Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7CC7FD36F2BC11EF89E2806A762E951A.roa
File: 7CC7FD36F2BC11EF89E2806A762E951A.roa (raw, json)
Hash identifier: Dm54QLH+rWDdlB9HaKQrFMIxzAVnQT/s3ijYLCsIST4=
Subject key identifier: BF:79:0C:5A:FD:04:04:A3:8C:8F:DF:ED:30:D2:0A:64:18:D4:46:02
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 015C30
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7CC7FD36F2BC11EF89E2806A762E951A.roa
Signing time: Mon 24 Feb 2025 14:34:43 +0000
ROA not before: Mon 24 Feb 2025 14:34:40 +0000
ROA not after: Sat 29 Mar 2025 14:34:40 +0000
asID: 203020
IP address blocks: 154.223.173.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 89136 (0x15c30)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Feb 24 14:34:40 2025 GMT
Not After : Mar 29 14:34:40 2025 GMT
Subject: CN=67bc8383-cdaf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:d1:49:a8:0c:27:90:9f:d7:a4:20:ba:e1:ce:
23:25:93:8c:4c:d4:44:57:96:a4:b2:85:84:d1:31:
7b:3b:49:36:03:99:aa:2a:75:15:9f:21:5a:40:e6:
74:52:04:22:76:a5:74:fb:46:13:c6:56:01:b8:12:
2a:89:8e:c2:5e:52:8e:4e:77:3a:8c:12:db:12:68:
87:0f:3e:e1:e7:0d:32:b8:2c:5c:8a:d2:5d:29:24:
46:7d:54:b4:e5:36:dd:ad:86:68:26:f1:21:41:bb:
c1:32:dd:c7:04:34:52:63:f1:0c:4b:0e:df:eb:3b:
40:16:a6:de:15:d9:6d:30:c7:86:15:b7:31:ff:d9:
35:0e:7c:43:83:1e:f6:f8:d0:9c:4f:43:c4:86:11:
fc:9b:a8:48:29:17:56:a2:71:1f:1e:86:12:00:a6:
f9:27:5f:b6:54:af:a3:38:be:4f:3a:60:36:da:eb:
d4:4e:bd:f5:f5:b8:0d:41:da:2c:18:f3:a5:bb:dc:
04:2c:55:6b:9b:6f:00:e3:61:66:77:60:b5:14:d9:
71:3b:d7:81:5f:b1:8f:80:53:13:f1:c6:16:45:ca:
bb:b5:b3:74:4a:c7:93:b9:53:1f:82:94:9f:9f:c4:
b0:f9:bc:82:4e:86:b1:ab:2c:70:36:d6:03:ff:e9:
98:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:79:0C:5A:FD:04:04:A3:8C:8F:DF:ED:30:D2:0A:64:18:D4:46:02
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7CC7FD36F2BC11EF89E2806A762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.223.173.0/24
Signature Algorithm: sha256WithRSAEncryption
27:13:44:8b:63:82:5a:dd:68:db:d2:8f:c8:ba:19:18:78:86:
4f:f4:f6:5c:4e:22:0f:1a:a6:e3:b9:c4:cb:2e:80:d9:80:c2:
04:38:24:bf:e5:f1:b3:b7:f6:4f:fd:16:8c:34:54:32:f5:4d:
57:3d:95:03:e8:1e:0c:90:e4:1c:9a:95:ee:a2:80:c1:6f:26:
c2:eb:3c:a5:17:42:b0:46:54:5b:fd:13:5a:6f:ca:f1:e4:d5:
5a:e6:6c:47:90:4b:0b:58:e6:ec:d2:43:9e:b3:71:67:8b:25:
b7:98:f9:ac:b5:4e:98:63:79:ec:ee:e8:da:46:ff:1a:6e:22:
6f:95:e8:a5:1b:f1:0f:7f:2e:ef:92:72:dd:ff:b4:e4:61:b3:
09:9a:6f:5f:f5:c2:d3:7a:d1:ff:15:eb:30:69:54:8c:94:85:
49:d6:22:0b:88:45:c0:b4:5e:e7:45:fb:8d:c0:6a:27:09:20:
ac:65:1f:14:79:b4:da:46:05:76:6f:c3:3a:db:94:27:25:23:
d5:3f:ae:78:e8:3b:86:fd:21:86:69:c7:8b:0d:b5:29:d4:d7:
3a:48:0e:78:c6:70:7c:44:1c:ae:90:47:51:20:ed:ee:7e:89:
b1:74:f7:2b:d1:1f:df:bb:f5:f3:57:49:ea:3c:7d:41:9c:6f:
e7:ee:0f:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 10:09:00 2025 by rpki-client