Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/782900388A8D11EEB2E983814AD9E6FC.roa
File: 782900388A8D11EEB2E983814AD9E6FC.roa (raw, json)
Hash identifier: dQdC/IaicV4mmNPo28yRCqeISFCuqsfLZ7R5ASyiUaQ=
Subject key identifier: 8D:AB:F6:02:81:32:0C:11:AF:B3:69:00:BF:D1:AC:9D:A7:07:FB:BC
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 5364
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/782900388A8D11EEB2E983814AD9E6FC.roa
Signing time: Fri 24 Nov 2023 05:51:11 +0000
ROA not before: Fri 24 Nov 2023 05:51:07 +0000
ROA not after: Tue 26 Dec 2023 05:51:07 +0000
asID: 62240
IP address blocks: 154.195.169.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 21348 (0x5364)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 24 05:51:07 2023 GMT
Not After : Dec 26 05:51:07 2023 GMT
Subject: CN=656039cf-8ed3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:ae:fe:88:18:f1:c0:2e:7d:42:31:0d:c4:5e:
e9:62:21:31:dd:85:86:4c:d5:46:de:94:fa:9c:3c:
ae:84:bb:39:fb:4d:aa:0e:17:cf:85:63:40:96:6a:
59:8d:aa:67:07:e6:0f:3f:ca:ac:ee:cb:fd:34:b9:
7b:9c:59:97:e5:8a:76:10:c6:36:d0:81:9a:18:7f:
29:fd:8c:19:0f:a5:ce:7e:8b:3e:97:df:e0:2f:73:
81:11:0d:27:bb:51:43:1d:5b:3f:12:bd:94:ca:ac:
65:8c:95:8c:e8:cf:2c:ff:46:46:f1:3a:e3:cd:41:
b3:76:b1:67:f9:0a:fc:3b:86:ea:34:3a:5d:1e:42:
dd:56:5e:dd:0d:e9:aa:59:4c:9d:f6:07:dd:95:24:
c1:b8:1c:be:4f:9d:91:de:db:9b:b0:e0:17:8f:2f:
5d:fa:fa:95:7a:ad:fe:cb:18:c6:6d:c4:4a:4b:8d:
bc:21:96:cc:7e:7b:34:6f:77:29:e9:30:8f:60:97:
e7:36:0c:ec:6c:10:09:02:75:36:c6:25:d4:a6:9a:
65:18:c2:77:b4:29:0b:7a:36:50:16:5b:4f:7e:7b:
c2:4a:f9:e1:45:d8:a0:71:ec:b9:49:b5:79:1d:92:
8c:3e:bb:d5:13:60:5e:8c:09:2a:b4:b0:a9:b0:76:
fa:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:AB:F6:02:81:32:0C:11:AF:B3:69:00:BF:D1:AC:9D:A7:07:FB:BC
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/782900388A8D11EEB2E983814AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.195.169.0/24
Signature Algorithm: sha256WithRSAEncryption
38:11:ed:15:71:14:4c:5c:66:05:95:1e:fd:9d:de:2b:7b:0e:
6e:20:67:e5:78:d2:19:3e:31:8b:92:92:2d:f5:2c:1f:93:80:
ac:22:ee:13:94:ed:38:33:0e:56:90:76:19:bf:38:c5:5f:23:
ef:58:e9:91:8d:24:59:79:a4:4f:7c:cf:9d:44:2c:74:85:0f:
83:de:19:bb:9e:46:28:10:a1:70:17:2b:e9:e5:83:4d:c2:aa:
9d:48:01:f3:51:ce:70:fc:80:fd:e1:28:81:92:2f:72:88:57:
bf:18:be:7d:62:d0:82:22:7c:0d:01:7b:8f:58:f8:83:60:e4:
93:2d:b8:5e:6d:e6:d5:ca:29:e0:2f:5d:24:39:8b:dc:ff:15:
b8:d1:6f:cb:04:e0:8c:c7:72:b8:f5:10:f4:c6:e5:37:89:ce:
f6:87:fe:44:49:e4:5d:94:cf:5d:16:1c:5b:35:e0:be:6c:00:
2c:12:2a:06:2e:e5:92:b6:b8:51:d4:c2:42:6d:91:00:2a:fa:
a9:14:4f:56:1c:5f:fd:bf:10:e2:40:f1:73:37:ab:c0:f0:5f:
c6:17:50:61:e7:3d:dd:52:70:ce:98:bd:ea:be:c3:50:f4:b7:
60:5f:24:ba:53:1a:a2:b0:e8:b8:97:41:ff:ad:4a:15:8c:e8:
cf:97:0c:42
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 9 11:04:59 2025 by rpki-client