Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/66FBF6C286AE11EEABDCFB4A4AD9E6FC.roa
File: 66FBF6C286AE11EEABDCFB4A4AD9E6FC.roa (raw, json)
Hash identifier: 7XET3AIgjid/bJCrgByoDX8ffbh24ZjqjouUPxqqh7g=
Subject key identifier: 55:E1:4C:C5:90:34:D2:64:30:56:F7:8A:E8:5F:63:33:27:BF:03:D8
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 510F
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/66FBF6C286AE11EEABDCFB4A4AD9E6FC.roa
Signing time: Sun 19 Nov 2023 07:36:51 +0000
ROA not before: Sun 19 Nov 2023 07:36:47 +0000
ROA not after: Wed 20 Dec 2023 07:36:47 +0000
asID: 211826
IP address blocks: 154.194.55.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 20751 (0x510f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 19 07:36:47 2023 GMT
Not After : Dec 20 07:36:47 2023 GMT
Subject: CN=6559bb12-bfc1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:16:ed:5c:06:7f:c7:96:e3:ed:48:bc:28:31:
22:10:fe:62:f8:5c:d6:db:6a:50:67:c3:4c:9a:e2:
f0:48:60:4c:f6:c1:bf:83:81:4c:df:9d:ef:a6:6c:
ed:e9:7f:34:60:9c:28:03:71:52:02:eb:57:76:05:
e0:a6:c1:14:99:24:1d:d9:16:15:a0:3d:f6:20:37:
be:3f:b4:fa:67:23:d0:83:87:02:de:c1:7d:94:24:
78:38:e0:f3:be:62:13:c9:0c:b9:f9:ce:41:90:04:
77:8b:f6:62:4b:b6:9c:96:4a:37:4d:b8:ff:86:68:
03:75:bf:c3:91:95:98:d0:95:e5:b2:63:3e:1d:a6:
ce:3b:d5:59:d4:ab:2d:ac:01:8e:5c:63:d3:f5:93:
8b:1a:79:e3:29:65:fe:08:eb:0a:9a:c7:82:5c:3c:
07:67:bd:6b:75:dc:dc:a7:30:2e:97:d6:64:0e:83:
05:a6:37:b2:37:c8:97:22:75:6c:f3:46:11:d6:69:
91:20:14:f0:42:04:67:81:c1:57:36:06:9d:56:30:
be:03:69:aa:51:57:93:80:1d:7b:1f:33:77:c0:a0:
b1:78:eb:dc:e4:14:e8:fe:d0:e7:a8:55:59:8e:d7:
fb:f8:22:ec:77:fd:08:80:31:3d:03:1a:63:19:36:
3e:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:E1:4C:C5:90:34:D2:64:30:56:F7:8A:E8:5F:63:33:27:BF:03:D8
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/66FBF6C286AE11EEABDCFB4A4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.194.55.0/24
Signature Algorithm: sha256WithRSAEncryption
b8:16:47:33:f7:45:99:eb:a9:8a:f1:7d:aa:b9:ae:66:2f:e3:
75:b4:fd:5b:a1:ec:00:c3:5a:b1:38:53:58:9f:73:9f:48:66:
49:eb:c7:b4:f1:95:3c:7e:9b:eb:21:2f:84:7b:b0:63:56:c6:
8f:ca:aa:e2:85:e9:c2:5e:01:d3:21:58:e0:97:53:32:00:24:
01:38:78:bf:c3:4e:3c:48:d0:5d:62:66:ab:81:2a:27:57:d7:
4b:e4:27:1b:df:c8:68:89:c2:5f:d3:c8:92:c5:56:10:8b:da:
6f:82:36:15:6c:3e:d1:75:b0:77:94:80:89:a1:27:37:4e:c8:
3c:4c:12:db:1f:b8:ef:9f:75:62:f9:a4:82:19:0b:aa:7d:f8:
1b:fe:56:71:a1:74:42:12:6a:6b:61:f0:c2:d8:ce:0d:1e:5b:
18:1e:fa:69:47:a3:a9:bd:ce:15:a9:ce:a5:50:d2:85:5d:23:
4e:44:e2:90:66:94:d7:b6:6b:73:1b:54:c2:27:5a:1b:41:29:
3b:a7:94:e0:db:5b:8e:bc:ac:fe:4b:86:6f:fa:37:8a:e0:61:
e9:1b:cf:31:c8:91:91:af:15:21:65:95:4f:d3:cb:60:36:8b:
c6:17:25:e8:99:59:63:91:41:61:62:9e:4e:cb:13:32:0a:65:
7b:f8:c7:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 9 10:51:55 2025 by rpki-client