Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/44C88F9C8A9C11EE813F69334AD9E6FC.roa
File: 44C88F9C8A9C11EE813F69334AD9E6FC.roa (raw, json)
Hash identifier: 5NbM316wdNtbs4IdNFZqsMfbRel6skwaDdXPSBIr6rg=
Subject key identifier: A2:0B:F7:93:D1:16:64:9B:98:C3:0A:FA:89:32:BA:0D:06:D9:13:A3
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 5485
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/44C88F9C8A9C11EE813F69334AD9E6FC.roa
Signing time: Fri 24 Nov 2023 07:37:07 +0000
ROA not before: Fri 24 Nov 2023 07:37:04 +0000
ROA not after: Tue 26 Dec 2023 07:37:04 +0000
asID: 62240
IP address blocks: 154.196.19.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 21637 (0x5485)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 24 07:37:04 2023 GMT
Not After : Dec 26 07:37:04 2023 GMT
Subject: CN=656052a3-e792
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:7d:3d:43:6b:71:bd:21:d9:d1:99:c8:3f:e5:
fc:6b:65:62:a0:32:e4:3d:f5:b2:b2:55:37:66:9b:
24:9d:29:15:97:03:79:13:50:58:05:b2:b4:8e:cc:
fd:59:67:47:f7:40:6c:68:c8:c7:25:6a:3f:49:22:
75:27:bd:cf:58:29:07:4f:d5:46:fd:63:d7:e2:3a:
16:a2:7b:c8:74:7b:13:12:3b:b1:ec:a6:b1:bf:90:
06:d8:ed:1b:fe:18:4f:f0:74:48:d9:7f:a4:bd:c3:
6c:49:cb:5a:0f:38:b2:a0:c3:63:89:9d:6f:88:54:
58:95:82:11:5b:02:4e:37:bb:8b:52:78:37:5f:d9:
62:a7:5b:5d:f5:5f:ee:42:33:8b:8c:ca:3a:67:d1:
8f:be:c1:9f:07:51:48:9e:2f:40:7f:72:aa:c6:51:
9f:db:2e:b5:16:ce:39:ed:e2:52:85:4c:be:0c:de:
42:1c:0a:a9:8b:04:ae:6b:ee:e5:cc:c9:8b:4c:16:
c2:6a:b7:bf:18:0d:dc:a6:40:79:c8:c6:c0:08:83:
cb:01:37:03:23:1f:99:9b:a0:7f:22:d3:75:34:36:
2f:11:de:94:80:4d:08:89:3f:3b:04:5f:1a:2c:f0:
23:20:10:1c:52:a4:4b:2b:ef:c8:95:ce:29:7b:5a:
16:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:0B:F7:93:D1:16:64:9B:98:C3:0A:FA:89:32:BA:0D:06:D9:13:A3
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/44C88F9C8A9C11EE813F69334AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.196.19.0/24
Signature Algorithm: sha256WithRSAEncryption
12:06:ab:43:f3:81:32:98:55:dc:e0:70:ed:aa:a1:4b:88:73:
72:b6:9b:12:94:4a:81:42:84:80:b3:11:50:1a:c0:28:69:92:
a6:91:70:a4:5c:cc:6b:ab:22:22:35:6d:14:0e:a7:33:67:b8:
fd:36:84:c9:65:15:41:9f:ca:9b:cc:59:0f:e3:4c:99:c6:23:
10:46:6b:b7:9b:06:e1:49:ea:47:80:8d:b4:61:db:6c:92:33:
cb:96:ea:8a:44:a5:c0:27:05:50:b5:4a:72:5f:1f:d9:d8:f6:
60:6d:c1:4f:f4:94:f1:75:a7:1b:aa:33:be:fc:97:ef:2f:e2:
b0:58:f8:b7:ed:d4:e7:ee:d1:33:c8:d8:7e:9d:f7:c2:9e:ab:
ec:34:d3:0a:7b:47:62:af:3a:fd:7b:90:d5:e2:9c:77:99:93:
62:86:07:35:62:d4:64:df:47:19:78:f5:e8:f9:7e:d2:6e:33:
cc:fc:a8:d7:26:af:1b:d0:60:10:89:81:6a:00:50:c8:f3:b3:
12:bc:8b:94:d5:73:36:e0:57:d5:56:89:d6:e8:63:51:69:4f:
f4:7e:12:1d:2f:f0:5f:91:cb:79:32:98:31:fd:1a:2b:65:dc:
cb:00:53:32:19:e1:56:e9:5b:e1:44:9e:d2:b9:06:6b:d1:8e:
03:24:22:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 9 11:14:06 2025 by rpki-client