3a:2e:a1:9b:0d:49:69:75:9f:75:94:db:e3:bf:72:18:ae:
3b:d7:79:45:6b:56:cf:4f:20:55:c4:54:52:46:e4:79:f4:19:
43:e6:d4:56:38:85:36:a2:a8:cc:68:52:88:e0:44:38:86:f4:
4e:02:0a:8d:69:49:e5:3b:8b:7e:7d:ff:e1:54:e1:0f:55:24:
39:b1:cd:20:a7:ec:b4:34:2f:c4:bf:b9:a5:66:1c:7f:e0:26:
e4:c5:7a:07:85:a2:6e:bc:f4:2d:db:a6:82:b4:7c:25:53:a4:
3d:3c:f7:86:36:f5:11:93:6d:1a:e3:36:49:b2:7b:8f:30:9e:
da:25:63:17:f5:00:7c:7a:a9:91:2e:d6:86:7e:b2:64:94:de:
7b:2e:c9:ae:57:ce:05:b5:37:98:32:b6:ac:90:cc:31:d6:85:
6b:d8:67:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 01:24:41 2025 by rpki-client