Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/2B106C288CDB11EEA8C8965C4AD9E6FC.roa
File: 2B106C288CDB11EEA8C8965C4AD9E6FC.roa (raw, json)
Hash identifier: SMxXyB2SP1sOwI87zJJNd34atBkN0O6FC8TGDnrs/IM=
Subject key identifier: 10:09:BB:48:5D:12:9F:4B:4C:A0:0D:CF:72:95:6B:F3:A9:89:B3:12
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 54BC
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/2B106C288CDB11EEA8C8965C4AD9E6FC.roa
Signing time: Mon 27 Nov 2023 04:12:24 +0000
ROA not before: Mon 27 Nov 2023 04:12:21 +0000
ROA not after: Tue 26 Dec 2023 04:12:21 +0000
asID: 62240
IP address blocks: 154.194.93.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 21692 (0x54bc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 27 04:12:21 2023 GMT
Not After : Dec 26 04:12:21 2023 GMT
Subject: CN=65641728-802b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:bc:14:60:21:0f:5d:a0:6d:a3:9a:b0:69:ba:
f4:38:43:43:b4:2a:8b:4f:62:f5:fd:ee:e0:88:42:
16:35:3a:a7:43:be:93:5c:b0:9b:46:b6:a3:e1:90:
63:ec:a5:4c:19:27:b3:5d:06:98:16:f2:b2:1c:f6:
47:b0:2d:07:6f:88:c4:71:a3:3a:5f:1f:fd:3f:bf:
93:b5:9a:06:18:f2:ba:e2:bb:c4:90:6a:7d:ac:93:
f1:77:a3:99:42:93:d6:c5:b6:e2:5c:a1:1c:dd:83:
a1:37:a3:9f:26:ca:87:d6:5f:40:1f:cc:2f:87:ec:
c7:1e:62:ae:60:a8:1c:51:d8:6b:19:37:06:79:75:
9b:3c:e5:23:2d:83:3c:a6:49:f2:01:f3:ca:47:db:
fb:3d:43:f2:f3:16:b5:51:20:57:8b:82:99:dc:40:
61:e8:33:0a:a0:47:2c:bb:27:eb:40:65:85:73:eb:
6f:8a:2f:01:1d:f6:c2:8a:0e:9f:46:ce:47:e9:8b:
93:a2:1b:a6:05:bc:c0:a2:1c:c9:9a:1b:60:b9:19:
ca:e3:b8:39:76:30:0e:57:ea:bd:8f:24:c4:6e:b9:
b0:d3:23:e3:e2:29:f3:9f:aa:5d:49:84:73:5b:f1:
dd:6e:69:19:92:ee:dd:72:a2:18:0e:89:88:e4:8b:
07:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:09:BB:48:5D:12:9F:4B:4C:A0:0D:CF:72:95:6B:F3:A9:89:B3:12
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/2B106C288CDB11EEA8C8965C4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.194.93.0/24
Signature Algorithm: sha256WithRSAEncryption
b0:40:68:a4:4e:63:04:42:ca:20:5f:f0:19:ac:98:70:c9:f7:
1a:f2:e7:a7:65:4a:6e:48:5a:17:83:78:43:43:85:af:2c:55:
a3:16:a7:15:82:67:d4:4b:34:c0:b4:10:e8:43:7c:ce:78:0a:
55:25:35:5f:83:f0:13:c0:36:4a:aa:f2:f4:f6:a2:a7:1f:06:
74:22:0b:d6:6d:1d:a4:99:5d:49:9f:bf:06:2d:b3:3e:a2:56:
b4:64:d9:ee:c0:f9:34:24:4f:ae:5a:34:1b:2f:a1:ba:93:e1:
1c:62:38:08:3c:27:09:65:b6:b1:52:32:eb:d6:ea:ee:24:61:
af:13:9c:6a:1c:e1:ad:90:49:ec:40:23:39:8b:05:9d:ea:96:
2f:b5:08:c2:d3:7d:b5:6c:2a:fb:e1:99:36:87:b2:44:e2:b3:
dc:1c:08:8c:26:4a:66:88:ed:90:96:7a:14:1d:a5:d0:3d:3c:
4e:a1:d9:78:ac:d1:d8:14:a8:b5:36:37:fd:39:ce:fe:b3:59:
5c:4f:54:f4:12:20:6e:94:ef:64:5c:3a:79:8a:a0:11:1a:94:
f0:29:a2:cd:73:f0:fb:08:0b:86:78:e4:1f:ec:0c:f7:60:07:
1c:4d:e8:3b:84:b1:85:3e:6f:d1:d2:25:c0:49:45:50:80:a1:
ba:bb:a8:47
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 9 10:27:42 2025 by rpki-client