Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/6B0538448A8911EE924D5D744AD9E6FC.roa
File: 6B0538448A8911EE924D5D744AD9E6FC.roa (raw, json)
Hash identifier: bqlIElKQUSjqBsaQR4s2nsceoAVgKPD28WWVe/zc34E=
Subject key identifier: 36:B3:13:97:7E:76:A9:BB:C0:C2:F2:93:E6:5E:7E:C0:07:6A:8D:52
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 532A
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/6B0538448A8911EE924D5D744AD9E6FC.roa
Signing time: Fri 24 Nov 2023 05:22:11 +0000
ROA not before: Fri 24 Nov 2023 05:22:07 +0000
ROA not after: Tue 26 Dec 2023 05:22:07 +0000
asID: 62240
IP address blocks: 154.195.175.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 21290 (0x532a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 24 05:22:07 2023 GMT
Not After : Dec 26 05:22:07 2023 GMT
Subject: CN=65603302-0b77
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:9a:8d:37:f4:c3:4b:0f:20:ea:fa:34:e9:d4:
d3:fa:ec:b9:09:92:13:48:0e:ed:e7:3e:3f:88:80:
32:7f:10:f5:b3:ca:56:83:d7:75:48:68:23:a1:84:
2e:f4:83:c0:28:14:62:ae:cd:ed:78:c8:a4:31:42:
a0:0d:87:88:cf:9b:83:ff:c1:24:38:dd:b0:45:85:
36:1c:8f:41:fd:2e:90:db:b3:c9:ea:bc:ef:a4:2e:
11:53:f6:c8:de:71:77:11:3e:6a:66:c8:0a:dd:12:
05:fe:bc:9a:09:c3:f7:73:e8:f8:3a:29:d6:bc:02:
cb:c6:b9:8e:84:05:c7:8f:31:a2:ce:24:1e:da:22:
cb:23:15:d0:ed:a6:bc:b5:62:46:f9:b0:4a:2c:f5:
f7:b7:32:c8:55:17:ea:34:13:d9:98:27:4c:25:1f:
63:a0:bb:9b:50:1d:68:56:20:c8:e2:91:e5:3d:d8:
39:c6:87:24:32:c1:dc:3a:fe:2a:05:8b:98:d2:d0:
d4:06:06:57:21:de:43:c2:c7:e9:07:09:80:e4:38:
0b:97:84:e4:ee:0c:e4:34:b4:c4:97:02:dd:d1:a5:
f7:f7:d8:59:32:63:50:57:cc:bd:2a:3e:9d:63:a7:
8a:e3:5b:99:e7:60:ef:8e:df:c0:5d:04:7f:50:20:
f0:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:B3:13:97:7E:76:A9:BB:C0:C2:F2:93:E6:5E:7E:C0:07:6A:8D:52
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/6B0538448A8911EE924D5D744AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.195.175.0/24
Signature Algorithm: sha256WithRSAEncryption
42:b5:c5:22:89:08:80:f2:c3:4e:0f:4f:33:14:b3:f1:b5:b2:
40:d6:10:50:a4:29:d6:e1:c3:c7:f5:5d:0a:d8:9e:e6:78:86:
f7:ed:4e:1d:66:00:78:b7:d8:73:e5:86:b0:7a:27:06:11:d3:
0b:a0:43:a5:15:dd:3e:a1:f9:f6:e2:5a:84:84:47:21:eb:20:
c1:29:07:e4:11:2d:43:98:7e:c3:89:b7:40:88:e3:2e:4e:10:
1d:9e:fc:7d:da:39:84:fa:74:03:ad:37:2b:1f:6e:05:7f:28:
cd:b4:85:9e:58:bf:a9:9e:a8:3f:15:a2:d4:1b:2d:89:a0:4f:
27:7d:cc:c5:89:9b:de:9b:65:d4:89:2d:4a:0c:db:ce:62:9d:
a7:6c:5f:2f:b3:cc:ef:25:fc:3d:5e:1d:9c:be:22:25:ac:b8:
c0:fb:57:e5:f4:87:a9:5b:f4:ca:bb:f6:57:01:26:32:42:63:
58:ff:c8:66:cc:c1:72:a6:ca:b2:ec:98:cb:45:f8:6e:a5:14:
72:38:ca:93:62:96:14:24:47:3b:89:b2:58:78:b4:10:c6:91:
d5:d6:ff:80:2f:01:50:ae:ec:f5:66:89:e5:60:7a:33:66:5b:
9a:63:9e:98:62:2e:e0:7e:43:2d:ca:e6:ac:8d:25:0f:9b:3a:
03:ba:0d:e6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 9 10:42:06 2025 by rpki-client