Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/6B5461A0FA6111EF96909997762E951A.roa
File: 6B5461A0FA6111EF96909997762E951A.roa (raw, json)
Hash identifier: b/Gq0G+1SN1/JABegE2JjAuZsY3mf9O1TDp+H1jjgWQ=
Subject key identifier: 71:E3:B8:B0:F3:78:FF:80:BE:A4:94:9E:20:1D:50:E2:C8:0F:BF:85
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01728E
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/6B5461A0FA6111EF96909997762E951A.roa
Signing time: Thu 06 Mar 2025 08:02:59 +0000
ROA not before: Thu 06 Mar 2025 08:02:55 +0000
ROA not after: Wed 26 Mar 2025 08:02:55 +0000
asID: 55020
IP address blocks: 154.204.183.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 94862 (0x1728e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 6 08:02:55 2025 GMT
Not After : Mar 26 08:02:55 2025 GMT
Subject: CN=67c956b3-9f4f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:93:c1:64:90:13:d7:57:23:ab:b6:3c:d5:cd:
b1:64:fe:e4:9d:ee:33:df:bc:ae:b4:b1:57:b5:98:
11:81:9d:a8:78:f2:30:b6:38:33:e4:b0:26:f2:18:
0d:e0:40:af:ff:19:5e:5a:6b:87:48:ad:7a:1d:16:
29:15:18:bc:2e:b3:7b:49:4f:d2:af:79:e8:f0:08:
e1:16:01:ee:61:af:d0:40:db:10:ed:9c:8c:f2:ce:
c4:a2:8e:fc:31:a9:c0:4b:be:a2:4e:af:53:2b:65:
2c:b6:b0:7b:3d:f1:a2:b9:6a:65:de:0c:28:59:43:
cb:48:0e:40:78:05:35:ad:2a:75:1a:8f:b7:e0:4f:
b1:e3:95:85:58:9d:56:06:d1:c5:13:fb:75:31:df:
7a:1f:96:79:81:21:75:fa:3e:ed:8c:d7:ea:8b:3e:
9a:34:03:ef:68:cc:f8:83:67:6e:e1:8b:a2:27:1d:
ec:1d:4e:05:74:9b:35:e8:0f:07:9f:2b:a1:f1:05:
88:6f:58:75:83:a6:8b:d8:32:23:4c:02:e9:16:a8:
b4:70:e4:73:1d:95:39:35:11:0e:59:a6:2f:b8:7d:
ad:d0:c9:4d:11:05:8f:67:f9:f7:61:bf:26:f9:6e:
c0:21:e7:33:8e:62:4b:a9:63:f2:8d:dd:7b:6a:14:
7e:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:E3:B8:B0:F3:78:FF:80:BE:A4:94:9E:20:1D:50:E2:C8:0F:BF:85
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/6B5461A0FA6111EF96909997762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.204.183.0/24
Signature Algorithm: sha256WithRSAEncryption
d6:fc:2a:99:e8:d8:3d:79:69:b6:c9:36:a6:fd:2c:42:d6:02:
7c:43:98:81:a7:99:98:b1:ce:24:50:66:c5:e2:94:5c:d1:f7:
fa:5a:53:e7:f5:fb:fe:e8:78:26:8d:71:59:57:53:71:02:d4:
42:b0:fc:ce:da:c9:6e:0b:b3:43:02:68:54:1f:2c:b3:10:d9:
b4:10:63:23:a8:dc:37:df:63:8f:d7:38:5e:3b:e4:69:3c:cd:
27:8a:9f:05:47:b9:b6:09:95:2d:21:bd:7a:48:8e:7c:f9:4e:
82:bc:af:c4:b7:18:32:64:35:a2:d6:99:62:5b:30:4e:de:73:
7f:76:f5:07:09:f8:14:79:93:27:ef:32:7a:91:a5:6a:02:c1:
ff:ce:64:50:3b:2b:44:1c:8f:90:ee:9b:90:52:86:b2:79:00:
c0:d6:3e:ae:7c:54:62:4c:40:8e:49:eb:8c:d3:f2:c3:80:29:
2a:03:cc:ca:7e:88:10:ac:3e:53:70:45:0c:06:8f:b1:23:6b:
ad:e7:ca:61:c0:c1:02:4d:71:48:f8:90:26:65:65:35:23:7d:
1d:de:fa:32:d4:26:04:fb:87:09:98:05:b4:40:c9:e5:16:42:
40:64:d7:e7:bf:71:6a:03:55:25:48:e1:cd:b7:21:9b:3e:5f:
24:a6:46:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 9 06:45:51 2025 by rpki-client