Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/3EE32EBA8CDC11EE890045604AD9E6FC.roa
File: 3EE32EBA8CDC11EE890045604AD9E6FC.roa (raw, json)
Hash identifier: vGB1X5A21NIGgtBPYrevkREud1ZGWh5WvK+lGyJQmyo=
Subject key identifier: CF:66:BE:88:CD:15:06:22:CC:D4:93:DD:E5:F5:41:B9:69:D9:25:C4
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 54D7
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/3EE32EBA8CDC11EE890045604AD9E6FC.roa
Signing time: Mon 27 Nov 2023 04:20:07 +0000
ROA not before: Mon 27 Nov 2023 04:20:04 +0000
ROA not after: Tue 26 Dec 2023 04:20:04 +0000
asID: 62240
IP address blocks: 154.196.82.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 21719 (0x54d7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 27 04:20:04 2023 GMT
Not After : Dec 26 04:20:04 2023 GMT
Subject: CN=656418f7-604c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:d9:4a:95:c1:f7:d6:c4:0b:09:ae:e4:b9:f5:
37:31:77:e1:22:64:5a:15:09:ec:cd:8c:fd:5f:d7:
e1:a6:51:b4:4f:39:b1:8d:6c:4e:d0:18:8e:fa:ae:
5d:2e:9e:45:d4:ab:79:51:37:0a:c6:ee:bc:eb:64:
1a:62:d2:62:97:e8:87:bd:ef:79:2f:a8:be:b3:b8:
76:0f:9f:08:e0:20:3b:e5:21:6b:60:78:c0:25:87:
6d:7c:8c:fb:9d:5c:f4:f1:20:b2:bd:ec:6e:9b:60:
70:0f:4e:53:32:ad:a2:89:86:f3:e6:22:1a:f7:ef:
6c:fc:22:a9:08:85:1e:29:52:56:f0:5c:89:f6:db:
b2:f8:bb:4f:69:ea:8e:8c:a0:8d:2d:c3:85:f7:36:
16:33:8b:bd:ce:8a:05:e5:d4:4f:df:7e:8c:89:b5:
20:04:94:a4:fc:02:c1:ed:e5:75:73:97:07:93:e5:
4b:22:fc:e4:89:a2:15:5c:10:1e:a9:56:8a:c3:fc:
c7:12:53:f1:da:39:85:d3:42:e0:18:4b:e8:49:4f:
7b:5a:f8:f2:f7:38:13:a5:1f:ac:3b:aa:b4:57:65:
4b:34:e4:83:e9:36:37:b6:d7:31:1c:aa:07:5c:0e:
47:db:4e:23:89:3a:e4:ef:2a:00:21:00:86:e8:f7:
9e:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:66:BE:88:CD:15:06:22:CC:D4:93:DD:E5:F5:41:B9:69:D9:25:C4
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/3EE32EBA8CDC11EE890045604AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.196.82.0/24
Signature Algorithm: sha256WithRSAEncryption
b2:e5:23:e0:8b:cc:f4:9a:73:4a:50:e7:51:91:7e:d9:3f:b8:
2a:a3:fb:9d:21:08:3e:9f:21:7b:32:fe:ce:55:6d:8e:9b:e8:
e7:30:ef:89:fd:aa:e9:68:b7:0a:b9:43:e2:22:e0:b5:39:88:
d6:fa:ab:02:bb:d8:2f:5c:00:39:09:f6:2e:f8:83:75:df:d6:
d6:99:03:9d:58:85:0b:f1:5b:fc:84:63:ce:83:75:4d:0d:e3:
f7:3e:82:2c:a3:c2:20:f7:2e:c3:4b:7b:9a:93:e1:77:2e:69:
b2:73:aa:b0:cf:df:57:ea:0a:8c:47:ed:9c:23:af:95:08:e4:
7f:2d:f3:cd:79:0b:5b:3b:70:ca:b2:7a:c3:bd:aa:7c:a7:3f:
e6:cd:5c:43:59:7b:f3:1c:c1:f3:e8:e4:0e:94:4a:2e:83:ab:
63:78:1d:d0:74:21:4d:2e:f2:00:c2:51:22:08:45:41:38:38:
96:ee:c7:b8:f7:82:aa:3a:e3:95:98:a0:d3:b2:99:5b:94:e4:
b5:da:8e:1e:b2:4b:65:78:23:da:60:0e:d2:99:4e:7d:2f:23:
d7:a4:fa:bf:4c:49:a2:5c:3c:d1:eb:e8:e9:05:50:00:6c:5c:
4d:aa:05:d2:e8:5a:6b:10:ef:5c:e7:cd:57:ea:c1:ea:b5:96:
84:84:ae:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 9 10:44:05 2025 by rpki-client