Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/645F8D9AF52311EF8D008D6B762E951A.roa
File: 645F8D9AF52311EF8D008D6B762E951A.roa (raw, json)
Hash identifier: 94V0gQ26L7dhYZeWk198Yg2KJmODj9IjUaIWcF5ojdw=
Subject key identifier: DF:9C:85:5F:34:65:4E:79:0A:FA:F0:C2:63:C1:91:A8:88:6E:FA:6E
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01692C
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/645F8D9AF52311EF8D008D6B762E951A.roa
Signing time: Thu 27 Feb 2025 15:56:23 +0000
ROA not before: Thu 27 Feb 2025 15:56:19 +0000
ROA not after: Thu 27 Mar 2025 15:56:19 +0000
asID: 395793
IP address blocks: 154.82.162.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 92460 (0x1692c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Feb 27 15:56:19 2025 GMT
Not After : Mar 27 15:56:19 2025 GMT
Subject: CN=67c08b27-b066
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:2d:6b:cf:da:5f:f0:e8:cd:bc:32:11:5e:de:
4c:a3:26:62:28:f9:f2:36:fd:a2:be:37:79:04:b5:
92:b8:53:60:6b:66:ae:6a:d6:8e:d2:27:5e:75:71:
09:8e:ad:24:87:7b:d6:7d:0c:a4:81:10:39:06:39:
28:32:ec:f4:6f:d0:d3:b3:9b:34:46:81:49:41:99:
fd:f7:a8:a8:d5:ea:0d:31:b0:54:a7:07:2d:1a:67:
15:49:38:90:e8:dc:9e:5b:9a:81:24:5d:9b:96:b1:
c3:f6:cb:9f:8e:bd:e2:78:6d:de:29:70:51:1f:68:
1e:5b:e4:34:25:f8:3d:4a:26:67:0a:cf:7c:b2:57:
99:bc:23:83:8d:a4:86:46:24:ab:4a:0e:29:19:cb:
0b:b7:f3:49:bd:a8:dd:9c:eb:56:36:35:8f:9c:cd:
0a:dc:ae:d9:42:9a:30:df:2c:24:05:d0:eb:fc:38:
2b:c2:6b:8d:09:3e:c9:70:5c:d8:e1:97:91:46:77:
51:90:dc:a3:4b:e7:66:71:dd:75:1b:7f:17:91:bc:
98:dd:fe:80:dc:b3:31:1a:23:1a:bc:4c:e6:c7:18:
6c:14:ee:53:e5:f8:7d:ce:14:66:50:8e:db:de:41:
32:e8:0f:7b:19:c0:96:f0:c9:51:5f:e9:2d:b7:eb:
8c:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:9C:85:5F:34:65:4E:79:0A:FA:F0:C2:63:C1:91:A8:88:6E:FA:6E
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/645F8D9AF52311EF8D008D6B762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.82.162.0/23
Signature Algorithm: sha256WithRSAEncryption
5a:f2:a3:17:60:fa:dc:54:9d:05:1d:50:b6:46:7f:b4:1f:2d:
8b:c1:3d:a3:9b:1d:dd:be:5c:fd:c7:be:01:11:e8:10:f1:a8:
56:33:4a:a5:e8:0c:95:e6:62:38:c8:1f:5a:d4:71:60:7a:5d:
54:d2:10:44:73:7f:35:cc:ae:09:14:1e:fa:ae:b7:50:f2:c0:
a1:2f:7c:c0:91:28:fc:c9:1b:84:7f:eb:7e:ce:26:68:02:29:
6e:a7:cb:af:2e:94:bf:bf:e6:5d:3e:50:7e:77:3e:02:33:71:
c0:81:9b:13:ba:2a:3e:f6:16:09:1b:c8:10:8c:ff:7a:83:54:
f3:a5:29:e2:66:3a:c0:67:40:81:cd:1d:08:4e:39:53:6d:05:
60:d1:d7:63:a8:a9:8f:11:a3:e1:98:bc:5b:4a:bb:01:a1:70:
d5:78:36:80:11:76:c7:e6:24:11:b7:16:c7:5d:0c:48:4c:c0:
97:21:34:42:08:11:2f:c6:3c:30:70:5f:51:23:ee:42:dd:55:
0b:ae:60:73:84:24:4e:eb:91:c1:da:ec:d2:05:20:1f:02:02:
d3:43:5b:14:ce:5a:7a:c6:91:ed:b1:a7:e4:7c:48:ca:2b:8d:
f9:8f:92:af:14:25:f1:91:7d:b8:36:13:79:aa:78:ff:0a:2a:
a7:3c:c6:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 9 17:15:11 2025 by rpki-client