Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/803358C000C811F08163EE7A762E951A.roa
File: 803358C000C811F08163EE7A762E951A.roa (raw, json)
Hash identifier: RvksAUe1GtlDDyzvBwi/l2T1blupC9U87Z4b1Kw4Sts=
Subject key identifier: B1:4D:88:4A:8D:E2:FB:AE:1E:75:E9:16:6D:A2:FA:76:01:CF:5B:CB
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 017452
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/803358C000C811F08163EE7A762E951A.roa
Signing time: Fri 14 Mar 2025 11:35:59 +0000
ROA not before: Fri 14 Mar 2025 11:35:55 +0000
ROA not after: Wed 26 Mar 2025 11:35:55 +0000
asID: 142002
IP address blocks: 154.83.26.0/24 maxlen: 24
154.83.27.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 95314 (0x17452)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 14 11:35:55 2025 GMT
Not After : Mar 26 11:35:55 2025 GMT
Subject: CN=67d4149f-c202
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:04:96:22:9d:1b:e1:c7:c2:4b:c4:53:a5:d4:
65:b0:0f:02:e3:43:fb:50:03:61:7c:fa:6d:e9:04:
b7:91:12:4a:ec:b8:6b:6b:5d:1e:70:16:5a:6d:c6:
06:48:be:f0:28:3b:8d:83:19:b6:24:19:e6:c7:6f:
13:76:17:4c:7e:e4:ab:75:67:c9:9c:5e:a6:20:6e:
14:69:f4:dc:76:97:55:5d:45:30:96:44:32:4e:56:
27:02:ec:e9:5f:b9:57:46:8e:68:b1:d9:fe:af:6e:
ea:ba:f9:0d:07:ca:3c:91:b3:0e:1c:96:e6:02:51:
01:00:eb:3c:c9:c5:84:b8:71:17:2a:b6:40:5b:17:
9e:4b:97:08:8f:60:af:6e:07:f6:31:38:a7:f2:d3:
ba:32:9b:6c:2b:03:a4:ce:75:60:97:fc:03:60:bf:
59:45:b6:c9:15:e2:d4:c1:5d:bc:04:8e:a0:ec:c3:
07:79:62:f0:49:3c:16:eb:6c:a1:47:85:08:48:39:
39:b5:fa:5d:10:0f:47:f2:95:25:52:0c:21:f4:47:
27:51:e4:65:fc:59:59:a3:ef:b8:c8:4c:a7:a2:e7:
1a:7a:1c:68:b7:36:db:40:33:0e:99:03:a2:bf:88:
c5:de:c4:00:4c:aa:9f:3c:c9:b2:8f:16:93:01:1c:
39:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:4D:88:4A:8D:E2:FB:AE:1E:75:E9:16:6D:A2:FA:76:01:CF:5B:CB
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/803358C000C811F08163EE7A762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.83.26.0/23
Signature Algorithm: sha256WithRSAEncryption
69:8a:3e:6e:3b:54:75:de:84:1d:63:a8:85:af:b4:29:a8:a7:
65:1f:d8:29:17:d8:2d:2f:a4:49:33:2c:20:52:ea:4c:14:98:
0a:7e:38:1f:ef:bb:f8:87:84:7d:a7:27:58:4c:36:e5:2d:7b:
09:e8:f3:c5:4e:96:f1:94:03:05:e3:0d:04:ca:24:bf:d8:e8:
ad:01:64:52:c9:e3:4e:f1:e0:c9:c3:74:bf:ee:fa:26:c0:e9:
69:8f:4b:8d:fe:5d:76:36:79:80:6d:08:26:fe:b4:21:e4:f6:
01:05:e2:14:1f:5a:9a:59:94:dc:14:21:23:e0:8b:45:38:4b:
ed:96:8b:da:b1:f8:72:8a:30:b0:21:fe:7d:7c:17:f8:19:4f:
bc:97:18:d7:eb:9c:c2:aa:f0:fc:8e:ff:d5:d5:0b:b5:f1:f3:
31:6c:30:1f:c6:a2:1b:64:0b:cd:c8:b1:49:ab:c9:f9:04:74:
0a:5b:c9:86:8a:01:a0:14:07:98:20:e3:c3:5c:a8:34:8c:f9:
28:e9:6f:92:b6:f3:9a:43:de:54:92:96:b3:b2:4b:59:4a:a9:
93:71:57:42:33:42:3d:07:2c:12:d4:bf:c0:ef:90:a1:32:92:
6f:b1:c6:f7:0f:3b:68:67:19:36:25:41:90:47:00:25:57:58:
b4:ed:13:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 9 11:41:16 2025 by rpki-client