Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/854EC2888CDC11EEA6EC0A614AD9E6FC.roa
File: 854EC2888CDC11EEA6EC0A614AD9E6FC.roa (raw, json)
Hash identifier: vsvNtHAhcGLkzAgLQ8kCEZBBJt7u60WhDuHo3Q/EtbE=
Subject key identifier: 59:6D:BC:E8:2B:92:D2:19:CF:45:9F:FE:1E:D9:3E:77:09:F2:B9:04
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 54DD
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/854EC2888CDC11EEA6EC0A614AD9E6FC.roa
Signing time: Mon 27 Nov 2023 04:22:05 +0000
ROA not before: Mon 27 Nov 2023 04:22:02 +0000
ROA not after: Tue 26 Dec 2023 04:22:02 +0000
asID: 62240
IP address blocks: 154.195.112.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 21725 (0x54dd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 27 04:22:02 2023 GMT
Not After : Dec 26 04:22:02 2023 GMT
Subject: CN=6564196d-3b59
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:f1:4a:e1:e1:d5:b3:65:e6:f0:2c:08:99:fe:
cd:a9:f5:40:89:0e:06:79:43:98:5a:a9:5b:7a:ad:
9d:72:aa:f4:46:d6:27:e4:15:d0:59:1c:2c:74:f2:
8d:63:bf:46:ff:70:45:5a:71:34:1d:3e:ec:4d:7d:
31:5b:7e:67:42:8b:63:f2:37:be:67:5b:97:36:8f:
65:3f:a6:81:20:76:aa:98:80:3d:b5:bc:9d:7a:cf:
8f:2a:6e:33:d4:91:f2:97:fd:aa:cc:17:05:58:5c:
0f:82:95:e9:29:e1:d9:0e:09:2a:32:a1:32:0d:c7:
05:4e:d2:a4:26:9d:94:3f:2d:5e:d3:d7:11:77:17:
38:74:52:20:2c:f2:fe:16:d7:c5:5f:68:79:6d:4f:
0b:aa:05:c1:0e:cf:06:b2:22:5d:48:79:a8:cc:b9:
49:63:e0:d3:bc:c3:89:b7:6e:86:c3:01:29:d0:f6:
65:e4:5f:0a:07:a2:2d:5d:a5:40:cc:64:8c:6f:69:
1e:98:9e:3b:67:5b:9a:c1:e4:40:0c:58:bf:e0:5e:
f8:85:98:61:35:6d:fb:19:02:f2:70:48:ca:fd:a9:
8c:9e:af:d2:93:30:5f:10:34:9b:e6:2d:e2:ff:30:
b0:0c:12:b0:c4:3a:99:cf:2d:0a:18:5e:95:ec:40:
26:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:6D:BC:E8:2B:92:D2:19:CF:45:9F:FE:1E:D9:3E:77:09:F2:B9:04
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/854EC2888CDC11EEA6EC0A614AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.195.112.0/24
Signature Algorithm: sha256WithRSAEncryption
46:3f:33:bd:b5:bd:fa:58:3a:67:a1:41:b7:73:8c:39:95:3b:
f1:f7:70:9d:ef:2d:0e:f5:f6:75:da:5a:e4:58:e4:d2:a3:dc:
52:fd:81:e0:39:58:54:01:b4:7a:cb:55:58:19:5a:1f:dd:38:
d7:a0:82:4e:a9:94:f1:48:77:95:28:88:bf:09:ed:da:17:46:
ac:2c:ac:37:f6:4d:f0:00:bc:22:b5:c1:8a:ae:a8:bb:2e:2f:
ef:9f:87:7d:40:16:45:86:7a:60:05:85:b8:29:15:27:ac:0b:
75:29:bd:ea:f4:30:6a:f9:91:bd:4b:e7:ae:ff:57:10:65:e0:
a7:f8:3b:54:68:cc:bb:6e:30:4a:7e:1f:d2:1e:1c:02:f0:14:
f2:88:d4:bc:11:c0:a8:a5:51:c4:0f:43:ee:f7:a8:b8:15:5b:
1d:93:c9:5a:3c:be:c3:fe:45:1d:cb:c1:29:80:b0:df:b9:c4:
da:d0:40:c1:49:e2:88:20:8f:82:01:4e:fe:84:af:10:d4:73:
20:f5:22:37:5b:b5:0b:73:06:c7:41:48:95:0e:6c:5a:27:da:
b9:2a:c1:cc:06:31:64:7c:04:09:31:3c:85:c3:03:b9:b3:84:
24:a6:a1:d3:a2:e4:78:4d:51:c3:97:4d:8a:ac:52:68:27:3e:
26:c1:a9:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 9 11:12:21 2025 by rpki-client