Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8330163AF68C11EF9D04AC99762E951A.roa
File: 8330163AF68C11EF9D04AC99762E951A.roa (raw, json)
Hash identifier: jT/WGMVjIZD2avPMURHXZyEGuamLuux0IO96nwShTqQ=
Subject key identifier: 07:9F:C2:4C:3B:B3:2A:BC:E1:3C:B9:5D:D4:27:19:5F:0E:A2:86:8E
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 016DEF
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8330163AF68C11EF9D04AC99762E951A.roa
Signing time: Sat 01 Mar 2025 11:01:23 +0000
ROA not before: Sat 01 Mar 2025 11:01:19 +0000
ROA not after: Mon 31 Mar 2025 11:01:19 +0000
asID: 202656
IP address blocks: 154.222.45.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 93679 (0x16def)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 1 11:01:19 2025 GMT
Not After : Mar 31 11:01:19 2025 GMT
Subject: CN=67c2e903-6aea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:a7:c5:ca:22:15:e9:91:e6:f6:42:e4:28:85:
ac:31:f0:e8:12:92:0c:29:b9:c4:98:4a:09:d3:15:
ce:cd:83:8b:e9:96:14:8a:95:db:36:b0:50:c6:d2:
86:ad:8f:3d:41:e4:72:f2:46:8b:76:b1:66:f6:69:
92:ad:5e:17:6c:aa:4c:f8:b1:10:b6:b5:45:5e:c6:
f0:b3:e9:52:30:e4:1d:f5:2b:f5:10:93:7e:8b:89:
49:01:3c:68:7d:e6:14:ce:07:63:bf:c1:ed:d2:b9:
68:ad:70:79:74:70:81:ee:10:43:8a:2b:d8:3a:dc:
91:05:84:f0:fe:b2:b0:fc:47:4b:7d:32:e9:20:89:
ed:61:3a:b4:f3:49:1d:f0:14:6f:01:35:e2:1f:92:
53:c6:43:be:8e:a0:5e:c7:5d:ca:95:56:08:64:2e:
4b:bd:58:7b:cb:b4:a6:02:49:fd:b4:41:63:1a:d1:
89:10:d0:6a:bd:a3:88:64:4f:6a:10:e2:a2:69:5c:
40:d5:7b:f6:28:7a:e3:68:b4:fb:5f:3a:d0:96:45:
6a:42:c8:00:a1:b7:1e:57:ec:5e:bb:5f:13:bd:81:
07:19:93:31:71:09:0a:ea:64:5e:4a:36:3b:60:07:
ed:01:31:72:a0:21:ff:e7:28:27:71:09:76:33:03:
d9:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:9F:C2:4C:3B:B3:2A:BC:E1:3C:B9:5D:D4:27:19:5F:0E:A2:86:8E
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8330163AF68C11EF9D04AC99762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.222.45.0/24
Signature Algorithm: sha256WithRSAEncryption
67:af:a6:14:3a:97:7a:1d:c6:b0:0d:85:c8:56:b8:b2:03:34:
84:6d:be:fb:f5:db:9b:d0:f8:c2:d4:b5:d8:5e:81:8b:83:e8:
dc:aa:78:60:90:43:ad:44:36:47:58:9d:54:27:23:e6:8b:d4:
32:8b:8d:08:89:aa:98:e1:5c:aa:d7:69:54:d5:d8:5d:e1:d2:
d1:44:29:50:6b:b0:0b:ed:3a:ca:b2:76:65:00:65:00:9a:be:
f6:71:e9:a0:03:ab:84:74:b4:24:13:39:a0:fd:7e:0b:36:ed:
39:94:4c:a8:45:9b:3b:b6:6e:5e:98:c4:1d:61:26:e8:80:2d:
f6:d1:00:85:37:c5:ac:bc:d3:01:87:ff:2f:70:ee:04:08:7e:
41:dd:24:33:cf:68:7c:8b:5b:9e:f0:ad:95:cb:2f:68:87:4f:
0a:23:6e:71:34:e8:ef:78:b0:9f:d6:92:f0:f2:36:2b:72:df:
65:fd:b4:2b:f3:d6:6a:55:77:e7:77:5b:80:a3:fd:e7:66:7e:
08:cc:22:82:d6:aa:6f:47:9c:c6:12:d2:49:b9:bb:b3:09:bb:
24:0d:88:ab:01:b3:bd:6f:65:9a:91:47:13:12:b5:c6:b7:ca:
12:eb:91:b8:5a:c3:09:d3:95:10:b1:1b:83:a5:b2:42:b6:e2:
55:30:90:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 9 06:40:26 2025 by rpki-client