Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/50C1FCDAF4E411EF8F757FBE762E951A.roa
File: 50C1FCDAF4E411EF8F757FBE762E951A.roa (raw, json)
Hash identifier: R3MpaLqkLVAjOlEhPSTbZnsYUohrviH/L2mQkxol8IE=
Subject key identifier: 86:CB:F0:D3:16:2A:2A:E8:2C:34:74:68:97:8C:4D:8D:A8:1E:E8:E0
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0166E1
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/50C1FCDAF4E411EF8F757FBE762E951A.roa
Signing time: Thu 27 Feb 2025 08:24:52 +0000
ROA not before: Thu 27 Feb 2025 08:24:48 +0000
ROA not after: Wed 26 Mar 2025 08:24:48 +0000
asID: 62240
IP address blocks: 154.195.183.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 91873 (0x166e1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Feb 27 08:24:48 2025 GMT
Not After : Mar 26 08:24:48 2025 GMT
Subject: CN=67c02153-5456
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:10:92:6d:97:cd:6c:be:57:aa:5c:95:75:16:
b5:17:14:7b:86:2b:7d:6a:9d:18:d9:be:45:68:5e:
c6:25:30:e7:34:4f:dc:bf:a3:13:44:32:7d:f2:9c:
b9:68:66:f7:d5:6e:f9:36:90:02:5b:a1:e1:66:7a:
8a:c0:a9:a6:8e:b2:7d:99:1d:72:ea:67:cd:9b:5d:
29:92:fb:dc:42:f4:22:dc:35:b5:e5:99:43:00:0f:
ff:4a:7a:5e:67:3f:cd:d8:05:22:cb:f8:a1:de:e1:
65:5f:9d:50:f9:a9:03:df:9d:c0:46:9e:b8:30:22:
69:12:35:bd:48:7f:e5:6c:49:ea:3d:a9:df:f5:c6:
50:49:ba:f0:78:f0:ec:d5:45:2c:27:6c:39:dd:1b:
05:5d:fa:ab:96:c3:1b:a0:52:e9:07:83:b2:ea:07:
09:89:36:c7:f4:77:e0:4a:20:16:d6:f2:03:ab:5b:
44:5f:be:91:77:d8:3a:45:e1:cb:1b:2d:a1:fe:be:
63:b9:45:60:7a:ee:68:26:24:8a:37:5b:2f:1d:8b:
60:34:66:58:36:9e:af:a1:df:d5:b7:3c:97:49:fd:
86:1a:19:55:d3:2a:7d:45:cd:e2:8e:11:0f:d1:1a:
58:54:a7:ed:c6:78:a0:9d:0d:76:1f:b8:ef:8e:34:
0b:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:CB:F0:D3:16:2A:2A:E8:2C:34:74:68:97:8C:4D:8D:A8:1E:E8:E0
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/50C1FCDAF4E411EF8F757FBE762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.195.183.0/24
Signature Algorithm: sha256WithRSAEncryption
33:f3:07:de:ec:bb:a6:3a:f8:0c:de:07:74:5f:8e:30:9e:7e:
1a:3e:68:56:fb:31:e2:f3:2c:4b:b4:96:7b:bc:9f:87:be:f0:
37:d8:7e:c3:f0:4a:5b:a3:75:86:91:53:7d:81:bc:c3:29:4b:
58:86:e0:a5:a7:83:77:36:45:1d:aa:6a:1e:50:46:6b:4a:bc:
57:36:69:24:12:ff:86:0e:ed:cc:af:9d:3b:79:1a:d8:49:63:
07:d5:50:e8:ff:b4:df:99:67:f7:54:45:c8:54:bf:11:4c:14:
99:f4:63:c4:4b:49:14:96:a5:6f:30:95:3a:19:b7:d9:c2:ad:
94:4c:33:49:40:c4:1e:90:d2:ef:5f:df:61:05:84:6f:1e:31:
7a:2a:8c:99:0a:40:79:3b:f0:d3:76:5c:d1:38:5f:38:f9:44:
4c:43:f1:61:6f:3c:b9:9c:98:bd:47:cc:d0:69:09:2c:fb:43:
b9:f5:d0:66:9f:fa:16:5f:75:1a:e0:03:80:8d:15:78:54:54:
0f:6d:b2:b3:43:f9:1e:a9:52:ca:fc:d3:f9:23:d8:b1:21:db:
89:9b:94:5a:95:26:58:17:fe:60:6f:bd:26:74:fa:e4:6e:21:
b7:c6:6a:1d:d1:dd:f8:40:1b:e8:3c:d3:4b:41:74:72:47:b5:
34:bf:56:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 9 12:08:24 2025 by rpki-client