Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/68100E20F4F011EFBB149491762E951A.roa
File: 68100E20F4F011EFBB149491762E951A.roa (raw, json)
Hash identifier: 8qwbkERQuvltMzVXga1oDn58vsmHfPORypsQY2f8jGU=
Subject key identifier: 01:FA:61:72:04:52:B1:15:D9:90:10:2A:06:82:7E:C4:51:DD:62:A9
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 016766
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/68100E20F4F011EFBB149491762E951A.roa
Signing time: Thu 27 Feb 2025 09:51:25 +0000
ROA not before: Thu 27 Feb 2025 09:51:21 +0000
ROA not after: Wed 26 Mar 2025 09:51:21 +0000
asID: 62240
IP address blocks: 154.196.88.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 92006 (0x16766)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Feb 27 09:51:21 2025 GMT
Not After : Mar 26 09:51:21 2025 GMT
Subject: CN=67c0359d-5756
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:ff:e0:e1:de:f2:dd:3c:b6:19:46:8d:4f:1b:
04:77:15:d0:e5:1f:e8:2b:5d:8b:9a:3a:e1:fd:f1:
5a:a8:b2:bd:d0:f9:3a:aa:9c:40:ee:6d:2a:41:37:
7c:23:66:f8:f7:a0:03:b1:2a:fc:66:50:a4:44:36:
09:23:e0:29:42:c3:ae:ab:b3:2d:8e:53:15:6f:95:
5c:90:b2:6b:81:f7:2c:c9:e2:98:b5:99:4d:23:38:
4a:b8:2c:bc:10:98:79:2d:b3:54:b9:90:3a:5a:bb:
30:2f:ee:88:e5:48:64:dd:8a:41:df:82:4b:76:f7:
91:03:12:26:7c:5e:84:10:9a:86:d1:bc:c9:c3:53:
77:ae:4e:a8:44:8e:0d:b3:e7:da:05:c1:1f:a5:4b:
24:d0:4a:37:f3:31:2f:9a:e6:3d:4e:1e:38:85:37:
31:a7:f5:6c:97:a1:98:83:ee:bb:62:a9:11:86:f4:
f0:eb:f0:ab:6b:16:af:7b:06:ea:26:7a:58:a6:01:
81:3d:95:5a:34:e7:ca:5a:f5:d0:a9:d1:04:00:fc:
c6:7d:f6:e2:ae:00:f1:37:44:f8:1b:e8:82:10:99:
cf:14:27:e4:12:d7:9b:e6:7a:bd:c6:9b:9e:49:98:
e3:ee:dd:bb:4b:7a:b1:14:4c:f6:30:be:f4:f4:94:
be:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:FA:61:72:04:52:B1:15:D9:90:10:2A:06:82:7E:C4:51:DD:62:A9
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/68100E20F4F011EFBB149491762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.196.88.0/24
Signature Algorithm: sha256WithRSAEncryption
d7:e8:d6:51:d5:de:9a:05:ed:aa:fc:08:50:92:c7:9b:44:65:
79:ca:29:c3:fc:86:2d:1f:a8:ea:51:33:4d:1e:48:d3:2d:df:
1c:a2:b4:f3:47:24:6a:90:e9:80:ce:33:c2:50:85:df:e8:cd:
8d:dc:86:a3:40:3b:96:f8:4a:de:10:fc:e5:76:e2:40:45:d8:
62:19:77:08:de:72:d0:dc:e3:04:bb:d1:cb:85:e0:00:0f:48:
05:c4:ba:f4:3b:d2:b8:fb:6d:a5:b5:0e:a0:be:b2:62:84:fb:
61:92:05:5b:98:18:6f:49:97:c3:71:69:2d:30:96:ae:55:c0:
99:82:13:b9:0c:d6:78:7f:a0:74:1d:d0:bc:e8:77:39:07:1a:
cc:d6:db:11:e8:a3:f8:81:a2:f7:63:29:0a:80:ce:9d:6a:e8:
47:35:8e:47:62:fd:52:f8:d6:11:89:18:90:ad:18:a7:e7:b3:
f3:b4:bb:0e:1a:84:5b:f5:69:f5:6b:41:13:6f:7b:6b:83:60:
2f:5a:70:af:28:91:7f:7b:ca:b0:2b:81:32:5a:11:07:38:36:
52:d1:89:ea:48:93:f8:7b:da:03:74:74:b3:40:ec:15:52:f2:
48:1d:54:dd:09:95:6d:71:cd:32:af:16:b7:04:d9:65:ef:5a:
ec:29:aa:47
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 9 12:35:04 2025 by rpki-client