Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8E6D8B7C8DCE11EEB41548654AD9E6FC.roa
File: 8E6D8B7C8DCE11EEB41548654AD9E6FC.roa (raw, json)
Hash identifier: FDKhf5mngaVyVrn3ITjq1O0Ht+t6kpI0PIUHwMhHzrM=
Subject key identifier: 96:7F:75:BF:BF:36:B8:7A:19:81:19:93:F8:1D:14:41:06:82:18:89
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 55CC
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8E6D8B7C8DCE11EEB41548654AD9E6FC.roa
Signing time: Tue 28 Nov 2023 09:14:39 +0000
ROA not before: Tue 28 Nov 2023 09:14:35 +0000
ROA not after: Tue 26 Dec 2023 09:14:35 +0000
asID: 62240
IP address blocks: 154.196.83.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 21964 (0x55cc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 28 09:14:35 2023 GMT
Not After : Dec 26 09:14:35 2023 GMT
Subject: CN=6565af7f-7fc9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:09:f9:e6:93:d9:ff:17:9a:cb:58:16:b7:8b:
25:1a:b5:02:74:f0:47:1e:0a:37:8c:c6:05:75:52:
3b:ba:b5:2d:32:b2:f1:a0:19:9b:14:1d:99:00:27:
c1:14:d7:b9:ca:f7:a9:b1:0c:6c:cd:78:78:63:c9:
2f:b7:78:95:0a:68:7d:69:9f:1a:bc:81:37:cb:83:
8d:19:41:91:cc:e5:18:0f:b2:88:c1:19:c3:72:de:
ca:7a:a6:4c:17:86:6c:8f:a4:de:33:31:a1:3f:c2:
12:f6:51:01:6c:7c:8d:db:f5:96:24:f6:52:a4:f0:
d8:54:7d:b9:e2:c9:3d:e1:32:79:12:81:b9:fd:b4:
bd:a7:e2:15:8a:92:64:a1:18:41:c2:1e:a0:3a:c7:
d7:0d:e6:03:8c:b7:a5:a9:ca:45:fe:69:04:5a:0f:
8e:9c:dc:b7:84:4c:3a:8a:c5:7d:a5:2d:35:5d:cc:
bc:5e:4e:3a:cb:00:c7:08:a5:fe:f1:02:45:f6:e9:
b5:51:ad:50:17:a5:e1:0a:fa:26:0c:b7:8f:18:05:
51:1d:92:86:e1:65:30:3f:2b:f1:34:6f:ca:ef:09:
14:8c:5f:03:34:f2:f5:28:9a:7f:b4:e2:64:54:47:
81:00:18:cd:c0:dc:33:26:45:20:ab:9f:4d:d6:f4:
fd:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:7F:75:BF:BF:36:B8:7A:19:81:19:93:F8:1D:14:41:06:82:18:89
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8E6D8B7C8DCE11EEB41548654AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.196.83.0/24
Signature Algorithm: sha256WithRSAEncryption
b6:b0:c8:35:84:57:aa:66:42:87:0e:74:f2:ed:af:ab:d6:ff:
1b:95:35:3e:b1:45:19:fd:c9:26:02:ee:5b:d1:98:50:36:3d:
62:60:57:5a:4a:ef:4d:a2:dc:c1:b9:07:82:6d:05:32:28:be:
a0:0c:aa:70:47:9b:03:65:1c:fc:10:a4:8d:66:cd:26:44:41:
30:2c:bd:de:40:4c:aa:aa:ec:94:43:bc:d3:60:ad:58:b2:dd:
3f:7d:d5:6f:ef:80:0b:c9:4d:c8:6e:ac:0c:4a:8d:ee:18:5b:
d1:42:99:56:5b:ea:37:50:7b:b3:e8:a8:2f:29:e2:f5:6e:fa:
06:fb:38:4e:2e:8a:f5:83:51:db:2c:29:d1:30:ee:c6:24:98:
f0:f0:7a:ea:4c:29:7a:b7:22:56:4d:fb:89:e7:dc:8b:53:81:
7a:00:f6:85:4a:0d:0d:c8:19:d7:e8:60:c2:ce:12:b0:47:99:
fd:7a:2a:66:e0:e0:64:55:ed:2a:df:62:8e:78:cc:5d:9f:cc:
2c:e0:18:0a:3c:53:28:93:5d:bd:53:62:ce:69:af:d7:2a:2b:
e9:d9:d3:4e:aa:8a:e3:23:58:15:37:23:4d:97:e2:e2:f9:04:
5b:ad:c0:db:8f:ff:ff:c0:64:14:15:ae:d9:48:80:d7:75:ec:
5f:cc:19:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 9 17:20:43 2025 by rpki-client