Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/492F3CC68A9B11EE8D6578304AD9E6FC.roa
File: 492F3CC68A9B11EE8D6578304AD9E6FC.roa (raw, json)
Hash identifier: LE4X3Cm5H1MBvfkhMfieUEqDJAlS/Cb14NT4IrBJtlU=
Subject key identifier: 34:BC:1E:65:3B:94:55:A7:1C:47:1E:92:D0:76:6D:B4:77:D0:A3:18
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 5474
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/492F3CC68A9B11EE8D6578304AD9E6FC.roa
Signing time: Fri 24 Nov 2023 07:30:05 +0000
ROA not before: Fri 24 Nov 2023 07:30:01 +0000
ROA not after: Tue 26 Dec 2023 07:30:01 +0000
asID: 62240
IP address blocks: 154.194.91.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 21620 (0x5474)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 24 07:30:01 2023 GMT
Not After : Dec 26 07:30:01 2023 GMT
Subject: CN=656050fd-ce2a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:fa:4c:ea:5b:0c:7a:9f:ed:32:1d:b2:c0:fa:dc:
e2:24:b5:cc:f6:71:dc:39:dd:11:94:b4:e5:0f:e9:
38:c8:dd:89:cc:e0:9b:f2:4f:95:b7:05:a1:cf:65:
4a:d4:53:a8:7b:d4:eb:29:96:3e:a9:6e:42:49:d3:
6a:6a:75:47:21:81:fa:3a:f0:d2:5c:39:6a:82:ad:
1e:d3:c3:8e:5b:a3:ca:0e:a9:43:00:0a:28:35:e3:
1b:16:6a:f0:8a:23:0d:57:ee:03:26:42:b5:0b:bf:
5e:09:2b:22:6d:f1:dc:8a:3e:7a:fb:74:ad:5d:a6:
5c:b0:b7:c1:91:41:64:50:9f:2b:57:bc:c9:c7:df:
0e:25:ca:5d:50:4b:68:fe:60:8a:71:35:a2:8e:8f:
26:92:60:1e:05:92:f6:ff:df:f5:cf:7a:bd:49:d2:
d0:b5:4e:0a:a6:a6:0b:fa:66:37:f6:9c:b9:1a:8a:
d1:34:8a:42:2e:0e:4f:91:e1:bd:93:91:8e:07:8c:
8a:de:53:b3:2d:51:74:29:cd:bf:2b:7c:9d:54:cd:
10:47:a4:c1:93:42:c3:16:bb:27:88:e9:b2:14:e5:
80:78:f8:fe:f2:66:03:0a:63:c5:2b:68:a9:ca:af:
c6:7e:dc:85:58:71:91:f9:c5:50:b1:d6:aa:4e:44:
13:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:BC:1E:65:3B:94:55:A7:1C:47:1E:92:D0:76:6D:B4:77:D0:A3:18
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/492F3CC68A9B11EE8D6578304AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.194.91.0/24
Signature Algorithm: sha256WithRSAEncryption
5d:23:07:05:71:5b:8b:67:28:b8:58:2a:6c:4e:f6:0b:0f:38:
8d:7d:d0:87:0b:00:11:30:1d:14:ad:fa:5e:90:a9:b6:28:60:
a3:cb:54:38:66:56:76:a5:8f:0e:c7:b7:db:f7:a8:b6:44:5d:
48:23:40:5d:fc:0f:5b:cb:97:9e:8e:1a:5f:62:7c:f7:52:74:
b9:d3:59:54:6b:61:4b:2a:23:83:dc:fa:f7:60:e2:a8:b7:95:
b9:52:b6:75:23:08:3a:4f:a3:31:56:b0:d4:0d:73:cb:1b:fb:
7b:17:ff:18:d8:9f:ef:55:40:39:bf:90:dd:c1:6e:8c:95:e4:
dc:b4:f9:60:9a:b6:bf:d1:b3:d2:dd:a8:d6:f1:74:95:18:e8:
79:34:d4:c0:77:af:88:76:bb:12:73:e4:3f:09:b9:a2:89:17:
0a:ee:b3:cc:e1:c2:83:7e:6d:62:37:79:cf:86:18:09:47:52:
2e:b5:14:bb:4c:35:19:0c:42:a8:bd:4e:c3:cf:f3:0e:06:3a:
ab:f0:5a:d8:2c:e9:9c:b4:f4:af:30:c3:78:0f:6e:98:b5:01:
4a:8a:a8:bc:d6:74:4e:64:6d:19:92:7c:1f:22:28:86:34:8e:
14:02:81:e0:82:3b:cc:bd:ea:b6:80:e9:28:47:3d:4a:19:4d:
82:78:ea:93
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 9 11:52:29 2025 by rpki-client