Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5E70365CEBD711EDB044DD2E4AD9E6FC.roa
File: 5E70365CEBD711EDB044DD2E4AD9E6FC.roa (raw, json)
Hash identifier: kiBfB5xHhQV2dLW0C3tsLPPu5Eu5TUrQhCgFza8Yt1w=
Subject key identifier: 5B:9A:FA:2A:22:AE:99:A0:F9:81:8C:CF:BF:9C:61:92:28:25:2B:86
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 20B9
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5E70365CEBD711EDB044DD2E4AD9E6FC.roa
Signing time: Sat 06 May 2023 06:29:35 +0000
ROA not before: Sat 06 May 2023 06:29:31 +0000
ROA not after: Tue 10 Sep 2024 06:29:31 +0000
asID: 141356
IP address blocks: 154.92.108.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8377 (0x20b9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 6 06:29:31 2023 GMT
Not After : Sep 10 06:29:31 2024 GMT
Subject: CN=6455f3cf-514c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:09:5a:dc:a9:4d:9f:d7:0e:8f:e9:bb:d4:43:
cc:25:49:da:d5:58:ab:ac:56:60:c4:e4:5b:56:ae:
f4:0c:de:76:13:c9:b1:33:17:ce:4a:72:4e:9e:3a:
97:1b:d4:18:92:3a:9a:f6:89:8d:64:27:df:33:e6:
11:9f:15:4a:4a:11:0f:e6:90:a4:38:ed:a5:c1:57:
a1:7c:f8:df:0a:3a:98:d4:63:8f:66:0f:6e:86:06:
6c:2e:4d:ee:85:1c:23:80:97:d3:89:e5:14:79:44:
26:5b:f9:83:5a:2f:eb:3b:74:36:00:ad:2b:1d:57:
d4:e9:34:77:d1:72:6d:35:7e:05:e8:a1:b5:51:61:
6a:d6:3c:23:3c:24:42:d6:d5:f0:66:01:70:39:3b:
6e:14:30:ea:80:41:b5:35:fd:7a:50:24:24:e6:74:
2d:26:e3:f2:61:54:a0:78:d2:00:a7:02:91:b2:79:
05:42:c6:b4:46:d8:84:91:ae:1c:19:58:37:19:87:
b2:6a:fc:d7:41:58:4f:09:06:03:a3:53:88:65:81:
69:f3:b7:e8:c9:3a:e6:1d:e3:b7:74:d1:ce:70:5f:
ed:2c:b2:d2:35:b5:6c:47:ff:75:8b:58:df:97:03:
a3:f7:46:62:28:a5:c1:94:e7:fc:84:a9:9f:8b:55:
34:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:9A:FA:2A:22:AE:99:A0:F9:81:8C:CF:BF:9C:61:92:28:25:2B:86
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5E70365CEBD711EDB044DD2E4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.92.108.0/22
Signature Algorithm: sha256WithRSAEncryption
94:46:75:94:5a:94:b9:9d:4e:32:89:c8:e6:77:bb:d2:8d:47:
68:fd:03:82:25:48:83:85:ff:e1:3b:fd:fe:32:3d:85:48:f1:
a4:63:ef:85:b5:f5:56:a0:cf:c9:2e:52:75:c7:86:e2:bd:a1:
4c:c3:e4:20:40:c0:fc:9e:3b:8c:c5:7c:f9:c4:d9:80:64:ba:
13:84:7d:09:28:22:7c:e6:44:bb:b9:31:20:b7:98:29:2d:9a:
9e:79:a2:13:ae:b7:63:64:a0:cb:8e:bc:87:0d:5e:ef:91:a9:
0b:18:ab:60:1f:47:c4:f0:f1:29:e0:28:bb:1b:ae:df:a3:16:
0d:f7:a4:de:81:bf:ac:0b:87:f3:cc:c1:cf:c6:f3:5b:00:7a:
0c:8f:7b:47:f6:9e:bd:5c:75:91:fa:8e:02:5f:9d:f3:71:8b:
d0:38:b9:66:3f:c5:6d:b2:a7:4b:04:53:e0:c1:3d:05:48:08:
69:08:bf:e8:f1:38:fc:cf:9a:ae:88:34:97:84:c7:9a:9b:70:
09:dd:fa:ec:5a:fb:10:84:0c:dc:a5:f5:04:4c:f5:ae:81:40:
21:a1:21:da:37:19:41:e5:e7:90:9e:17:82:40:02:7c:6e:d3:
4f:a8:3c:a9:19:01:4e:09:a4:1e:3f:8f:15:28:3e:d4:17:9d:
28:c0:86:77
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 9 10:33:55 2025 by rpki-client