Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/59D6D1E28CDF11EEBC8B236A4AD9E6FC.roa
File: 59D6D1E28CDF11EEBC8B236A4AD9E6FC.roa (raw, json)
Hash identifier: GZs7YFdrcpt8rIMotp7iH9XCyBx8CO6PPQztMfalFLI=
Subject key identifier: 3A:05:8C:A0:CB:9F:74:41:FB:FC:D5:68:EE:EA:1F:42:23:96:A6:A2
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 5521
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/59D6D1E28CDF11EEBC8B236A4AD9E6FC.roa
Signing time: Mon 27 Nov 2023 04:42:21 +0000
ROA not before: Mon 27 Nov 2023 04:42:17 +0000
ROA not after: Tue 26 Dec 2023 04:42:17 +0000
asID: 62240
IP address blocks: 154.196.71.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 21793 (0x5521)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 27 04:42:17 2023 GMT
Not After : Dec 26 04:42:17 2023 GMT
Subject: CN=65641e2d-420d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:66:2c:3e:6e:cd:c4:e0:8d:8b:e8:24:f4:cf:
f3:ce:c1:54:cf:73:40:df:0c:70:29:46:99:f3:88:
f8:54:6d:72:fd:28:43:b9:a2:e4:75:ef:d3:d5:02:
83:de:ee:45:b8:93:8d:b5:4b:0f:79:95:36:b1:0c:
1e:29:61:d4:9b:49:c9:e6:f3:5a:ee:a3:6d:0d:8f:
62:f7:ee:92:a2:d1:65:3f:20:45:dd:e7:8e:1f:b2:
ff:8d:67:32:d6:d8:e4:28:26:89:d7:17:e8:37:5e:
ce:51:54:81:08:e3:e3:24:d8:60:a2:e7:40:fa:d3:
2f:af:0e:c6:01:56:bf:73:9c:26:47:55:df:6c:14:
6f:a1:f2:34:a0:93:37:8b:f1:ba:75:11:5a:48:20:
65:60:25:7e:fb:72:3b:1c:15:07:ea:ac:78:6c:98:
17:e6:a9:72:fb:c4:52:3d:6d:46:67:ac:95:f4:e0:
fe:fe:6b:94:bd:0c:d8:b5:29:4c:a5:4b:9d:fc:d8:
ae:9a:35:ab:d5:e5:09:9d:d7:67:5b:26:08:63:b3:
0b:c0:7b:f8:16:86:3d:21:da:ac:80:27:78:5a:b3:
c1:64:02:5b:e8:70:9a:b2:f8:19:24:9b:b3:a8:2e:
c5:c4:d7:6d:3d:68:bc:24:b0:60:e8:72:a2:cd:52:
6d:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:05:8C:A0:CB:9F:74:41:FB:FC:D5:68:EE:EA:1F:42:23:96:A6:A2
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/59D6D1E28CDF11EEBC8B236A4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.196.71.0/24
Signature Algorithm: sha256WithRSAEncryption
40:a1:e0:07:41:c6:db:4a:2c:54:a6:c3:8e:f6:49:fb:6e:8a:
4a:bc:94:1f:33:8a:5e:b3:51:f0:ce:9a:00:30:42:c7:58:37:
a9:48:38:ef:1a:54:c6:f1:b1:20:5d:5a:88:dd:99:7c:f8:31:
c5:43:aa:cd:71:f7:26:42:14:49:c8:7a:9c:ab:57:b4:fc:14:
4f:77:d5:ad:7c:b0:70:46:74:76:da:1a:5b:bc:c5:52:ec:c7:
be:09:4a:7d:0e:31:18:88:f8:80:19:ed:c2:e6:d2:1c:6f:1d:
44:ec:25:6f:e0:c3:e4:7a:8a:96:b5:c9:72:1f:7a:6b:0c:28:
b0:db:c5:46:0b:08:08:8a:b5:39:ba:26:dc:86:e8:13:21:d9:
9e:72:42:e5:ff:17:0c:6d:f2:ae:02:fc:9d:cf:fc:a6:dc:a6:
b9:26:f1:dd:e8:ce:29:7e:32:d5:4a:98:02:c7:8b:c8:5c:6a:
cd:0a:5d:8f:dd:54:58:60:ff:fb:14:84:0a:b3:4c:af:41:cf:
d9:c8:af:0e:5f:8e:04:c9:f6:9e:0b:20:7f:c0:fa:1d:b5:e2:
df:07:b2:b5:62:8a:07:da:6e:66:17:30:aa:9c:95:19:f6:c8:
68:f8:66:ea:b7:84:46:7e:50:58:0a:f5:c0:bc:c3:36:48:7e:
84:b6:c1:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 9 11:15:06 2025 by rpki-client