Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/703471CE8CDF11EE981D4D6A4AD9E6FC.roa
File: 703471CE8CDF11EE981D4D6A4AD9E6FC.roa (raw, json)
Hash identifier: +ybrwnMqOdj+PK7GstE1q9tL2y8tKHAIjXPbLZFQQ8w=
Subject key identifier: AE:79:1A:63:0A:29:1B:80:D4:4A:85:FB:50:BD:4A:33:C8:7E:05:EC
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 5523
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/703471CE8CDF11EE981D4D6A4AD9E6FC.roa
Signing time: Mon 27 Nov 2023 04:42:58 +0000
ROA not before: Mon 27 Nov 2023 04:42:55 +0000
ROA not after: Tue 26 Dec 2023 04:42:55 +0000
asID: 62240
IP address blocks: 154.196.47.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 21795 (0x5523)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 27 04:42:55 2023 GMT
Not After : Dec 26 04:42:55 2023 GMT
Subject: CN=65641e52-2c03
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:f1:38:7f:19:47:2a:40:3b:b6:03:49:42:24:
1b:d1:bd:b2:dd:47:4b:ed:a6:8e:66:ab:b0:85:4d:
b8:85:2e:0d:bf:16:03:1f:69:ff:de:bc:04:2b:28:
f3:30:af:60:4d:aa:33:d1:d2:6b:f6:bb:b8:ea:b6:
8e:ba:4b:76:f9:b1:40:29:97:3a:be:97:0c:00:6c:
e3:87:9b:89:3a:aa:92:f5:36:92:be:36:b6:54:36:
52:57:70:3d:c6:b9:c3:39:1f:92:45:45:45:89:ef:
11:30:29:c3:bd:e3:20:4a:f7:33:fe:e8:de:28:7a:
77:0a:03:c7:17:12:9c:d7:f8:9a:bb:54:cb:3f:71:
ae:5e:59:5a:d7:5a:94:41:c7:ae:79:08:e3:88:cd:
62:c1:2d:35:4a:73:1f:a5:78:5e:de:f5:bf:62:5f:
ae:29:dc:2f:33:5d:86:74:38:ef:34:c1:2c:9a:f0:
15:65:65:71:a5:57:87:59:da:32:4a:45:ca:95:91:
f2:99:e6:e2:3c:37:f0:5a:23:99:34:51:0d:98:4d:
ba:2a:5e:68:bb:01:5b:5f:39:85:a7:22:7d:29:1b:
50:a5:31:62:a5:a0:af:e2:5d:0e:51:6e:b0:f5:07:
82:21:da:02:5d:3f:d7:38:c2:8b:13:67:ea:7a:c7:
38:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:79:1A:63:0A:29:1B:80:D4:4A:85:FB:50:BD:4A:33:C8:7E:05:EC
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/703471CE8CDF11EE981D4D6A4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.196.47.0/24
Signature Algorithm: sha256WithRSAEncryption
7e:e1:74:79:93:05:65:0c:47:cd:af:16:03:23:8b:6a:44:db:
89:2c:8d:d9:97:77:49:a4:d1:eb:e4:bf:22:6c:2a:99:cd:1e:
1b:d2:68:80:6d:aa:8e:c8:c1:cf:a0:e4:18:13:15:04:d6:c3:
54:22:03:f5:e8:8d:21:29:f2:93:57:fc:88:fc:1c:f0:77:4f:
e4:86:cc:eb:48:1a:f2:35:31:e0:7a:d1:1e:e9:e8:1a:6b:55:
73:77:c7:b7:dd:51:37:39:49:c4:29:84:d7:15:90:d6:bd:37:
3d:8b:34:30:67:25:e0:1c:c6:d9:df:d6:85:49:e3:0f:b7:46:
14:2d:e0:18:6a:32:30:e1:99:00:64:e2:59:21:5a:df:61:d6:
82:02:f6:5a:e6:13:73:d2:91:e4:3c:cb:9c:1a:e1:3e:67:04:
47:e1:c6:8c:1e:1a:b8:d2:f4:7b:d7:c6:4c:3b:8f:de:85:c2:
a8:63:2f:46:78:9d:19:86:c5:2a:34:7a:3e:fd:56:ec:ab:b9:
88:f7:92:a6:cc:35:93:b9:d9:6c:39:3b:50:19:d4:e9:0f:30:
ab:b3:2d:d6:29:7e:91:2d:47:cc:9d:b9:5c:6b:7e:62:eb:f6:
8d:17:63:e4:5d:fd:15:fd:96:14:e2:3b:0f:5c:bb:b7:a3:b0:
f7:f7:80:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 9 12:53:42 2025 by rpki-client