Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/4D4F04AE83C911EEA0CF93884AD9E6FC.roa
File: 4D4F04AE83C911EEA0CF93884AD9E6FC.roa (raw, json)
Hash identifier: zJjMyLG7KTslrb9Oe9DwbNBHZKAxo5+cWK2UTXHDg2k=
Subject key identifier: E9:20:FC:34:8D:99:EE:2F:14:D9:8D:C7:C9:BD:4C:3D:3E:98:8E:78
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 5035
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/4D4F04AE83C911EEA0CF93884AD9E6FC.roa
Signing time: Wed 15 Nov 2023 15:11:50 +0000
ROA not before: Wed 15 Nov 2023 15:11:47 +0000
ROA not after: Tue 12 Nov 2024 15:11:47 +0000
asID: 64267
IP address blocks: 154.83.32.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 20533 (0x5035)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 15 15:11:47 2023 GMT
Not After : Nov 12 15:11:47 2024 GMT
Subject: CN=6554dfb6-c0ab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:8b:5b:9c:f1:59:50:c1:c2:45:86:5f:e6:05:
24:0f:dc:04:19:a7:1b:1d:42:f3:7f:18:c3:38:65:
a3:7c:2f:7f:c6:65:99:39:f1:44:35:ed:95:9d:88:
22:60:0f:04:31:e1:7b:07:ba:31:f3:1f:72:bf:2f:
aa:5c:50:94:bd:e0:1e:51:15:32:a3:8b:02:a6:f8:
e2:cd:6a:c1:ce:f2:a8:d3:24:00:1f:9a:85:ed:39:
b0:7a:6f:d2:77:3d:73:d7:6f:33:bf:87:f4:f4:18:
2b:2b:93:53:7b:fc:51:20:0f:56:7e:a8:1a:7c:7d:
41:d9:ff:93:ab:79:97:30:bf:cb:45:c8:a9:64:a9:
02:e6:69:4a:2c:ec:1b:b3:19:fd:06:fa:6d:ba:ee:
ef:fe:a3:46:63:d3:27:4c:42:36:75:10:c8:0d:8e:
1a:d3:f2:48:e7:33:64:0f:75:3a:21:29:b1:84:fa:
07:40:ec:59:d0:51:2a:9a:39:cc:94:8b:af:f4:6f:
32:be:01:36:32:34:7f:7c:93:63:02:b0:4f:e4:84:
c0:f5:e3:c3:fc:23:44:98:08:5a:74:0f:ef:cb:5c:
37:5f:b0:3d:fd:44:ae:94:48:c6:d1:b9:c2:23:e1:
66:03:6e:0a:ec:c3:31:9e:77:9c:06:8a:30:d7:40:
b1:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:20:FC:34:8D:99:EE:2F:14:D9:8D:C7:C9:BD:4C:3D:3E:98:8E:78
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/4D4F04AE83C911EEA0CF93884AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.83.32.0/24
Signature Algorithm: sha256WithRSAEncryption
be:34:9a:d4:3f:99:b2:2d:59:ac:19:cb:40:e2:98:de:9a:39:
65:f8:51:0d:b6:42:79:c2:14:50:9a:03:97:c5:c4:a5:b8:e9:
bf:2f:79:94:07:31:25:73:91:2c:66:ce:d4:8a:eb:67:a3:ec:
a5:00:b9:4f:e8:8a:a7:b6:cf:4b:83:04:46:fe:fd:d3:6b:26:
d9:1a:37:a9:9f:7f:71:ae:21:17:e6:09:ca:f6:b9:40:c6:f1:
99:d5:75:c0:39:f7:f1:52:44:72:22:70:11:85:09:70:19:c8:
a7:74:b5:f7:1a:59:87:a3:e1:70:be:33:76:da:86:35:4e:9c:
a7:26:88:ae:61:5e:63:87:30:55:3c:e8:0b:2a:82:70:36:a1:
55:66:e4:11:c5:34:e6:66:22:08:c4:6b:a5:98:56:6c:58:cb:
5f:d7:ca:7c:99:fe:4b:18:9b:db:30:41:34:6e:6f:4b:93:88:
a8:c8:27:2c:31:2b:9b:c3:9e:1c:45:f1:5b:3c:35:f1:b3:a4:
b3:52:42:8b:50:48:cc:53:c9:22:90:6a:f4:fc:c0:f0:49:46:
c8:68:df:ec:f0:f6:58:c6:78:0d:04:61:d8:80:e4:59:2b:1f:
21:66:1e:34:59:f9:49:83:44:57:77:d3:31:54:5b:1d:0d:fa:
61:ef:b1:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 11 13:57:24 2025 by rpki-client