Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5A00249804B111F0B4AD566E762E951A.roa
File: 5A00249804B111F0B4AD566E762E951A.roa (raw, json)
Hash identifier: u+B192Jv8fM6IjZDE+06B8VQl5Xxsxblltf3PZipSSc=
Subject key identifier: E2:B0:A4:4A:38:8A:79:5A:8C:F3:65:08:88:73:88:B2:D3:91:D7:EE
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0174FA
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5A00249804B111F0B4AD566E762E951A.roa
Signing time: Wed 19 Mar 2025 11:00:22 +0000
ROA not before: Wed 19 Mar 2025 11:00:17 +0000
ROA not after: Fri 28 Mar 2025 11:00:17 +0000
asID: 211392
IP address blocks: 154.83.22.0/24 maxlen: 24
154.83.23.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 95482 (0x174fa)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 19 11:00:17 2025 GMT
Not After : Mar 28 11:00:17 2025 GMT
Subject: CN=67daa3c5-519a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ee:b7:ff:5a:c9:a2:5e:8a:56:9e:cd:60:e9:bb:
6d:45:2a:7b:f4:9e:9f:f6:1d:e4:b5:1f:31:d0:5c:
20:b6:c2:0f:33:a1:e2:b6:02:4a:45:df:3f:c6:12:
af:a9:36:f6:26:de:10:7a:40:e8:1e:51:be:b3:a2:
c8:7f:07:0f:4a:58:1f:ae:c9:80:e6:7d:84:51:3a:
88:fd:8a:80:3a:ad:0e:ae:3d:9c:24:97:19:ef:90:
06:2f:98:db:fa:4b:e7:82:89:9e:84:74:60:81:c0:
13:41:70:5b:6c:fd:9d:d5:97:80:52:2e:02:bb:f0:
6a:ec:09:f3:55:ea:be:7d:14:9d:c7:e3:70:44:e4:
f3:e8:71:61:24:d8:e2:d7:29:fa:cd:39:03:bd:b4:
ce:41:0b:9d:74:d8:f1:c1:ca:55:7f:e4:26:27:04:
d7:f3:5c:52:e2:a6:16:89:63:a7:92:19:82:2d:b1:
0e:f1:80:ab:71:6b:59:7b:38:b4:39:cf:0a:d7:c2:
f1:b9:05:2d:ab:06:b1:a4:7c:3b:a5:87:e8:fd:6c:
9a:3b:2f:7c:64:6c:6a:fc:3c:01:e3:35:3f:b7:90:
03:3d:b3:c4:1b:e1:14:b8:a4:24:83:02:fa:28:09:
7f:a5:d1:50:7c:e7:d5:e2:93:8e:ce:a1:66:c6:07:
86:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:B0:A4:4A:38:8A:79:5A:8C:F3:65:08:88:73:88:B2:D3:91:D7:EE
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5A00249804B111F0B4AD566E762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.83.22.0/23
Signature Algorithm: sha256WithRSAEncryption
1b:00:85:e0:68:41:cb:69:80:53:85:c0:f8:ca:29:92:f2:bd:
e1:57:65:86:95:27:f1:c0:fc:62:32:7a:42:41:28:15:df:ef:
d4:b0:72:bc:c3:9a:89:9e:dc:65:6d:5f:32:57:2a:a8:47:27:
aa:9a:84:bc:38:bd:85:fd:b4:bf:7c:af:08:e7:c6:ab:72:25:
60:fc:b3:2b:f6:d5:a0:2b:12:f7:b2:90:49:b3:7d:85:0e:f1:
03:a0:20:f8:a8:a3:26:c8:12:49:7e:e8:e4:a0:f6:34:29:9a:
0a:86:1b:5c:2d:5a:dd:e7:a0:94:ae:d9:ef:90:1a:83:0d:89:
1e:93:c7:ae:ff:80:f5:4f:d0:65:9d:49:c2:d6:fc:5b:bf:0a:
f1:a3:7a:7f:87:5c:cc:5e:51:8a:2e:d6:4d:b2:da:ab:3c:6f:
08:f0:10:58:3e:a6:f4:cc:5a:ed:ad:a8:63:59:4e:de:c4:03:
28:b6:17:0e:08:08:50:e2:ac:c1:81:78:67:5b:b9:00:03:a3:
b5:05:97:4b:48:d9:95:a4:bb:9c:7d:68:c6:a2:78:72:28:ba:
11:26:a6:f2:56:85:2c:8e:87:da:b3:33:1f:8b:97:7b:1f:e5:
dc:73:dd:10:db:6a:9d:bb:f1:56:b5:48:18:56:8a:16:36:1f:
25:40:eb:dc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 9 11:30:32 2025 by rpki-client