Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/63713DAAF4F311EFA594A8A6762E951A.roa
File: 63713DAAF4F311EFA594A8A6762E951A.roa (raw, json)
Hash identifier: SjSBMME79NYNQyk/UzPSV3qibL4uf/ojD8ZUxadAaSU=
Subject key identifier: AA:86:DA:D0:97:5C:59:C1:69:01:A9:D2:02:BF:7F:D1:D8:C8:FD:9A
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 016796
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/63713DAAF4F311EFA594A8A6762E951A.roa
Signing time: Thu 27 Feb 2025 10:12:46 +0000
ROA not before: Thu 27 Feb 2025 10:12:41 +0000
ROA not after: Wed 26 Mar 2025 10:12:41 +0000
asID: 62240
IP address blocks: 154.195.112.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 92054 (0x16796)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Feb 27 10:12:41 2025 GMT
Not After : Mar 26 10:12:41 2025 GMT
Subject: CN=67c03a9d-88d5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f0:ea:31:ee:f5:ee:ed:fa:be:75:34:e5:17:8c:
5c:48:60:8a:c5:0b:f6:50:8f:c3:4d:be:fe:24:b2:
af:8e:c1:6e:67:d7:e4:dd:f6:40:11:8e:f5:54:75:
c9:4b:b1:8c:fe:76:ef:4e:25:e8:00:4b:b6:35:64:
3e:44:95:6e:cb:ca:92:16:db:86:4d:71:63:a3:a8:
4d:97:bb:a2:f2:17:0f:dc:35:59:4d:d4:42:57:e1:
50:17:7f:ba:ea:c9:57:4f:26:f1:c1:5f:54:df:b3:
0b:55:a8:b9:de:9d:d3:1b:f3:ef:a0:4c:f7:ca:2e:
11:62:75:a7:13:62:80:73:84:0f:c9:54:13:69:37:
ea:68:b7:ad:41:7f:4d:07:9d:6f:c9:54:c5:62:1b:
09:7b:18:9d:83:b7:5f:af:7b:1a:1e:84:0c:af:a2:
c1:f5:49:35:21:86:b3:ab:43:5c:b0:1a:69:62:e4:
17:9f:e3:f6:9d:8a:c9:d3:a7:57:d5:a2:ec:b1:5c:
fd:6f:bf:37:5a:36:5c:65:fc:38:fa:db:a7:d5:1b:
eb:ec:8a:51:2e:b2:73:78:a3:ba:0a:1d:f0:f3:71:
68:b2:e0:fc:66:fc:e9:cc:22:ea:a3:f3:6f:32:53:
cd:03:df:69:f9:04:9c:bc:d6:67:80:92:35:e6:af:
59:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:86:DA:D0:97:5C:59:C1:69:01:A9:D2:02:BF:7F:D1:D8:C8:FD:9A
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/63713DAAF4F311EFA594A8A6762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.195.112.0/24
Signature Algorithm: sha256WithRSAEncryption
7a:23:6d:cc:3a:39:da:8b:c6:d0:7e:df:dc:7f:2a:43:ea:3f:
8a:0f:70:c2:bd:ee:a9:04:0f:8f:8b:36:ae:57:1a:26:7b:ab:
a1:05:6d:d5:89:8d:84:b3:23:e5:0f:fc:69:a7:39:74:e7:ae:
65:19:13:4d:c0:da:89:54:34:20:48:bc:80:ce:42:15:65:6a:
34:e3:26:6b:21:bc:ab:c9:8d:74:84:20:93:31:91:9a:bb:9a:
86:cf:71:2c:e5:60:70:cf:2f:63:ea:a2:27:c2:dd:a0:61:95:
f4:1d:3b:e2:06:57:d5:f0:3b:40:0c:50:30:cf:43:8b:49:fe:
60:4c:c1:91:f6:ce:d9:95:8a:9e:5b:bd:74:91:8d:b6:fc:9c:
67:c4:a8:ab:cd:23:bf:84:fb:50:45:3d:c2:a3:e8:9a:c5:7f:
37:a9:19:91:f9:0b:9d:38:3b:7c:c1:37:5d:e9:5f:03:01:69:
d3:43:2b:6f:29:67:34:8e:82:32:a0:2a:ea:6e:e3:87:52:75:
f4:8a:0b:70:75:62:f6:66:57:48:06:28:cb:63:16:ec:94:68:
49:76:1d:fe:ad:dd:7c:96:e3:6c:9b:b3:de:3a:c2:69:f7:58:
40:7c:46:79:4b:21:81:59:73:c8:50:21:d1:05:92:7a:5c:c8:
fe:a0:38:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 9 17:15:13 2025 by rpki-client