Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1F26C0AE8A9911EE8AA661294AD9E6FC.roa
File: 1F26C0AE8A9911EE8AA661294AD9E6FC.roa (raw, json)
Hash identifier: X64DmO+o4lEioXiIIsUt2XwgPg/6SboHBJsCBuR+viE=
Subject key identifier: FA:AF:8F:92:30:D6:0F:CC:EB:E8:27:52:63:72:FE:F4:E5:53:F5:27
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 5444
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1F26C0AE8A9911EE8AA661294AD9E6FC.roa
Signing time: Fri 24 Nov 2023 07:14:35 +0000
ROA not before: Fri 24 Nov 2023 07:14:32 +0000
ROA not after: Tue 26 Dec 2023 07:14:32 +0000
asID: 62240
IP address blocks: 154.195.7.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 21572 (0x5444)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 24 07:14:32 2023 GMT
Not After : Dec 26 07:14:32 2023 GMT
Subject: CN=65604d5b-fa64
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:f0:eb:63:bf:79:19:86:b2:e9:fa:66:e1:d3:
19:c9:e2:ac:50:7f:5e:de:f6:e2:90:36:3b:8a:f1:
cb:1c:d7:4c:65:b0:4f:08:35:36:21:bf:cf:98:e5:
b7:92:b3:6f:81:33:f1:3e:e3:5c:4b:7f:9b:74:b4:
37:7c:b2:37:7d:ad:54:67:e0:ec:26:80:13:52:08:
a4:40:2f:de:0c:bd:b0:54:99:94:30:df:0b:83:a0:
5b:8f:fe:84:e0:9d:a8:39:9a:51:75:db:f4:f0:f3:
97:69:3f:3d:50:fe:6f:83:8f:e0:90:c9:7c:ac:71:
9a:2a:59:2f:e4:99:bd:4a:69:16:44:3b:57:c6:b0:
2d:ae:0f:f2:72:69:0f:64:14:e1:6f:cc:bc:a1:78:
4c:55:d3:12:61:33:c3:61:d5:a4:6f:43:70:b6:46:
3a:9d:f5:11:be:d7:25:95:19:bd:84:0f:d2:81:1f:
49:1f:c3:1a:b3:55:2c:f3:97:2b:7e:a9:9f:6d:e3:
43:f8:17:aa:4e:2c:c3:a7:69:1e:60:dd:66:92:c8:
78:f4:0c:ed:af:c8:9b:e9:4c:b4:92:58:29:3d:66:
23:20:61:aa:97:0a:b7:38:95:c7:71:0a:b8:1c:97:
36:f8:fe:6a:36:18:e4:f6:8b:98:e1:06:3b:80:1d:
89:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:AF:8F:92:30:D6:0F:CC:EB:E8:27:52:63:72:FE:F4:E5:53:F5:27
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1F26C0AE8A9911EE8AA661294AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.195.7.0/24
Signature Algorithm: sha256WithRSAEncryption
b7:37:5e:f6:b0:ea:e5:ef:11:3d:b1:7a:5f:6c:a9:ec:26:6c:
80:c4:76:8c:5f:5c:2e:ca:0c:74:e2:f0:02:84:2b:86:e2:38:
ee:8e:c8:70:1e:8e:15:97:ff:72:f2:54:8c:26:a6:0e:c7:7e:
ae:a3:23:d5:6b:e2:f8:49:a5:2a:9d:01:94:7a:f7:8f:68:1e:
60:34:81:23:53:25:10:0c:36:56:03:80:44:88:65:d8:aa:42:
ac:23:cf:20:5c:0c:ec:08:9a:8b:0b:09:b2:9c:c1:9b:13:5a:
77:f2:5c:a5:0d:0c:7e:26:a4:99:54:f2:b2:c1:60:de:8a:15:
bd:01:9a:2a:1e:3c:17:24:b7:65:14:77:03:cd:db:7e:6a:85:
40:cc:ca:36:e7:c6:f0:b0:1c:de:bb:16:df:0e:7c:ab:38:69:
d2:b5:c4:72:78:5a:3b:0c:4e:5b:26:9e:b2:52:37:18:de:3d:
53:2e:cd:63:f2:55:83:0d:0e:d8:d9:43:5a:b1:b1:4c:d5:88:
a6:71:0c:a4:09:b2:bf:b8:56:85:46:90:d6:13:d1:82:5a:a1:
eb:d0:a7:e0:5b:e1:9b:93:78:d5:a9:aa:85:68:22:91:78:ae:
0c:8a:63:86:41:3a:1d:43:29:f3:5e:9d:4a:0e:1e:96:af:73:
12:f7:91:7f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 9 10:58:03 2025 by rpki-client