Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/22C6D41CF50311EFB7563F90762E951A.roa
File: 22C6D41CF50311EFB7563F90762E951A.roa (raw, json)
Hash identifier: q0CXIJWTOtwy5z3bqqMuuojyPQBVs8HvQVd24Zc++bk=
Subject key identifier: E9:19:66:1A:FF:B5:94:E4:2A:EE:00:06:D1:00:20:02:8A:3C:9F:0A
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 016820
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/22C6D41CF50311EFB7563F90762E951A.roa
Signing time: Thu 27 Feb 2025 12:05:29 +0000
ROA not before: Thu 27 Feb 2025 12:05:25 +0000
ROA not after: Wed 26 Mar 2025 12:05:25 +0000
asID: 62240
IP address blocks: 154.195.111.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 92192 (0x16820)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Feb 27 12:05:25 2025 GMT
Not After : Mar 26 12:05:25 2025 GMT
Subject: CN=67c05509-3038
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:17:e6:ca:f1:6f:22:9f:40:05:fc:d0:38:a0:
fe:05:f6:f2:ca:92:17:cd:4f:1c:c2:05:a8:f9:fe:
e3:f8:81:1d:2f:a2:2d:2a:7d:62:c6:1e:0d:5b:ca:
9a:70:53:a1:7c:a8:de:d0:41:98:51:ed:36:c0:38:
de:dd:de:26:f8:c4:d4:85:84:e0:87:1b:7d:3f:e6:
c0:62:60:5b:20:52:d2:d6:87:34:24:02:c4:07:2e:
07:d0:c3:51:10:16:21:a2:37:30:98:4f:7c:19:ed:
30:e7:4c:6a:64:12:6a:29:e8:fd:fd:f0:cd:c4:6b:
92:97:3f:3c:cc:38:74:c1:60:70:0d:7a:b8:0c:1d:
e8:53:b5:6b:0c:77:b0:9e:bc:d9:80:6b:87:02:e7:
c7:4b:83:b3:f8:02:7c:96:c7:fd:9b:27:8d:05:59:
03:98:94:10:99:af:ce:1e:65:67:23:31:7c:2a:82:
83:7e:94:e8:41:06:fe:ac:7f:12:e4:ed:76:6e:21:
2f:4a:bd:c4:fc:46:ad:32:b6:a0:ca:9c:84:02:78:
fb:c3:de:7c:06:70:ee:17:a4:6b:85:a9:14:cb:45:
35:64:d2:2d:b6:90:f8:63:36:e4:bb:4c:e3:f6:c9:
d4:d0:ae:ce:a7:f2:80:83:96:e3:6d:4c:bb:6b:71:
70:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:19:66:1A:FF:B5:94:E4:2A:EE:00:06:D1:00:20:02:8A:3C:9F:0A
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/22C6D41CF50311EFB7563F90762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.195.111.0/24
Signature Algorithm: sha256WithRSAEncryption
56:01:39:ae:58:0c:f4:c7:98:02:38:88:30:8e:a3:73:e5:81:
d2:db:b6:7a:9b:36:ff:bb:dd:00:82:a2:73:59:b9:6b:cc:57:
ba:c0:b3:ec:87:48:cf:3a:bc:66:ca:d1:e4:d9:35:a1:ba:58:
8a:74:ee:8e:8b:b5:18:5d:b8:9c:2d:0d:bf:1d:11:09:8e:87:
58:c5:3c:07:8d:93:e3:38:29:64:76:3c:c4:f2:8a:e4:c8:f2:
ff:d8:42:ce:dd:2b:b3:0a:16:a8:47:8a:95:70:0b:ad:4f:d3:
cd:18:82:59:ee:85:08:0e:b2:f5:ab:2c:b8:fa:fc:66:cc:18:
10:97:7b:6d:51:a6:69:40:7b:5e:d2:fd:32:04:52:c8:36:b8:
18:cb:2c:32:c1:bd:67:38:2d:d8:0f:da:16:f3:7b:97:87:ff:
f9:cc:fc:b2:72:68:18:0f:66:ad:74:f0:b2:cb:f6:df:7c:50:
eb:e4:06:24:a2:a4:7f:7e:b1:98:61:1b:54:25:c6:a6:8a:6b:
b4:04:f7:1c:e4:40:24:4d:b2:c3:3e:9c:c5:da:d2:17:a8:9e:
10:e7:fc:30:44:59:f7:ac:fa:70:0a:0f:9c:93:83:48:58:4f:
62:28:0b:61:61:8b:98:a9:38:66:b9:a3:9a:8b:f2:c8:19:a3:
a6:15:bd:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 9 06:39:36 2025 by rpki-client