Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/2461786E8A9611EEB4398F1F4AD9E6FC.roa
File: 2461786E8A9611EEB4398F1F4AD9E6FC.roa (raw, json)
Hash identifier: SI85W2Aq9L+smXRbuLpm0mA+XsbZhXmQETTwAe/XTiI=
Subject key identifier: B6:4D:A0:C9:53:1E:68:0B:BD:CE:72:E2:D8:B4:D4:B8:0F:59:8A:7F
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 5400
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/2461786E8A9611EEB4398F1F4AD9E6FC.roa
Signing time: Fri 24 Nov 2023 06:53:16 +0000
ROA not before: Fri 24 Nov 2023 06:53:12 +0000
ROA not after: Tue 26 Dec 2023 06:53:12 +0000
asID: 62240
IP address blocks: 154.195.22.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 21504 (0x5400)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 24 06:53:12 2023 GMT
Not After : Dec 26 06:53:12 2023 GMT
Subject: CN=6560485c-e4ce
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:f2:ef:79:41:f0:8e:99:42:d1:de:fb:27:aa:
9e:d1:36:0a:82:c6:ec:b8:d9:7b:3a:f3:5d:fb:a0:
ce:69:2f:94:a0:e9:1b:29:72:36:4c:8f:bd:25:8e:
ab:67:4e:49:a9:1e:fc:0c:38:6f:54:fb:f8:79:a0:
ba:a7:32:4d:80:95:d6:89:af:eb:45:11:9f:b8:21:
b3:8b:fe:f6:83:3c:7f:c3:04:55:7b:88:72:75:d8:
fe:ee:d2:58:a6:40:c7:77:f6:c9:2b:06:3b:9e:31:
df:ce:b0:ff:c4:45:90:7f:1e:fd:33:74:9c:e6:e7:
92:e2:3d:8d:8a:b3:d0:7f:fd:54:b2:b7:82:74:db:
80:e7:46:96:92:5f:3e:e9:76:58:ed:c3:97:fd:f0:
35:d1:06:81:8d:58:a2:f5:90:02:e8:d8:be:ba:65:
7e:66:aa:68:5d:dd:0a:03:70:e8:cb:9a:67:61:13:
03:e6:7e:c0:13:93:b5:4b:e7:45:57:c3:b5:ca:77:
fd:85:a9:72:6d:da:aa:47:63:06:3f:82:a3:0b:91:
e9:08:29:32:82:7f:87:5e:d1:f0:4a:d6:1d:76:9c:
55:f6:7b:c6:f6:ba:29:3b:36:49:a6:02:86:db:8f:
3f:f5:2e:82:19:89:b8:90:e9:81:b1:92:ef:af:57:
18:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:4D:A0:C9:53:1E:68:0B:BD:CE:72:E2:D8:B4:D4:B8:0F:59:8A:7F
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/2461786E8A9611EEB4398F1F4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.195.22.0/24
Signature Algorithm: sha256WithRSAEncryption
9b:ff:23:cb:aa:6b:c0:dd:2c:a5:71:25:83:c8:76:8e:09:1c:
8a:87:02:53:7d:89:c5:9d:63:3d:44:c8:d0:57:7c:cb:dc:f0:
28:ca:0b:00:c7:6f:b4:5a:7c:dc:63:75:14:92:69:99:85:1d:
30:74:0f:33:44:d7:fd:ec:1d:6e:79:bd:5b:a0:86:f4:2f:f9:
60:7f:bb:39:9f:c4:ea:ec:06:9e:a6:2e:1c:7e:0a:71:83:92:
32:64:e9:59:18:14:05:17:48:ff:a2:ab:9b:04:9e:f7:e9:72:
57:a3:b5:4a:79:1b:0a:8a:c7:73:67:b1:0e:44:f4:2c:17:1d:
e8:4e:ba:d3:91:29:d8:88:8e:83:ce:15:8b:56:47:21:b1:18:
15:b2:f4:30:b2:80:16:c3:d3:b3:04:94:5a:3d:b3:d0:f3:4d:
9d:5b:ba:5a:8d:87:43:08:b3:e9:d5:5f:d0:28:1a:52:f9:e9:
88:32:e8:51:88:ba:65:6f:f0:b3:6e:a8:8f:75:5c:52:e6:20:
7a:10:d8:80:3a:69:43:80:e2:c6:f5:55:bd:c1:d4:f1:aa:23:
2a:6e:60:10:f6:ba:86:3b:bb:49:be:c9:81:ee:8a:48:20:b2:
d0:83:ea:1f:cc:68:23:dd:03:cb:8c:3b:b9:6d:07:58:bf:49:
d9:b4:43:11
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 9 12:22:58 2025 by rpki-client