Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/20F5F28A8A8D11EE8CA989804AD9E6FC.roa
File: 20F5F28A8A8D11EE8CA989804AD9E6FC.roa (raw, json)
Hash identifier: ZXjgWqldz6CJazl4NPhPmuFoyTBuaEWnKuW4tRbi8lc=
Subject key identifier: 59:38:E9:74:E3:89:83:E2:CE:C9:65:DC:71:21:8F:29:CB:E9:96:3F
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 535E
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/20F5F28A8A8D11EE8CA989804AD9E6FC.roa
Signing time: Fri 24 Nov 2023 05:48:44 +0000
ROA not before: Fri 24 Nov 2023 05:48:41 +0000
ROA not after: Tue 26 Dec 2023 05:48:41 +0000
asID: 62240
IP address blocks: 154.196.54.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 21342 (0x535e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 24 05:48:41 2023 GMT
Not After : Dec 26 05:48:41 2023 GMT
Subject: CN=6560393c-ff64
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:3f:5e:ef:09:9f:59:d8:46:f9:d7:34:55:ff:
6f:3d:14:76:7d:0b:4c:60:d4:a7:1d:b7:e2:6f:a3:
a3:bd:30:5f:3d:c2:1b:24:85:28:ba:fe:57:07:77:
51:55:71:85:d3:90:89:79:9c:e9:95:a2:3f:6c:1b:
61:af:74:51:85:a5:7a:cb:e6:85:f2:87:23:c9:16:
5d:2e:34:c6:9c:1e:79:bd:5d:78:69:e6:bf:3b:f4:
8e:e4:9d:89:9f:f3:f5:a4:be:ac:1e:1f:4c:56:b9:
c7:25:6d:59:10:f3:7f:e6:89:ed:14:ed:ba:bb:d2:
a2:69:6d:19:2e:31:ab:5c:61:12:e7:6d:90:e3:b5:
e9:e2:e0:0f:97:aa:a0:30:9b:cb:04:02:c6:a8:f8:
3e:2e:01:27:7d:e0:0f:93:2a:d5:aa:f2:b7:eb:c8:
44:2a:f8:84:2f:37:f2:38:5d:05:d6:4a:5d:12:de:
cd:b8:d1:04:7f:de:02:04:58:c6:20:06:4f:ce:b6:
75:20:05:23:56:1b:f2:e2:4f:98:41:07:2d:6a:b1:
78:1f:a9:00:3f:59:35:b0:0c:0c:1c:a5:7f:44:62:
ba:ea:32:b3:7a:0d:e6:2a:cd:5c:2d:0b:c8:3d:9f:
3c:2e:5f:3f:02:99:7e:45:35:50:a8:ca:52:f2:89:
ad:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:38:E9:74:E3:89:83:E2:CE:C9:65:DC:71:21:8F:29:CB:E9:96:3F
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/20F5F28A8A8D11EE8CA989804AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.196.54.0/24
Signature Algorithm: sha256WithRSAEncryption
9e:4f:74:31:de:66:e4:98:e1:1c:91:de:ef:31:6c:05:a2:f2:
20:3a:58:ed:bd:c2:e4:92:40:8b:c8:b0:9a:c2:a8:b7:8f:b3:
f8:88:76:86:b7:26:23:3b:a9:14:f9:b2:1c:be:3a:8d:a6:88:
ec:b4:66:44:af:75:ec:d0:a0:b8:3a:b6:6f:df:51:66:3d:92:
09:3d:ef:f1:7a:35:28:50:a4:50:06:8e:7f:30:5a:56:e5:3a:
ea:3c:b2:d4:8f:e9:55:94:58:6e:25:32:45:8d:00:76:9a:b8:
eb:a0:51:1d:31:b1:a6:97:b9:5a:88:c6:a7:0d:d2:5a:ba:be:
18:1e:28:74:be:87:e9:7c:53:1e:27:78:e6:86:c5:45:6f:01:
b8:4c:d9:f9:b8:a4:5e:75:43:3a:d0:f4:6d:f0:97:bb:c5:c7:
b1:b2:0c:92:b0:4a:2c:ea:8f:9c:39:13:2b:cb:9c:ff:16:12:
4f:69:ed:d6:81:7f:e2:80:7f:d4:37:88:b4:a2:df:15:1e:e8:
d2:f2:6d:0f:d1:d2:38:f1:1a:99:b4:4e:c4:68:dd:7f:21:01:
20:85:6a:74:71:86:8b:99:5b:05:ff:44:81:3c:1e:03:6d:bf:
25:73:1c:78:39:ae:d7:ca:33:c4:92:71:12:33:47:e6:28:e2:
d9:e6:77:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 9 11:03:05 2025 by rpki-client