Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/39CC8992F4D411EFAF637552762E951A.roa
File: 39CC8992F4D411EFAF637552762E951A.roa (raw, json)
Hash identifier: lkFRkiytX+C9Vm2M3Z4C0CCfd50DqNuMKRSTspTjpc0=
Subject key identifier: 9B:03:04:F2:15:57:6E:C2:FE:0B:A4:5F:D5:48:18:1D:4E:9A:33:79
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 016669
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/39CC8992F4D411EFAF637552762E951A.roa
Signing time: Thu 27 Feb 2025 06:29:41 +0000
ROA not before: Thu 27 Feb 2025 06:29:38 +0000
ROA not after: Wed 26 Mar 2025 06:29:38 +0000
asID: 62240
IP address blocks: 154.195.152.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 91753 (0x16669)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Feb 27 06:29:38 2025 GMT
Not After : Mar 26 06:29:38 2025 GMT
Subject: CN=67c00655-6bd1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:8c:81:44:29:fb:ba:16:f8:31:45:8c:a5:16:
1c:ee:26:10:7c:68:01:c2:85:eb:f1:a7:12:1f:7f:
ec:3f:89:42:fc:8e:92:20:5d:82:55:98:31:9b:d1:
81:87:af:89:89:f0:ce:72:57:4d:81:16:b2:40:5b:
b7:cf:c0:8f:63:cf:07:43:99:cc:c2:c5:35:0f:f2:
cd:90:56:60:f1:be:e3:a6:9b:6f:df:df:be:bf:dc:
be:57:ca:a2:65:65:15:a1:47:6d:b2:ef:b3:3f:81:
9f:1c:79:e9:1d:b5:0a:52:35:a4:c3:b1:7c:20:a1:
e0:be:fd:a2:bf:f9:d9:1e:37:6d:4f:6f:fe:2f:2a:
e4:ad:30:8d:e1:cb:64:40:a7:c5:de:68:c8:1f:5f:
08:d4:ae:e0:02:db:d1:c6:d7:57:bd:93:35:9b:4e:
52:a8:8c:7d:ad:43:96:bb:b1:0d:a6:81:29:7c:b3:
b9:e1:b0:a3:41:89:34:da:9f:42:95:93:f3:55:00:
72:63:c7:56:22:71:95:85:17:e4:73:55:c4:a7:13:
cb:50:d5:0c:36:61:4c:8e:e1:50:77:5c:c2:aa:c1:
1b:f2:6d:a1:13:e4:db:7c:3d:f7:22:f2:92:9c:a4:
13:c0:b1:f5:f1:5b:47:b6:b4:77:ca:29:cc:a0:08:
70:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:03:04:F2:15:57:6E:C2:FE:0B:A4:5F:D5:48:18:1D:4E:9A:33:79
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/39CC8992F4D411EFAF637552762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.195.152.0/24
Signature Algorithm: sha256WithRSAEncryption
73:d5:e6:d1:79:29:17:2f:df:9d:89:bc:2f:d2:96:10:a6:2f:
58:44:d3:92:0a:cc:3a:3a:a7:0d:10:84:c0:23:d3:13:f4:66:
31:81:20:f6:fd:11:05:d3:68:6f:f8:6c:06:98:8e:94:e6:32:
43:d5:4e:1a:3c:98:b8:ee:16:05:b3:b1:b1:b8:25:63:7c:1e:
52:be:02:2e:2f:af:41:16:e3:36:35:83:11:a3:07:1e:64:b0:
cf:a8:60:6e:0b:09:1f:bb:bc:f0:1d:7b:1d:d3:e7:32:3a:33:
8a:11:f4:6f:cb:4e:ad:89:66:02:b5:c3:5f:d5:de:8c:9b:d6:
b5:38:a2:78:05:5f:5a:ae:62:91:ef:93:4c:08:ad:4b:89:db:
f1:87:97:f2:b1:9a:33:0b:aa:61:5d:bb:6f:d0:38:ca:8a:b9:
41:2b:13:cc:97:0b:8c:b8:3b:8b:e7:a8:05:25:eb:d2:f8:92:
ff:46:d4:b6:6a:a7:9d:fb:22:91:1d:5e:3b:9f:58:d5:81:db:
bd:03:08:76:d0:c5:c7:5e:41:f2:83:82:00:9f:da:16:c2:44:
a5:aa:a0:3b:d3:55:ac:9b:de:ef:63:46:93:c4:6a:2e:3e:5d:
fc:cf:db:95:3b:34:f5:ba:94:81:42:96:b7:3b:e7:e2:f8:f2:
f2:3a:5a:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 9 12:11:52 2025 by rpki-client