Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/6F0EEBA48A8B11EEBC0BDC7A4AD9E6FC.roa
File: 6F0EEBA48A8B11EEBC0BDC7A4AD9E6FC.roa (raw, json)
Hash identifier: ZiqXn+o2FBpE3FnyacjHnCJW07NndW5BRish28vAcrE=
Subject key identifier: 24:2D:33:2B:8C:5F:05:DA:8F:65:6F:FD:3F:93:1F:AA:46:30:EB:AE
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 5342
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/6F0EEBA48A8B11EEBC0BDC7A4AD9E6FC.roa
Signing time: Fri 24 Nov 2023 05:36:36 +0000
ROA not before: Fri 24 Nov 2023 05:36:33 +0000
ROA not after: Tue 26 Dec 2023 05:36:33 +0000
asID: 62240
IP address blocks: 154.194.33.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 21314 (0x5342)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 24 05:36:33 2023 GMT
Not After : Dec 26 05:36:33 2023 GMT
Subject: CN=65603664-82b5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:b4:c0:6b:29:3d:21:e1:2d:c0:49:62:53:09:
8c:00:79:5f:f8:bb:6e:8b:f5:cb:68:21:d3:60:66:
7e:8c:5c:6b:e1:2a:b2:3e:8f:b4:4b:60:5a:13:c4:
de:f7:82:7c:1a:56:24:fb:c7:ff:07:4f:5a:31:dc:
d9:47:c0:f0:57:1d:0f:fc:8f:fe:78:5e:ff:0a:c9:
c7:c3:ca:79:9d:18:65:de:60:42:97:2c:24:c1:6c:
5c:91:eb:d4:18:11:63:b5:1e:4b:7c:23:3b:9d:1f:
0f:36:ce:64:d6:e0:00:30:14:75:b2:d5:e9:15:3f:
22:91:f9:d1:0d:0d:12:e5:9c:f9:0c:dc:6f:58:a2:
b2:f9:b2:46:08:0a:89:f5:68:f7:58:8b:05:19:ef:
db:d8:fa:21:3f:d0:6e:83:18:7a:61:55:b0:1a:28:
8b:ea:bc:7c:95:40:e5:ea:a4:3b:59:fd:ae:0e:2e:
4f:3f:e4:ea:4a:aa:15:03:bc:32:32:32:40:8b:66:
b3:ee:d9:9c:53:e3:56:48:d5:fb:1e:c7:d2:82:93:
87:f9:15:c0:33:8c:8e:75:2f:b9:ec:1d:e1:c5:b3:
fd:05:db:58:25:4e:dc:f6:3b:9d:55:74:30:a4:3f:
09:60:ef:9d:87:6d:10:80:f6:f9:1b:40:16:0f:37:
eb:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:2D:33:2B:8C:5F:05:DA:8F:65:6F:FD:3F:93:1F:AA:46:30:EB:AE
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/6F0EEBA48A8B11EEBC0BDC7A4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.194.33.0/24
Signature Algorithm: sha256WithRSAEncryption
19:e1:88:4a:fa:0f:ae:bc:78:5b:69:65:81:50:ca:61:da:6e:
b4:19:b4:02:d4:80:19:cc:19:39:68:d5:a8:8c:a5:ab:68:6f:
b4:5f:39:e9:8a:94:27:ff:6b:28:71:ce:57:4d:9c:32:3f:90:
90:b7:81:ef:41:9d:7b:a7:ac:5a:8d:40:b2:5b:91:0e:3f:11:
cb:64:1a:23:e3:d2:48:03:f2:b6:de:9f:6c:a1:6f:ef:87:4c:
10:c6:be:3b:d6:4c:3a:88:41:08:c1:10:37:c2:2b:34:fc:de:
92:7d:e4:1f:73:fc:a7:e9:8a:2b:61:55:70:6f:c3:a5:7d:1b:
7d:c1:0d:b0:8d:2d:f0:a7:1a:f6:88:c2:53:9b:b4:d0:1c:d3:
6b:46:77:64:57:26:d7:e4:da:92:6b:9c:e5:d9:b5:a9:9e:c2:
c1:2b:8c:ed:de:28:7e:a0:d3:2b:04:27:46:40:ee:fe:91:49:
ce:75:c8:06:3d:44:25:d3:c6:3b:5a:a7:5d:28:20:d8:10:70:
be:ae:b4:ee:e6:5e:7e:aa:25:3e:4b:21:b2:41:3b:d2:94:ef:
cd:9e:39:b1:94:cf:9c:dc:cd:96:51:de:42:dd:01:01:5a:90:
9c:2b:54:6c:87:60:e2:24:7b:53:a1:b2:3c:93:a1:5b:ef:48:
94:21:19:90
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 9 10:52:01 2025 by rpki-client