Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/4023A0228DCF11EE9FF179674AD9E6FC.roa
File: 4023A0228DCF11EE9FF179674AD9E6FC.roa (raw, json)
Hash identifier: 9zBAY+SUs6X+h3LUoIRmUp3jThLOwhYn4ncghyqAzx0=
Subject key identifier: CB:9A:D0:06:0E:93:2D:F0:9E:01:F5:B1:19:57:48:74:CA:16:12:5C
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 55D4
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/4023A0228DCF11EE9FF179674AD9E6FC.roa
Signing time: Tue 28 Nov 2023 09:19:37 +0000
ROA not before: Tue 28 Nov 2023 09:19:33 +0000
ROA not after: Tue 26 Dec 2023 09:19:33 +0000
asID: 62240
IP address blocks: 154.195.111.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 21972 (0x55d4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 28 09:19:33 2023 GMT
Not After : Dec 26 09:19:33 2023 GMT
Subject: CN=6565b0a9-8f1c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:04:56:41:fc:d6:70:70:a3:59:51:e8:9d:7e:
43:40:8d:0a:e2:18:f1:a6:64:97:3d:31:ae:3a:75:
dc:29:28:df:de:30:17:bf:a1:5f:7c:d7:7a:83:69:
87:9c:61:d6:68:9e:e3:19:88:54:17:de:9b:6e:69:
96:46:a6:0a:8b:e1:a0:26:17:d6:84:bf:ee:16:94:
f1:1c:ff:85:ff:6c:bb:6c:1a:53:86:dc:a4:7c:fe:
70:e5:aa:aa:c6:69:f7:a4:a0:bd:6f:4a:00:f5:e8:
77:11:80:65:83:65:43:89:16:5b:c0:7b:f5:b1:2f:
ac:65:b6:4b:b6:70:f8:d5:38:ec:e3:f0:46:46:ab:
71:04:9b:c9:59:12:04:fc:9f:8e:bb:78:19:e3:39:
57:9a:f7:73:ca:1b:6d:3f:12:6e:06:9f:46:82:c1:
0d:88:23:33:02:9d:43:9d:4a:e4:64:5a:b1:ae:c6:
12:63:43:1f:9f:24:f8:20:cc:30:79:3c:d1:1a:7f:
3b:87:42:82:04:ca:d8:7c:60:16:99:39:d9:9d:a3:
e9:4f:c2:29:b2:60:d5:14:ab:06:60:85:69:77:95:
05:29:b0:46:38:4d:73:06:26:96:ca:ff:b9:73:75:
2c:e4:e9:07:60:64:f8:25:95:e5:fa:22:4a:fd:64:
21:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:9A:D0:06:0E:93:2D:F0:9E:01:F5:B1:19:57:48:74:CA:16:12:5C
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/4023A0228DCF11EE9FF179674AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.195.111.0/24
Signature Algorithm: sha256WithRSAEncryption
26:b1:e8:48:ae:2f:8c:47:28:ae:69:50:4d:a6:e9:d7:d5:de:
d8:a8:96:d6:e8:91:cb:95:55:c5:8d:e0:1e:19:1e:2a:5a:73:
46:46:9a:53:03:b0:dd:dc:51:ac:16:3b:53:e0:9a:b8:a4:da:
87:43:00:47:c0:77:89:37:10:6b:3b:01:da:b1:47:5e:e4:9d:
2d:69:a3:b2:20:c0:69:9f:f3:ab:ed:46:fb:6f:6c:20:44:52:
10:16:da:6f:f8:27:89:10:c9:1b:d1:52:17:c2:03:32:e5:c9:
06:03:ab:10:f1:b9:3e:f9:e5:ee:6a:f7:60:7b:8e:f7:0d:14:
b6:51:6c:90:1a:3e:6f:1d:f0:a5:e7:da:4a:59:a2:8c:0d:bb:
32:85:e9:59:57:ca:69:07:a5:13:8c:07:60:d6:b2:0a:ac:40:
7e:26:bf:ba:26:6e:36:3d:9a:1e:79:fe:c7:47:01:ca:7b:e7:
d7:24:9e:66:f0:bc:80:d8:52:eb:95:8f:e2:4d:30:8d:ac:31:
da:2a:b8:d8:6f:11:10:e4:99:11:bc:17:f0:fa:ca:45:35:77:
16:84:1c:5d:59:a0:10:53:7c:bc:85:53:b9:8d:36:04:52:62:
71:f8:d1:66:af:78:b5:dd:55:7c:ba:01:37:71:87:31:92:91:
7e:83:a5:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 9 11:05:59 2025 by rpki-client