Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/544D77168CDB11EE845D485D4AD9E6FC.roa
File: 544D77168CDB11EE845D485D4AD9E6FC.roa (raw, json)
Hash identifier: Xz5IuNFyH0U7OU0D2VcDRczqYORy8jFpk+LFVWfWrsc=
Subject key identifier: E5:5C:8A:35:AA:2D:8E:00:E5:50:A5:23:6E:A3:4B:86:FF:AE:42:65
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 54C0
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/544D77168CDB11EE845D485D4AD9E6FC.roa
Signing time: Mon 27 Nov 2023 04:13:33 +0000
ROA not before: Mon 27 Nov 2023 04:13:30 +0000
ROA not after: Tue 26 Dec 2023 04:13:30 +0000
asID: 62240
IP address blocks: 154.196.51.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 21696 (0x54c0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 27 04:13:30 2023 GMT
Not After : Dec 26 04:13:30 2023 GMT
Subject: CN=6564176d-3231
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:62:d9:e4:33:06:95:c6:58:c3:2a:19:42:b9:
b3:cc:bb:78:23:99:34:0a:3b:9f:c4:34:13:da:78:
15:fd:42:e0:0d:b8:cd:82:d3:8a:5e:a6:7a:6a:3e:
d0:1b:e2:90:73:93:a1:43:3e:c0:c0:e7:62:7f:6a:
9d:ad:8d:d7:14:3f:45:87:b4:81:4b:0d:42:e2:7a:
ac:9b:52:0f:80:e5:a8:48:6b:ea:c7:f6:fe:a8:aa:
4d:f6:ec:a8:ce:fd:eb:27:40:e6:c4:d5:f5:03:3e:
9c:8a:9f:fc:e7:68:58:f0:3c:42:ec:2d:f0:43:ea:
38:ab:a5:5b:b6:bc:bb:1a:62:2a:47:e6:1a:ae:9d:
36:79:b8:d9:e7:2d:51:d6:04:e3:1a:d7:e2:2c:f5:
53:0b:ab:db:64:b1:66:a8:e9:bc:de:51:d4:ba:d8:
7c:e8:fb:0c:ba:c1:9e:b4:2d:bf:73:39:46:be:11:
be:af:29:72:87:fa:d8:12:78:50:59:6c:88:b6:e0:
5e:99:18:a7:b0:18:e6:07:78:ac:62:74:2a:f6:61:
1d:58:09:4a:bc:67:62:7a:3e:0b:3e:8f:a4:e6:46:
3c:cc:5a:55:04:a3:f6:78:3b:22:4c:ce:b2:d1:cf:
93:6d:53:19:8b:6d:37:29:9d:a7:c7:7b:06:ff:ff:
7a:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:5C:8A:35:AA:2D:8E:00:E5:50:A5:23:6E:A3:4B:86:FF:AE:42:65
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/544D77168CDB11EE845D485D4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.196.51.0/24
Signature Algorithm: sha256WithRSAEncryption
c1:4a:30:9b:51:a3:c2:d4:f5:4f:5b:34:d2:dd:8a:56:8e:46:
ad:30:0d:46:41:ee:48:08:a3:eb:de:41:c2:20:40:d2:8c:c9:
af:ac:95:0f:b4:97:f3:5c:da:06:e1:12:23:fe:a3:ba:ac:df:
ec:86:fc:84:a9:6c:fe:02:1e:65:dc:ec:0f:10:46:f8:2b:1d:
ff:31:64:c7:f1:af:f5:94:55:41:42:24:32:c4:25:b5:1f:51:
84:26:3f:6c:2a:6f:48:b3:7b:85:6e:34:b5:5e:81:81:6f:ac:
bf:94:9c:31:1d:68:c3:39:62:25:d2:2d:e2:78:99:dd:b8:ac:
1b:c0:54:b0:19:ec:33:82:9b:77:05:2e:35:46:2e:3e:6a:18:
15:65:4a:af:97:58:c9:ec:94:0a:a0:60:2a:85:87:e4:3a:7d:
83:e2:c3:59:c2:3e:7b:28:d7:3d:aa:c1:e0:5e:6b:eb:a3:d3:
f6:80:8b:52:39:87:96:1e:42:68:f8:18:fd:cf:1a:73:87:95:
f2:d4:e8:51:07:f9:9f:62:8f:03:2a:43:91:9d:3b:1c:c0:86:
10:52:4c:42:d8:a4:fd:8d:3c:0d:a4:e7:b6:96:f6:ee:a6:e1:
86:69:f5:74:dc:b5:06:91:15:45:91:00:b4:60:96:d6:29:1b:
88:8d:30:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 9 11:12:24 2025 by rpki-client