Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/2C2CBAA68A8F11EE8C284B874AD9E6FC.roa
File: 2C2CBAA68A8F11EE8C284B874AD9E6FC.roa (raw, json)
Hash identifier: zejauOg76v4Zyr6MOHOgihdX2hsTvvqJX1DLk7WjFpw=
Subject key identifier: 7D:04:FC:7D:92:12:24:A5:F4:B4:18:53:EB:48:6D:7D:84:A7:DB:B1
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 5380
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/2C2CBAA68A8F11EE8C284B874AD9E6FC.roa
Signing time: Fri 24 Nov 2023 06:03:22 +0000
ROA not before: Fri 24 Nov 2023 06:03:19 +0000
ROA not after: Tue 26 Dec 2023 06:03:19 +0000
asID: 62240
IP address blocks: 154.195.129.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 21376 (0x5380)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 24 06:03:19 2023 GMT
Not After : Dec 26 06:03:19 2023 GMT
Subject: CN=65603caa-27fb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:e8:ea:d4:f8:d0:67:ef:0c:8c:a3:86:55:34:
98:cc:04:25:5f:92:07:0c:3c:67:50:0d:3b:5e:f0:
86:73:e8:b4:55:93:4e:f3:c7:51:5b:92:12:bc:59:
d6:e1:6a:bc:8b:51:4d:40:91:d7:e5:4c:18:95:dc:
a9:8d:ff:1b:20:6c:d6:bf:6a:17:20:4d:25:1b:65:
36:73:8d:79:c2:dd:85:94:ca:0a:8d:c2:00:be:c2:
07:be:c0:ac:f0:06:06:5f:26:c8:08:72:e0:37:10:
12:3a:d5:b1:03:88:be:f6:fa:dc:7a:c9:f7:7f:6c:
37:12:ec:b2:55:1f:5d:a8:90:7b:cd:ee:5b:80:9d:
e1:49:bf:ac:0b:e8:a8:9a:92:50:9d:ae:80:ae:4c:
0f:8b:b9:6e:74:ad:9b:cc:d0:b9:85:35:77:bf:e1:
97:38:bb:99:e4:05:1f:27:14:6f:0c:86:81:59:24:
0a:7d:95:d3:8d:38:81:45:c8:ac:d9:cd:f3:8b:ff:
d3:54:9b:0d:3d:cb:11:38:56:a7:e6:a6:3a:92:fd:
82:ef:0e:70:8d:56:c8:61:0e:38:d2:be:3b:5c:a2:
03:9c:2f:82:28:70:e0:b0:85:8b:c8:68:29:cb:be:
64:ad:9e:49:b2:e3:8d:0a:47:72:49:55:fe:82:d4:
62:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:04:FC:7D:92:12:24:A5:F4:B4:18:53:EB:48:6D:7D:84:A7:DB:B1
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/2C2CBAA68A8F11EE8C284B874AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.195.129.0/24
Signature Algorithm: sha256WithRSAEncryption
25:af:87:8b:41:27:8c:33:f2:7e:9b:6b:e1:dd:d3:82:c8:de:
8d:01:27:90:12:8c:ee:06:74:1d:f4:d9:bd:4b:c7:fd:03:28:
d9:87:79:8c:8f:47:6c:a3:51:af:cd:97:af:62:cc:19:59:4a:
67:92:f3:7b:20:5f:b3:5c:01:28:fe:13:c9:93:42:9d:11:f4:
6e:1e:ac:fc:76:2e:61:ed:9f:1b:af:81:71:6e:ad:6c:51:c9:
63:e8:de:84:79:07:92:c3:50:55:50:74:c2:e9:e4:36:e5:35:
c6:d2:5a:28:28:f1:fc:a1:d9:d8:a5:16:c4:92:ef:af:8e:7c:
74:b6:f5:c0:af:75:19:d8:cc:47:5e:83:56:6b:22:38:62:8b:
b3:62:da:cf:22:bd:18:d2:d0:96:b6:a7:a8:ec:f3:68:79:f3:
19:a1:98:76:62:3d:43:ca:a6:6b:f2:a1:69:e0:37:37:fc:68:
9a:b7:fa:b3:72:97:e8:f0:d8:21:71:b9:03:9f:30:f6:0d:4b:
72:4c:a1:54:64:8f:e1:be:59:a9:4c:d3:25:a6:ce:4c:9c:1b:
f1:e7:8c:b0:44:b0:ed:d5:da:e1:9e:c2:91:30:a8:e2:2d:00:
64:15:b2:f2:c0:0b:0a:91:e0:d2:fd:16:d0:95:84:72:62:e4:
60:5a:00:54
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 9 10:38:06 2025 by rpki-client