Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/68253904F4F411EF85378AAC762E951A.roa
File: 68253904F4F411EF85378AAC762E951A.roa (raw, json)
Hash identifier: hZ376YZxqknbUd/amafeYMs9NqdA5bHH64evaRrdgH0=
Subject key identifier: 63:E2:64:19:F4:B7:CC:D9:12:DD:20:C4:93:44:CD:4F:E5:81:14:F8
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0167AA
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/68253904F4F411EF85378AAC762E951A.roa
Signing time: Thu 27 Feb 2025 10:20:03 +0000
ROA not before: Thu 27 Feb 2025 10:19:59 +0000
ROA not after: Wed 26 Mar 2025 10:19:59 +0000
asID: 62240
IP address blocks: 154.195.119.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 92074 (0x167aa)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Feb 27 10:19:59 2025 GMT
Not After : Mar 26 10:19:59 2025 GMT
Subject: CN=67c03c53-64f7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:f8:fc:1e:9a:6e:10:9f:d8:2d:de:45:46:60:
bc:8e:29:cd:54:8d:97:d1:9b:69:ae:80:39:35:87:
a9:fa:14:bf:0f:fd:f8:d3:e1:62:f4:e7:d7:69:e0:
82:0f:16:b1:de:9a:ae:a5:a1:25:a4:80:3b:4e:13:
ea:7d:ee:7f:9d:13:27:3b:51:36:be:16:49:3e:61:
9a:62:3b:8b:0c:ba:e2:00:d8:9a:83:b2:76:a3:86:
cf:e8:06:55:21:53:44:4a:0c:92:da:0e:f8:b4:7a:
f9:5c:44:cd:5e:e5:f1:71:ae:49:72:eb:cd:f4:5e:
c6:ab:2b:22:8f:38:9b:50:a7:78:af:15:27:47:2d:
cb:e7:1b:ea:f0:b3:2e:c3:f1:41:17:35:6a:26:23:
46:96:fa:cd:1b:ab:29:58:31:ef:68:76:e1:c6:b2:
63:7a:82:f0:45:48:94:66:7c:21:82:ca:3f:3a:af:
fd:ef:be:a5:c3:5b:d9:b5:8f:f7:6f:50:f2:bf:99:
6d:47:be:d5:dc:6d:fb:f7:ac:12:25:5a:30:02:90:
5d:8d:6d:af:ca:4d:9b:65:21:72:86:b7:17:aa:15:
52:6d:ed:16:e4:d2:55:1b:54:08:06:d0:11:ce:2b:
c5:14:72:73:bc:b5:b2:89:86:34:e1:77:b6:fc:ce:
bc:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:E2:64:19:F4:B7:CC:D9:12:DD:20:C4:93:44:CD:4F:E5:81:14:F8
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/68253904F4F411EF85378AAC762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.195.119.0/24
Signature Algorithm: sha256WithRSAEncryption
81:95:79:81:50:45:fe:cc:a7:d2:14:a7:e6:dd:c7:a4:b0:de:
83:67:2e:f5:35:7f:f4:a2:66:25:ff:2d:98:be:d9:45:e4:c4:
81:fb:6a:11:7d:f3:b3:1a:8e:0b:fc:75:25:fe:b1:1d:e3:55:
4a:da:72:5d:a5:04:2f:7f:87:75:52:e2:d9:24:c0:64:d9:b6:
59:24:b8:b0:5d:7b:39:76:e0:61:21:25:da:cb:05:03:9f:ff:
d9:c9:f1:3f:c1:45:36:dc:cc:9e:bb:80:ef:75:4e:e8:6c:a6:
95:b7:18:ad:c4:e2:b9:16:54:c7:bc:30:f4:be:76:dd:3e:ae:
cc:a0:3e:a5:0d:3f:18:de:fe:e0:02:79:0f:b9:97:d9:12:97:
d8:ca:45:38:d9:62:42:a6:cd:3d:a3:15:86:50:05:57:b5:3d:
8a:47:08:2c:90:3c:c3:04:16:b9:d6:6d:bf:3f:38:f1:a3:48:
1c:b9:11:00:d7:fd:45:46:a0:01:34:d0:1c:f0:5d:5d:ec:75:
a2:7f:1e:72:4b:b3:ae:09:75:1e:f5:3e:4d:5a:20:46:f1:c5:
8a:90:a4:9d:52:4f:17:5d:31:a2:97:fc:fe:da:ae:31:59:1d:
09:6f:0b:92:9f:93:b1:2c:ac:93:df:6b:17:30:c4:e9:bb:1e:
b3:5b:7d:50
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 10 02:42:05 2025 by rpki-client