Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/4D53D700F4EC11EFA330CB77762E951A.roa
File: 4D53D700F4EC11EFA330CB77762E951A.roa (raw, json)
Hash identifier: FVcEt4MKt6EPh9BRzfXm+pYdlbG3FTpdShQjlVJMpSE=
Subject key identifier: 2A:3B:0E:98:C9:32:5F:47:10:BE:53:58:51:6D:06:35:01:43:8A:7A
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 016727
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/4D53D700F4EC11EFA330CB77762E951A.roa
Signing time: Thu 27 Feb 2025 09:22:02 +0000
ROA not before: Thu 27 Feb 2025 09:21:58 +0000
ROA not after: Wed 26 Mar 2025 09:21:58 +0000
asID: 62240
IP address blocks: 154.194.117.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 91943 (0x16727)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Feb 27 09:21:58 2025 GMT
Not After : Mar 26 09:21:58 2025 GMT
Subject: CN=67c02eba-dad6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:2d:0e:f1:b0:49:58:ee:dd:88:3f:5b:e3:59:
0c:b5:6d:54:87:b3:7a:09:49:cc:b2:37:79:99:bc:
c8:d9:9e:0e:85:8d:8b:26:90:6f:a2:52:44:9c:01:
e7:52:a2:35:64:b3:ec:d4:9c:e6:dc:1f:e6:92:ef:
26:b3:d8:f3:c3:8c:32:b8:f3:0c:b2:e3:3c:67:f7:
2c:65:7c:31:36:9e:8f:24:a3:42:f8:1e:3b:a2:ea:
3c:71:c8:f1:a1:41:d8:cc:e0:cf:15:45:ed:d4:9e:
4f:6c:db:ea:bb:3e:c9:89:76:b7:83:80:46:16:51:
fb:2c:d1:18:00:56:1e:d5:1d:08:ca:9d:3a:76:e2:
70:23:18:44:f7:a4:3c:1a:ae:ea:78:a7:e8:ff:6b:
c0:1f:3c:28:a7:93:6c:d8:97:72:5f:9f:35:76:f2:
dc:f7:53:9f:11:2f:19:71:ac:79:d2:68:b4:0e:6f:
cd:8b:cd:36:51:e4:3e:c3:82:0f:bf:a9:18:61:71:
4b:1f:49:d9:e1:11:4a:d6:1e:f4:96:59:95:fc:71:
b7:06:d0:34:c6:2b:d8:35:23:ee:d7:e5:37:6f:05:
5a:66:9e:f0:be:41:c8:0e:66:47:29:b4:6a:67:f0:
35:61:66:ad:d0:87:28:04:df:28:22:4f:98:83:c2:
1f:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:3B:0E:98:C9:32:5F:47:10:BE:53:58:51:6D:06:35:01:43:8A:7A
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/4D53D700F4EC11EFA330CB77762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.194.117.0/24
Signature Algorithm: sha256WithRSAEncryption
5e:f5:48:4f:a2:dd:4a:cf:6f:6f:44:34:db:ae:d3:93:7e:24:
26:b2:cf:78:fc:a0:82:24:de:ee:01:62:d0:18:7f:12:cf:da:
39:fc:90:1e:14:ee:9c:6b:fd:e5:8e:0d:54:fa:86:7a:e6:a4:
a8:ea:68:8b:80:ca:0b:b2:da:e3:8c:6d:b8:61:86:88:34:8e:
49:45:d6:1e:7a:4c:8e:75:17:bb:f2:5d:13:da:43:0c:c5:f0:
21:85:ff:3d:dd:db:57:8b:85:8f:88:ac:b9:07:f7:eb:4d:df:
af:60:00:9c:6a:41:7c:04:1f:89:93:81:5b:d9:f8:c2:8f:fa:
40:49:25:a1:b0:d4:3e:f0:dc:fb:07:42:ae:8b:a3:10:44:e8:
b1:24:fe:dd:86:9c:24:2b:2a:b5:e5:c0:ab:48:df:5f:13:20:
e3:bd:6c:20:bb:da:d7:52:5f:2d:f9:72:7d:c5:09:10:57:b9:
05:d2:b1:49:71:cc:ee:09:00:2f:db:40:b1:77:e9:6b:67:49:
1d:98:4f:06:36:c7:08:70:50:58:a2:5c:ca:f0:4d:85:3b:e7:
3a:c4:3a:30:57:12:66:28:63:e9:06:1e:8f:07:95:bd:62:64:
5e:37:75:cd:c1:f2:67:9c:56:4e:e8:b4:09:2a:4a:75:58:97:
9b:37:73:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 9 06:34:38 2025 by rpki-client