Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/55EEEB78F51B11EFB23EF4B5762E951A.roa
File: 55EEEB78F51B11EFB23EF4B5762E951A.roa (raw, json)
Hash identifier: s4o6+W0Ti3wQ4mv9j0PvaM8rYmjW7IICoeDPTe2s5Ds=
Subject key identifier: 11:F0:BB:D3:51:98:F2:91:A7:4B:7A:74:39:BE:65:68:F5:1A:83:0C
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0168DC
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/55EEEB78F51B11EFB23EF4B5762E951A.roa
Signing time: Thu 27 Feb 2025 14:58:43 +0000
ROA not before: Thu 27 Feb 2025 14:58:39 +0000
ROA not after: Wed 26 Mar 2025 14:58:39 +0000
asID: 62240
IP address blocks: 154.196.56.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 92380 (0x168dc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Feb 27 14:58:39 2025 GMT
Not After : Mar 26 14:58:39 2025 GMT
Subject: CN=67c07da3-6d59
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:2a:7b:5d:7c:7d:41:92:99:73:00:93:b2:1d:
a8:c5:7f:fc:65:ef:e2:a0:5e:49:a8:4a:27:0d:dd:
3b:cb:8e:f7:44:86:78:b2:cb:b1:6b:33:b6:5e:3e:
ab:dc:8b:b3:4f:92:ae:07:b4:48:cf:54:35:1d:67:
34:28:67:5a:4e:9e:4a:d6:a5:99:8e:69:a3:54:18:
e6:8e:83:e8:bb:8e:8b:11:b1:3c:74:4f:d2:cb:3a:
c0:aa:e1:71:d9:ee:94:89:f6:93:e7:ca:c5:f2:5d:
54:7b:79:cd:7a:9d:06:c4:7f:49:b8:5b:48:ae:1f:
ed:54:0b:e2:83:fd:72:04:16:44:73:bf:59:46:30:
7e:d9:85:4f:87:2b:bb:21:bd:13:cf:aa:35:14:02:
3f:d6:d1:63:67:66:58:8a:ef:75:de:6e:47:dc:7e:
7c:f5:e8:5b:fc:22:21:1d:ed:b2:87:dc:96:3e:88:
a7:ba:4f:31:b2:4a:81:cd:29:7d:5b:10:e0:db:e9:
e3:1c:e3:98:aa:2b:ad:69:41:8d:94:a9:ee:43:c7:
4b:de:71:10:45:20:07:79:79:15:21:36:5c:98:d6:
e8:ce:ea:2d:2e:ee:37:77:5c:a2:2b:22:62:3c:02:
a3:39:01:67:a7:da:21:66:95:dd:02:77:bd:5e:b0:
3b:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:F0:BB:D3:51:98:F2:91:A7:4B:7A:74:39:BE:65:68:F5:1A:83:0C
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/55EEEB78F51B11EFB23EF4B5762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.196.56.0/24
Signature Algorithm: sha256WithRSAEncryption
0c:65:6c:7e:b6:26:7b:3f:74:fa:c3:53:5b:3a:df:d1:51:08:
65:ef:75:9c:eb:c5:87:3b:c6:6f:50:50:81:a6:87:7a:ff:ab:
0b:2b:b4:38:65:3c:e9:e1:96:5e:0f:ef:90:2e:db:10:1b:85:
e8:3a:1b:39:73:9b:f6:7d:0e:c0:21:a7:a7:69:b4:2b:4c:44:
9b:4d:13:ec:b5:7f:a6:b7:9a:a6:fe:4d:12:b1:de:12:56:92:
05:a1:2a:83:e3:96:16:71:bd:d1:aa:e6:1b:c9:19:2c:50:bd:
b9:66:82:a3:3f:b2:37:af:c8:b7:17:1b:49:ec:cd:72:18:9b:
1d:b5:9c:a9:41:c8:f3:22:03:9b:92:a1:f3:2e:82:d4:0a:f0:
75:e6:ee:b1:d8:bb:ef:20:10:40:3d:34:b0:1c:84:43:76:66:
a2:a1:ff:44:6c:38:99:20:d1:5b:24:8e:75:47:85:85:2f:14:
ab:88:d8:9b:b4:53:bf:2d:1f:17:70:c0:63:2c:9f:26:2e:7a:
3a:af:10:3a:13:b1:6b:bf:93:3a:3e:b9:90:15:89:60:30:85:
0a:55:92:7a:55:92:3e:e0:6d:6e:ae:58:35:dc:fd:80:fe:c9:
63:a8:49:56:52:57:06:c7:0f:75:19:22:24:71:29:ee:f6:60:
32:51:d3:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 9 06:45:48 2025 by rpki-client