Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/59FF48AA8CDC11EEACAD8A604AD9E6FC.roa
File: 59FF48AA8CDC11EEACAD8A604AD9E6FC.roa (raw, json)
Hash identifier: o6G7hL49xXsyyJ894Q4pFn2p+OSJtj56cdiQyui2Gnc=
Subject key identifier: E1:11:B5:E4:20:2C:50:94:91:99:D7:BD:0F:34:BC:DC:AD:2A:5E:BC
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 54D9
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/59FF48AA8CDC11EEACAD8A604AD9E6FC.roa
Signing time: Mon 27 Nov 2023 04:20:53 +0000
ROA not before: Mon 27 Nov 2023 04:20:49 +0000
ROA not after: Tue 26 Dec 2023 04:20:49 +0000
asID: 62240
IP address blocks: 154.195.167.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 21721 (0x54d9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 27 04:20:49 2023 GMT
Not After : Dec 26 04:20:49 2023 GMT
Subject: CN=65641924-aaf2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:e7:7e:d0:f8:df:79:b7:21:09:58:cc:99:de:
49:09:8f:29:c1:2b:67:9c:ca:24:e1:5f:da:37:80:
38:c1:16:73:4a:fa:eb:10:58:c5:48:d1:98:1f:04:
67:7c:7d:ad:52:3b:2d:22:8b:ca:73:cd:a3:8e:61:
c0:7c:d3:f6:b4:9b:55:6a:c3:90:98:ab:c9:dc:84:
66:7a:a7:7f:4f:61:3a:ce:f4:7a:ff:05:1d:8f:2c:
8e:c6:c7:23:b6:e5:08:9d:66:62:bb:ab:59:b5:6d:
01:c9:a8:f9:26:2e:19:5e:3a:8e:97:a3:fd:6b:23:
b5:3b:53:c4:73:a8:98:b4:a9:0a:96:9d:db:d7:4b:
f0:cb:33:ec:7a:19:bb:11:d3:53:00:16:46:79:1d:
5b:7d:b8:cf:23:4a:8d:4b:a4:2f:43:62:1b:f1:2a:
e8:9a:ef:19:69:f4:d4:da:ad:b0:06:10:e1:77:a1:
d3:94:ff:bb:42:8b:e1:79:6d:5c:05:9e:24:15:d2:
26:ad:0c:eb:d1:8c:ae:77:04:94:39:d7:3a:2b:98:
9b:fa:f5:e3:70:da:4b:b0:ba:59:75:b4:ba:38:31:
f6:63:c1:0a:96:97:0a:d6:17:69:b5:09:3b:9e:1f:
65:9c:8d:73:85:1a:03:45:c6:fc:76:fc:55:1b:dc:
68:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:11:B5:E4:20:2C:50:94:91:99:D7:BD:0F:34:BC:DC:AD:2A:5E:BC
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/59FF48AA8CDC11EEACAD8A604AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.195.167.0/24
Signature Algorithm: sha256WithRSAEncryption
ca:1e:4e:4d:43:2c:51:46:9d:d4:91:71:4b:e8:6a:6c:ea:ae:
bd:98:93:56:00:1b:c1:36:11:bd:0c:76:23:de:40:da:fd:72:
2b:14:89:e4:12:49:de:29:ae:98:ef:31:1e:ef:86:64:21:8b:
43:aa:e0:23:af:42:72:c6:e8:8e:34:3b:5a:8f:33:12:da:f4:
da:cb:66:5c:10:15:3c:da:2b:05:09:04:b0:28:fc:a8:31:8d:
c6:2b:55:50:c8:f0:32:f5:5e:e1:41:ea:26:b0:88:5f:cb:a2:
d1:54:2e:4f:56:d5:b5:49:8d:f7:2a:4e:c5:d5:0a:f6:7c:10:
a2:a0:1e:fe:2b:61:6a:e7:53:e7:ce:58:69:8a:83:69:cb:ea:
e0:9c:d4:bb:23:d6:42:6b:fa:9f:fc:00:ce:b9:d6:65:69:20:
12:22:fa:39:53:79:a8:7a:1f:4a:a9:80:6d:06:f3:83:19:30:
1e:e8:09:95:50:9d:c8:67:eb:0b:0d:19:50:7e:8e:dc:55:c7:
63:55:00:e9:f9:ea:89:2f:4a:2c:9e:f7:87:5c:d6:e2:df:69:
4c:b5:c9:ea:76:a2:ca:ed:e7:41:46:14:5f:ca:3a:7d:06:65:
a2:96:db:b6:a4:9d:69:ce:04:57:ac:b0:c4:8a:bc:18:9c:07:
e7:4a:7c:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 9 10:58:02 2025 by rpki-client