Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/6C663662F81E11EF94C57F43762E951A.roa
File: 6C663662F81E11EF94C57F43762E951A.roa (raw, json)
Hash identifier: AWKanZnmwmIVY3F/ULG/2NMS6Lgnd0vweFUxEDutVuE=
Subject key identifier: 3E:15:ED:CA:F9:CB:15:08:59:68:04:DC:9A:EB:24:8E:1E:72:A9:97
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 017049
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/6C663662F81E11EF94C57F43762E951A.roa
Signing time: Mon 03 Mar 2025 10:58:22 +0000
ROA not before: Mon 03 Mar 2025 10:58:18 +0000
ROA not after: Mon 31 Mar 2025 10:58:18 +0000
asID: 202656
IP address blocks: 154.219.30.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 94281 (0x17049)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 3 10:58:18 2025 GMT
Not After : Mar 31 10:58:18 2025 GMT
Subject: CN=67c58b4e-26dc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:61:37:6f:18:91:3e:3d:75:11:73:d3:38:0b:
95:a6:1f:4a:72:9e:01:0e:38:42:7e:20:9d:ee:fe:
b9:70:70:26:3c:af:b6:2f:87:bc:38:6d:06:8d:13:
c7:e0:e4:cc:8a:d4:ec:fc:3f:28:9c:3a:01:e3:a7:
8c:3b:fa:9e:fa:18:17:e5:67:4e:a4:b4:21:68:bf:
42:2e:c3:ed:81:30:07:27:61:8e:e3:bc:90:65:2f:
0d:29:c7:ca:de:e1:24:2a:67:15:31:9f:b0:f6:9a:
55:48:4b:bb:d1:ef:0e:67:c3:1e:4e:3f:ce:7e:d4:
58:91:2a:ef:f8:59:e8:fa:f8:83:c2:48:48:80:81:
03:6d:ff:d1:dd:e0:12:64:34:27:cd:9d:f0:bf:68:
84:6c:be:c6:0b:49:44:8b:98:dc:61:e9:1a:ff:ca:
fc:f8:3d:bd:0b:21:7c:24:a2:9d:40:23:e1:20:1a:
0e:ea:4f:ea:39:68:dc:d1:34:86:26:f6:22:b3:8f:
86:a7:3a:17:a2:f7:fe:e3:69:6b:2a:24:e0:f6:11:
18:0a:e7:8e:e3:42:fa:32:d8:a7:f8:07:20:7d:c8:
42:4d:9c:81:2a:2a:ca:bb:c0:46:4f:e6:39:cc:c9:
e1:03:63:da:db:68:fa:08:2e:99:c4:14:5d:8c:01:
4c:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:15:ED:CA:F9:CB:15:08:59:68:04:DC:9A:EB:24:8E:1E:72:A9:97
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/6C663662F81E11EF94C57F43762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.219.30.0/24
Signature Algorithm: sha256WithRSAEncryption
41:b6:bd:a3:ec:e1:c4:32:dd:7a:67:5c:b7:b9:79:fc:28:33:
3b:3d:06:cf:c2:79:50:d3:1a:12:64:4c:17:c2:ea:e0:fd:16:
64:f7:f6:da:30:83:90:cd:97:90:ac:29:cf:75:e3:72:c0:35:
fe:99:6e:ea:59:a7:da:57:4c:51:fe:d2:5a:fb:c8:ba:2b:ee:
c0:38:9e:ca:bd:c1:17:9c:85:51:8f:6e:65:ac:8a:04:8a:ae:
c4:21:35:11:de:49:84:c3:87:d2:3a:f2:9c:c3:f4:de:2a:df:
1b:e0:c5:a9:fe:89:40:d8:a6:68:84:37:ff:c3:f7:88:85:b4:
23:25:ea:ba:0e:81:1b:68:fa:8e:62:a0:71:d8:b6:72:6c:67:
b3:26:36:74:9c:70:4a:16:75:b2:ba:6a:1e:c7:94:12:d1:be:
d6:99:f2:64:b7:34:e6:9c:a1:17:ba:83:d9:80:71:cf:7b:a5:
f5:bd:8c:73:61:80:09:fa:16:fa:64:01:e5:be:f0:ad:3d:88:
15:67:6f:b5:22:02:5c:61:e9:c4:c2:f4:46:5d:8c:b9:eb:0f:
63:74:2c:1c:64:8e:51:fb:8c:eb:59:d1:69:ed:92:1e:ec:12:
ff:80:31:33:67:e0:d9:0e:f8:4f:5d:cc:02:63:09:c9:70:e3:
52:55:42:50
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 9 07:03:32 2025 by rpki-client