Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/66D80568F52111EFB6334C61762E951A.roa
File: 66D80568F52111EFB6334C61762E951A.roa (raw, json)
Hash identifier: EqZJQUCdu/mfHISxbiQpdMD+SZRxgv4jfZq2MPb3oRE=
Subject key identifier: 06:0C:6D:48:67:61:F6:B7:DE:21:78:B8:35:D3:B9:B9:88:96:A9:07
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01691C
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/66D80568F52111EFB6334C61762E951A.roa
Signing time: Thu 27 Feb 2025 15:42:08 +0000
ROA not before: Thu 27 Feb 2025 15:42:04 +0000
ROA not after: Wed 26 Mar 2025 15:42:04 +0000
asID: 62240
IP address blocks: 154.196.76.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 92444 (0x1691c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Feb 27 15:42:04 2025 GMT
Not After : Mar 26 15:42:04 2025 GMT
Subject: CN=67c087d0-d3c4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:a9:6b:6b:61:95:1f:19:8c:4b:eb:16:2b:46:
42:ef:93:d8:91:a1:6d:0e:ac:19:52:9f:2a:66:50:
97:3b:11:ed:67:c3:3c:55:0d:c2:17:49:df:0d:99:
64:82:64:07:d0:35:4d:54:bc:f4:f5:fe:33:9f:63:
1d:1b:75:65:96:99:e4:e7:1b:5b:82:67:3f:04:40:
87:5e:48:55:76:08:e5:59:66:6c:cf:af:d0:65:5d:
f4:c2:f9:d3:ba:33:05:db:98:f2:06:c5:ea:d3:c0:
47:ad:e2:05:d6:12:be:46:14:da:79:c3:33:37:79:
5c:62:e4:ba:8b:78:2c:79:61:7d:8c:23:2d:3b:4b:
21:3f:07:04:ae:ff:19:5e:e5:e5:85:7d:1d:bc:2a:
c2:f9:a6:da:af:72:79:80:39:3c:2f:fb:95:83:19:
61:dc:b0:b7:12:59:59:0f:1d:4d:49:0e:d7:19:e1:
b8:58:64:c4:d5:9f:88:ba:bc:58:8c:93:86:10:d3:
a0:a9:e3:66:a1:b0:46:11:57:13:b8:87:a7:3c:e7:
4a:58:e3:bb:80:f2:ad:f3:9b:11:70:7d:aa:28:f1:
e1:0e:19:f8:0e:7e:7a:45:4a:5d:7b:cc:84:6b:50:
1a:a8:92:d9:d1:2e:18:01:97:83:29:e8:2b:97:7e:
e4:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:0C:6D:48:67:61:F6:B7:DE:21:78:B8:35:D3:B9:B9:88:96:A9:07
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/66D80568F52111EFB6334C61762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.196.76.0/24
Signature Algorithm: sha256WithRSAEncryption
42:23:f6:0f:29:9c:62:fb:f2:d1:0d:0e:71:20:58:9d:12:5a:
d6:6f:a1:4f:65:95:17:5f:c7:71:4a:61:b4:ba:e0:22:e7:7f:
a9:83:e7:26:ad:04:5e:24:b6:41:f9:a8:8b:39:79:b9:20:80:
22:11:71:8a:3a:02:68:43:6a:64:8c:05:69:fc:25:e1:4b:58:
2f:42:59:e2:53:3e:2e:54:72:ab:d2:19:fb:63:17:6f:8e:68:
04:81:57:06:14:25:37:03:a2:a6:07:1b:73:fc:e9:0b:6e:c3:
fb:91:dc:51:69:16:7d:ba:92:12:ab:37:6e:af:fc:50:e8:f7:
06:54:1a:05:98:46:50:7c:75:ef:f7:34:65:e2:3f:8a:ef:25:
96:43:2f:2c:be:e3:09:42:2c:86:4f:b5:0a:90:ea:43:6d:41:
17:83:be:42:a4:2e:37:b0:a1:e0:65:76:c2:04:16:18:b9:29:
bb:36:a6:27:10:01:cf:6d:c5:31:17:fb:1c:2f:6a:08:f5:4c:
3e:e4:e9:0f:e5:da:21:db:2a:f4:11:83:fd:12:ac:0c:4a:84:
02:39:ab:09:44:6f:50:a0:af:a1:b2:b7:de:08:7c:c6:1d:cf:
fe:60:5d:ea:f6:5e:db:64:ae:d6:66:f6:c9:96:23:b1:24:e0:
ec:87:24:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 9 06:52:27 2025 by rpki-client