Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7399329A8A9C11EE950727344AD9E6FC.roa
File: 7399329A8A9C11EE950727344AD9E6FC.roa (raw, json)
Hash identifier: yXhdYgzhKGh/f78JV4+zX8sD7QYdnE0ahuBHqTgmNk4=
Subject key identifier: 18:C8:62:2B:7E:42:94:FE:1E:CF:AB:80:5E:81:E2:AD:32:1D:77:22
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 5487
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7399329A8A9C11EE950727344AD9E6FC.roa
Signing time: Fri 24 Nov 2023 07:38:25 +0000
ROA not before: Fri 24 Nov 2023 07:38:22 +0000
ROA not after: Tue 26 Dec 2023 07:38:22 +0000
asID: 62240
IP address blocks: 154.195.122.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 21639 (0x5487)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 24 07:38:22 2023 GMT
Not After : Dec 26 07:38:22 2023 GMT
Subject: CN=656052f1-a4d4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:aa:62:f1:4b:79:ea:f4:69:ae:ad:81:17:dd:
4f:7e:3f:34:bf:77:e5:ba:af:dd:61:e6:7c:00:89:
f6:f9:d2:7c:60:10:f0:6d:60:28:07:d9:e8:31:b3:
27:5b:ad:e1:2e:13:ec:dc:ce:5f:55:fa:65:b6:9e:
77:cd:d9:ae:48:f8:dc:15:10:55:0f:ae:cc:e3:92:
b0:d4:ba:f3:ca:99:d6:3f:d8:3d:df:88:25:16:c3:
b3:c5:86:6a:53:77:cc:4f:7a:e1:61:6d:e2:ef:2c:
0c:85:c1:6b:d0:ef:b2:1a:4a:e8:f1:47:d3:6a:18:
eb:4c:cc:51:ee:7f:99:c7:74:39:e4:60:b4:ef:45:
67:18:d3:bf:53:43:e7:8f:8c:f2:bd:cc:c5:5a:6b:
8c:ed:76:66:d0:14:e1:44:6a:09:5d:71:07:8d:f7:
f1:23:e4:87:91:d4:5f:0c:aa:84:d0:5f:87:43:97:
e9:46:10:fc:d1:48:72:00:a4:01:21:0e:1f:de:f2:
c2:a3:12:6d:02:9f:b8:db:6d:20:68:39:d0:77:15:
98:3c:1f:5f:11:2f:88:90:00:60:13:2c:d1:04:7c:
16:b5:4c:64:39:26:a2:22:76:97:e1:22:fe:90:bc:
21:26:9c:99:cc:1c:11:70:24:0a:ad:69:01:9d:d0:
39:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:C8:62:2B:7E:42:94:FE:1E:CF:AB:80:5E:81:E2:AD:32:1D:77:22
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7399329A8A9C11EE950727344AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.195.122.0/24
Signature Algorithm: sha256WithRSAEncryption
64:2a:24:3e:cd:08:ad:1f:84:8d:e1:c3:2e:79:89:15:c5:e4:
9f:fc:7b:26:fd:94:86:64:a3:8e:fe:5f:82:e7:c0:9e:b0:18:
e0:3f:9d:53:97:4a:18:50:18:9b:4d:2e:a2:3a:6b:6a:e2:f0:
6a:9e:a0:e6:15:a2:8a:3e:71:1b:6f:6c:cf:80:4d:1e:35:91:
3a:ef:a0:31:42:3d:32:1c:09:07:75:94:39:28:40:18:6e:7e:
ef:cf:a8:7a:40:77:ca:f6:ba:75:f1:0f:b3:fe:9a:fb:0e:81:
18:9d:b3:7a:3f:02:97:8d:f5:40:a4:9b:84:be:44:98:03:0e:
11:ae:30:63:91:a3:7e:ad:ef:c9:a2:89:4f:2e:04:a4:e2:e1:
9a:1a:cf:db:94:5a:14:9d:1f:29:ad:e9:99:df:b3:ff:e5:56:
73:62:80:ca:d9:9a:73:31:df:91:19:b4:00:f8:c3:83:4a:75:
44:32:ca:e2:bc:64:3a:f8:bc:59:03:96:12:4e:df:7b:7c:d0:
0e:60:d6:a8:40:1d:45:5a:fc:05:43:bc:b2:94:39:81:07:c1:
a9:7f:34:64:55:e0:b4:ee:2f:48:e1:95:3c:fd:5b:92:f3:ab:
c2:be:10:1e:ee:45:27:44:91:2f:f4:2d:62:43:35:38:9e:6d:
72:7e:03:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 9 11:09:04 2025 by rpki-client