Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/6582973CF59E11EF93A196BD762E951A.roa
File: 6582973CF59E11EF93A196BD762E951A.roa (raw, json)
Hash identifier: yiBOAApd0C/nfMveL+HLAWhgbAxITJZElbCs91UcKoI=
Subject key identifier: 19:1B:F0:15:AC:4D:38:E3:CF:4F:32:4E:03:D0:67:C5:0D:A5:F6:48
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0169CB
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/6582973CF59E11EF93A196BD762E951A.roa
Signing time: Fri 28 Feb 2025 06:36:53 +0000
ROA not before: Fri 28 Feb 2025 06:36:49 +0000
ROA not after: Wed 26 Mar 2025 06:36:49 +0000
asID: 62240
IP address blocks: 154.194.82.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 92619 (0x169cb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Feb 28 06:36:49 2025 GMT
Not After : Mar 26 06:36:49 2025 GMT
Subject: CN=67c15985-00f8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:03:35:00:0f:5d:f2:cb:49:c8:cd:9e:e3:9b:
09:7a:2a:d4:a2:dc:60:c0:16:b0:0c:f0:ce:1e:1a:
25:06:3a:22:2c:d9:c0:36:c8:9d:3a:3e:ca:9c:d6:
18:ad:d9:ea:2c:98:f9:5c:89:a0:99:36:13:10:1e:
56:09:3b:49:78:71:17:79:3b:26:a8:b7:63:5e:e0:
b8:81:f2:0a:05:6b:f1:ec:6b:2e:24:d8:fe:3c:1b:
e3:77:7c:4a:73:12:6f:2f:cf:5e:35:c7:0c:83:d9:
06:70:ed:5e:9a:f5:ba:10:78:55:76:a2:06:36:f9:
02:99:15:ab:ed:ea:69:f7:24:2d:c2:48:36:99:ec:
b9:6a:c2:f9:0b:04:8a:53:4b:d4:67:0b:cf:58:04:
2c:f9:2b:77:66:73:c8:21:f7:2d:5f:8b:fb:28:19:
cf:81:44:ad:1e:ec:b2:a3:0d:3c:3a:1e:83:2a:94:
b9:6a:99:d7:31:76:e2:fb:4d:a8:f9:02:b6:f3:05:
b8:cc:6e:c9:c9:71:4c:85:f7:c9:c2:8b:23:45:85:
1e:f1:bf:10:cb:39:9e:35:85:db:24:45:68:1d:55:
6e:4a:1b:06:ae:85:8d:c2:8e:0a:b8:dc:98:a5:07:
b5:8e:1b:06:d9:db:dd:4e:4d:1c:43:35:08:bf:7f:
00:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:1B:F0:15:AC:4D:38:E3:CF:4F:32:4E:03:D0:67:C5:0D:A5:F6:48
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/6582973CF59E11EF93A196BD762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.194.82.0/24
Signature Algorithm: sha256WithRSAEncryption
c5:f3:40:fb:14:c7:ba:1f:6a:97:71:6d:4b:d0:77:51:d9:1e:
0a:16:20:1b:39:04:c6:7f:75:94:e9:c6:89:7f:5c:5a:26:52:
38:e0:dc:5f:80:44:26:80:df:41:43:bd:95:aa:7c:14:6f:2c:
1f:03:81:a1:c3:0f:2c:c2:ee:56:bb:3d:e8:a9:3e:48:94:2d:
56:56:ba:74:eb:ed:f0:ad:94:19:98:53:8c:90:79:2f:51:37:
11:8b:c9:5e:21:3e:e8:e4:21:f5:80:6e:39:8e:f8:97:ac:42:
10:a4:b3:57:0f:7e:ee:4a:1a:f0:14:e7:11:76:31:8b:df:ff:
e0:9e:00:e0:e2:15:ec:0d:19:ef:cf:88:dd:3b:b9:64:b3:a5:
67:ed:f1:7f:96:25:e2:d1:d1:2d:f4:e8:04:ca:ec:a3:75:fe:
d1:4a:3f:8c:da:27:c8:1b:43:ea:91:7d:43:19:db:c5:0e:d8:
e1:b3:6a:1d:47:d6:0d:a4:f7:45:22:61:6e:b5:67:3b:c4:1e:
fa:93:ea:28:b7:9c:0c:b6:a5:5e:4f:08:9d:cd:af:99:94:65:
1d:8a:14:dc:0f:bd:78:59:6d:95:6e:9a:83:08:18:dd:f4:40:
bd:3e:fc:ba:c3:61:c5:85:2a:a2:6b:1e:7e:8c:f5:c6:96:82:
22:8f:4f:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 9 12:18:29 2025 by rpki-client