Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/621313F6F69811EFAFF5136B762E951A.roa
File: 621313F6F69811EFAFF5136B762E951A.roa (raw, json)
Hash identifier: SGAMpze3GNqQENgN4+62wEL4h+DsJOHHW5rGnGPAPpc=
Subject key identifier: 43:93:3A:7B:54:1B:0C:03:33:68:FC:B4:DF:32:F7:E8:92:94:EF:F1
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 016E3E
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/621313F6F69811EFAFF5136B762E951A.roa
Signing time: Sat 01 Mar 2025 12:26:21 +0000
ROA not before: Sat 01 Mar 2025 12:26:18 +0000
ROA not after: Mon 31 Mar 2025 12:26:18 +0000
asID: 202656
IP address blocks: 154.219.193.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 93758 (0x16e3e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 1 12:26:18 2025 GMT
Not After : Mar 31 12:26:18 2025 GMT
Subject: CN=67c2fced-924d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:dc:50:26:08:48:aa:a3:a5:35:49:49:d9:14:
8a:65:06:4c:a9:b2:89:e5:d7:6d:fa:0b:a2:a3:40:
3b:54:82:ed:f0:51:e1:72:a2:0d:6e:68:5c:82:42:
d1:1f:79:5e:66:d2:ee:79:e7:d4:92:fb:a9:75:98:
da:be:e4:06:1b:14:d0:ad:d0:b3:65:7d:df:bd:14:
18:61:b2:45:7e:99:b0:0a:2d:53:06:71:d8:ac:ed:
e1:31:63:18:9d:77:46:ec:bb:59:a8:77:09:74:4b:
f9:de:76:d4:16:3c:fd:5e:5c:da:d3:b0:10:a2:27:
1f:2f:81:2e:5d:ff:2e:88:c4:1f:cf:71:6f:ab:c8:
2d:84:14:70:f4:0b:4c:38:4c:cc:ac:15:86:e9:e3:
2f:e5:b0:40:97:f4:4d:88:3d:10:e9:f9:9d:1f:23:
9d:fe:b0:f4:17:76:9f:32:ad:dc:e9:bb:e3:d1:a4:
2f:d9:50:1b:57:4f:59:66:e6:42:36:c2:38:15:8a:
9f:e3:38:3b:d1:23:44:70:54:fb:34:95:2d:5c:ac:
11:d2:63:f9:5e:b4:f7:7a:84:bd:85:cf:3b:23:e7:
57:6a:16:bf:18:3e:79:29:f0:f6:73:8a:14:9c:21:
cb:9b:ec:8e:91:5f:bd:de:15:77:f5:1d:1d:d1:60:
e8:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:93:3A:7B:54:1B:0C:03:33:68:FC:B4:DF:32:F7:E8:92:94:EF:F1
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/621313F6F69811EFAFF5136B762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.219.193.0/24
Signature Algorithm: sha256WithRSAEncryption
6f:17:a9:98:f3:0a:41:85:09:d4:0d:9d:2d:0a:b9:15:e3:3d:
76:1f:7d:3a:18:83:78:e4:3b:bb:06:93:14:50:6a:b4:75:82:
62:60:84:30:13:2c:bd:58:c1:5a:07:51:19:bb:c2:10:f2:76:
30:6b:70:f4:72:cf:6c:48:9f:a5:8c:c7:8c:35:16:79:9e:30:
9a:63:b3:52:51:4f:61:4a:71:27:55:b6:63:fe:b6:15:a5:06:
f5:74:dd:71:3f:2a:9f:f2:ab:86:4c:25:bb:f1:23:79:9b:c5:
b9:57:ee:4a:17:60:1e:df:30:c8:77:f0:2c:ba:87:48:00:73:
23:aa:b0:14:07:aa:e3:58:ea:cf:b6:a2:62:1e:a1:fb:29:03:
04:a9:a8:1b:89:33:70:04:fb:d9:40:50:b0:02:e4:d2:43:f3:
de:93:af:b2:28:b0:f3:ab:50:8f:7a:50:64:b5:93:f3:e1:ad:
a3:46:a3:60:0c:cc:f4:93:9d:f2:33:3e:dc:77:fd:73:75:22:
87:ef:78:9d:29:e5:3a:79:03:ca:23:ff:5d:aa:63:de:d2:10:
3a:e8:12:d8:58:07:50:05:45:93:7c:75:de:24:b9:5e:6e:68:
f7:da:3c:50:9a:7c:ea:6c:23:03:5a:43:b2:03:91:3b:08:8f:
8b:f3:1c:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 9 07:01:51 2025 by rpki-client