Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/4B680AC8DA6211EF827D3351762E951A.roa
File: 4B680AC8DA6211EF827D3351762E951A.roa (raw, json)
Hash identifier: Xqdb61yUcoBN3+t3vWdD+qxajuhBJUDyMZsG0ZfO+7M=
Subject key identifier: 2D:D3:D4:8A:B5:4A:77:5A:6F:A0:83:05:61:6A:FC:1A:8F:1B:7C:61
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 014865
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/4B680AC8DA6211EF827D3351762E951A.roa
Signing time: Fri 24 Jan 2025 14:48:38 +0000
ROA not before: Fri 24 Jan 2025 14:48:34 +0000
ROA not after: Sat 01 Mar 2025 14:48:34 +0000
asID: 49505
IP address blocks: 154.205.244.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 84069 (0x14865)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Jan 24 14:48:34 2025 GMT
Not After : Mar 1 14:48:34 2025 GMT
Subject: CN=6793a846-3e3d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:5f:ed:6f:88:f0:15:2b:b5:27:f2:d2:b5:e8:
cf:fe:05:0b:79:98:c2:73:8b:3e:10:e3:00:81:ed:
56:7e:2a:e4:9d:02:0c:c8:1e:6c:1c:43:b2:27:55:
50:69:aa:bc:46:88:86:72:e4:06:33:1d:ce:cd:e0:
8a:a0:9a:ec:9e:80:f6:27:43:77:ed:63:19:94:8c:
fa:f8:30:db:48:cf:b7:8f:12:82:fb:09:0b:14:5f:
6b:5a:f4:86:0b:26:7b:5c:c5:7b:ba:d6:59:7d:5b:
b5:8b:67:a6:49:45:1d:08:b4:fe:a0:6f:ce:29:87:
cd:52:17:bb:3d:cc:42:05:84:b1:9c:26:7b:41:24:
69:8c:b1:e7:16:c1:b5:68:d7:4c:eb:cb:c5:d0:58:
bd:48:5a:50:7f:c2:66:f8:77:64:46:c0:25:43:80:
30:80:90:9a:bd:bb:e2:b2:cc:b7:5d:e9:1d:2b:87:
1f:44:6b:38:19:5f:ae:4c:4b:bc:f1:bc:f0:52:5a:
a7:1e:2a:6b:2f:21:9b:00:43:d5:5b:88:d4:18:00:
86:87:64:b4:b6:7d:f8:94:8d:5a:b4:91:8c:98:67:
1c:bc:8e:ea:8d:93:52:7f:33:37:99:c4:3c:af:81:
b7:58:d6:2e:04:ef:5b:87:22:40:2c:0d:5d:ac:d7:
d2:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:D3:D4:8A:B5:4A:77:5A:6F:A0:83:05:61:6A:FC:1A:8F:1B:7C:61
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/4B680AC8DA6211EF827D3351762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.205.244.0/22
Signature Algorithm: sha256WithRSAEncryption
21:8c:2f:99:73:ff:bc:ea:7f:4a:97:94:7d:e3:9f:9d:b6:ed:
5b:d9:e7:b4:30:36:4b:e1:f5:c3:cc:52:5a:23:53:a1:a1:45:
00:61:f9:2f:f3:3b:e4:6e:27:0c:ea:b9:66:16:6f:3e:81:63:
73:f8:86:ad:58:19:65:1c:6f:8f:3c:18:b2:af:c8:e9:50:ce:
50:47:3a:67:81:d3:e2:ad:86:97:01:86:97:13:4d:6b:e9:28:
d5:22:99:ff:3e:07:11:d3:3c:6d:c1:7e:0c:5f:3a:f6:6e:dc:
a8:69:7a:a0:76:e4:c4:c8:71:90:c8:e9:dc:09:f4:fb:2c:ef:
c5:75:54:82:dc:fe:26:15:a1:d8:80:a7:8f:d0:2a:57:d5:28:
0d:ee:11:e3:98:27:3e:23:23:e0:4a:4c:2e:db:a6:fd:45:4d:
19:de:dc:74:31:5d:6a:6f:28:ff:5a:bb:42:38:7a:d3:06:f9:
7a:c7:43:a7:d3:9c:20:fa:03:9d:36:9b:39:26:69:ef:62:44:
c2:2c:33:c4:e0:56:b2:8f:96:39:21:af:d2:bb:7e:cb:5b:9b:
67:43:2e:6d:52:03:34:90:a5:25:9e:40:98:42:f0:29:f9:29:
d8:4f:91:0c:4c:75:c0:78:bb:34:31:e1:bf:77:70:94:b0:8c:
0d:24:47:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 17:52:31 2025 by rpki-client