Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8E0EB0248A8711EEB0FA5C6E4AD9E6FC.roa
File: 8E0EB0248A8711EEB0FA5C6E4AD9E6FC.roa (raw, json)
Hash identifier: RYTtksnTuqHIbB96pTmJBbcU/HcmLnFGhdj299JzN/E=
Subject key identifier: 6F:72:78:A8:C2:2C:E0:84:BD:F1:5C:32:0E:6D:AD:06:34:E2:4F:B5
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 5314
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8E0EB0248A8711EEB0FA5C6E4AD9E6FC.roa
Signing time: Fri 24 Nov 2023 05:08:50 +0000
ROA not before: Fri 24 Nov 2023 05:08:47 +0000
ROA not after: Tue 26 Dec 2023 05:08:47 +0000
asID: 62240
IP address blocks: 154.195.174.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 21268 (0x5314)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 24 05:08:47 2023 GMT
Not After : Dec 26 05:08:47 2023 GMT
Subject: CN=65602fe2-d0ca
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:4f:66:97:55:76:5b:1a:78:2e:c3:1f:60:60:
3d:d2:75:b2:d6:af:21:17:b2:d1:d7:09:5d:d4:7a:
cb:39:c9:fe:80:3e:bc:38:54:4e:e6:91:52:c5:81:
61:49:c9:2f:53:e5:c8:e4:4c:84:7d:36:0b:1d:ba:
37:e8:33:f7:ec:0b:9e:31:1e:3c:29:8a:8d:b6:86:
76:03:21:19:13:ae:41:c2:05:1f:75:c4:c9:18:25:
27:d2:64:0c:0e:62:d9:43:61:cd:a0:84:c5:46:1a:
2e:a6:a0:16:f8:26:c1:a6:52:7b:e3:07:fc:4b:1e:
09:39:66:5f:31:a5:3a:0b:94:92:75:d8:7d:a1:69:
a0:ab:f0:4b:d2:07:73:b9:ab:f7:de:32:0f:a0:6a:
d1:ad:b5:a6:ef:6e:34:5b:98:46:b9:59:08:70:36:
8c:97:47:94:98:39:87:76:d0:24:a8:38:0d:4b:2d:
62:2b:aa:a6:b4:4a:ff:6f:92:a3:0f:ea:fb:55:58:
a4:e3:d5:46:ad:8b:75:db:f1:c9:8b:3e:35:6c:43:
3b:2c:e0:c5:a4:08:68:46:72:68:fb:b9:ac:09:27:
1a:b6:65:1f:0b:76:35:de:4e:85:52:7a:2d:72:cf:
f4:91:a4:d0:b8:a8:87:7e:05:fb:7c:cd:ac:2b:24:
f8:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:72:78:A8:C2:2C:E0:84:BD:F1:5C:32:0E:6D:AD:06:34:E2:4F:B5
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8E0EB0248A8711EEB0FA5C6E4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.195.174.0/24
Signature Algorithm: sha256WithRSAEncryption
54:b7:b1:59:c5:0a:67:07:02:a5:37:72:89:97:4f:f1:70:2f:
c1:37:7f:e2:7b:7e:50:c4:59:6d:9b:b6:60:38:2a:3d:1a:3b:
49:3b:f5:32:71:61:b2:74:1f:b0:c2:e4:df:aa:f1:fa:df:3c:
ac:ef:70:5a:4d:f6:99:22:8b:aa:e6:28:a9:ae:3b:02:1b:c2:
86:d2:78:4f:d3:7e:b5:bd:a5:9b:1c:1c:6c:48:81:78:c5:aa:
81:78:cd:50:60:dd:2b:88:8f:9b:6b:d5:94:78:c2:20:87:42:
84:43:25:a2:4d:56:11:f7:68:63:87:1e:86:a6:7d:c3:09:0a:
0d:53:20:2e:25:60:8f:36:e6:a6:1d:03:0e:37:aa:7f:c1:c6:
bc:44:e5:4a:8e:b4:54:1f:90:c4:8a:6d:3c:ca:00:03:1d:c7:
b2:63:61:fb:52:79:d7:be:96:ad:25:08:8a:95:e6:42:f3:e0:
ab:7a:50:89:6f:24:58:f4:30:f6:e2:55:89:90:1a:13:23:91:
e6:4e:71:5b:07:4f:36:ba:2b:32:fc:40:34:0a:02:d7:b5:b4:
21:7f:e0:c1:e9:e5:39:34:d9:83:3a:1f:49:a1:1d:1e:1c:9f:
0f:26:11:10:e7:c8:ae:6e:7b:7f:4e:20:8a:2c:b8:1f:be:a1:
2e:96:ee:87
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 9 12:17:17 2025 by rpki-client