Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/774981CEF62511EF832F9351762E951A.roa
File: 774981CEF62511EF832F9351762E951A.roa (raw, json)
Hash identifier: KpexG2oVwaCQpZ9ISpsATHNtPyo10rZgdM3oDsNOUqc=
Subject key identifier: 1F:7B:1D:D0:96:13:C7:03:07:7D:71:DF:4C:17:5F:AB:4B:2D:1F:91
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 016C9B
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/774981CEF62511EF832F9351762E951A.roa
Signing time: Fri 28 Feb 2025 22:43:45 +0000
ROA not before: Fri 28 Feb 2025 22:43:41 +0000
ROA not after: Wed 26 Mar 2025 22:43:41 +0000
asID: 62240
IP address blocks: 154.194.80.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 93339 (0x16c9b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Feb 28 22:43:41 2025 GMT
Not After : Mar 26 22:43:41 2025 GMT
Subject: CN=67c23c21-4113
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:e8:ec:4b:bf:b5:89:12:2c:42:75:64:5f:b2:
d2:f5:3d:24:1d:ff:66:1d:21:10:6f:f2:d2:da:4b:
45:ea:f7:9d:aa:2c:0b:f0:c4:2e:ab:61:fc:fe:8c:
72:10:e0:50:ca:43:d3:fb:9e:5c:58:83:b0:b8:19:
05:11:c6:85:56:f9:e1:98:48:f6:81:3a:fc:0d:bc:
67:8b:d6:e5:c3:12:16:0b:15:1d:b5:51:e5:6c:88:
a1:8c:1b:72:14:c9:65:1b:13:73:04:0f:63:53:36:
a3:90:95:de:fa:65:da:9f:3b:c3:85:c1:da:3e:61:
50:d3:60:32:0d:54:e8:f7:50:67:8a:ea:33:18:b9:
db:8e:46:09:09:47:ae:bb:93:a7:1c:af:77:82:aa:
65:64:ad:d9:19:da:84:df:82:ee:b1:fa:f0:ba:bb:
60:46:91:df:8b:82:9d:27:24:12:a3:76:fe:53:6c:
b6:75:aa:d1:db:90:3e:48:86:9e:01:1e:6f:10:63:
40:c4:6e:e3:9a:72:5d:c8:e6:c9:10:c0:fb:de:8c:
79:8f:a6:c9:6a:23:af:08:1d:9a:e6:11:af:e2:02:
8a:4b:3a:67:0b:21:db:f3:13:12:cd:42:8c:b0:22:
f3:16:14:14:f3:29:f5:d1:d8:32:e9:f0:2a:d4:a5:
aa:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:7B:1D:D0:96:13:C7:03:07:7D:71:DF:4C:17:5F:AB:4B:2D:1F:91
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/774981CEF62511EF832F9351762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.194.80.0/24
Signature Algorithm: sha256WithRSAEncryption
69:91:3c:58:4c:ed:5b:c6:0f:23:3b:46:f2:ca:a8:82:19:96:
03:ad:5b:3a:91:c9:2d:85:1a:bd:8e:57:92:95:98:27:7d:4f:
53:b9:34:9e:25:db:68:86:50:0e:6d:cc:02:d7:ed:20:f1:8d:
59:30:62:51:4a:fa:e4:6f:e8:39:12:94:53:65:d8:b7:f7:18:
43:fc:ef:94:68:93:a1:8c:94:b9:9c:0a:52:7a:d1:7d:0f:76:
3d:18:7c:c7:05:0c:1b:ee:f8:97:09:d7:50:b1:5f:2b:a1:ea:
a9:fc:77:54:be:c9:96:dc:2d:bc:8d:f2:41:da:6e:a8:63:c1:
7f:f5:c3:0b:49:fd:3a:d7:ba:1d:d6:ee:e7:3b:63:b3:a7:ed:
7e:bd:41:e8:c6:5f:d3:a4:13:dd:8d:36:0d:64:10:ab:e0:95:
13:45:42:28:33:77:8d:75:29:f2:66:ed:24:03:13:40:8d:2b:
5a:87:84:50:6a:e2:7e:16:68:22:5e:95:81:00:16:3a:56:43:
bb:43:2a:69:cf:66:a3:54:75:74:8f:89:f5:f7:7e:74:d4:c1:
e0:cb:d5:c7:e1:76:93:1d:b2:52:c0:eb:3c:ec:96:48:1c:b6:
80:0a:09:87:95:5b:f5:fd:34:eb:28:e1:20:ea:94:b8:26:f7:
8b:17:4d:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 9 07:02:39 2025 by rpki-client