Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/941BBA34F4DF11EF9FF0639D762E951A.roa
File: 941BBA34F4DF11EF9FF0639D762E951A.roa (raw, json)
Hash identifier: QQQqGIdZXI0adTDBhhQJ/SIghO1jF9VL1AdXOVSC6/Q=
Subject key identifier: F8:37:48:75:AD:42:8D:CC:3B:EB:19:1A:40:A5:BA:19:EA:9E:BC:F1
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0166BF
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/941BBA34F4DF11EF9FF0639D762E951A.roa
Signing time: Thu 27 Feb 2025 07:50:57 +0000
ROA not before: Thu 27 Feb 2025 07:50:54 +0000
ROA not after: Wed 26 Mar 2025 07:50:54 +0000
asID: 62240
IP address blocks: 154.195.171.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 91839 (0x166bf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Feb 27 07:50:54 2025 GMT
Not After : Mar 26 07:50:54 2025 GMT
Subject: CN=67c01961-a78d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:d5:00:82:7f:d2:25:67:bd:b3:9e:8c:5d:94:
92:78:78:47:b0:e4:e4:b6:d5:64:bd:da:b9:39:43:
15:36:60:4a:da:e6:ad:10:83:cc:2a:c9:c4:09:34:
63:bf:45:c8:73:bf:20:36:a7:aa:d6:ee:9e:42:91:
7d:88:e9:e3:ca:cd:02:9f:45:ee:5c:54:44:12:73:
d7:90:7f:43:97:f2:89:5a:4d:a7:02:8b:ea:8b:77:
1b:04:75:7b:69:18:f7:2e:61:f9:21:fe:71:8d:85:
82:37:87:bb:e2:bd:90:ca:4c:b3:89:c5:bc:8d:e2:
fd:85:7e:84:d0:8c:e0:fa:aa:3e:70:9a:90:20:ef:
51:d6:b9:bf:72:8f:a5:5f:47:c3:a7:c9:da:9f:84:
8f:da:3d:0e:d0:c5:4a:a4:e1:e2:20:b1:5e:e7:59:
9b:91:68:94:26:31:78:b0:aa:bb:f3:0d:75:0f:02:
79:f5:ea:3c:d8:7d:17:8e:2e:01:94:22:29:0d:06:
5d:2f:4c:41:6c:59:47:c1:90:bd:d2:80:f9:a4:33:
96:a1:6d:ac:fa:a0:b0:0a:aa:bb:6d:03:2d:74:0c:
0f:a1:cd:f7:a0:7d:b7:fe:cf:c2:71:48:4b:42:89:
3b:25:a1:24:d9:2f:33:86:5e:a4:05:1f:a8:7b:84:
8e:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:37:48:75:AD:42:8D:CC:3B:EB:19:1A:40:A5:BA:19:EA:9E:BC:F1
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/941BBA34F4DF11EF9FF0639D762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.195.171.0/24
Signature Algorithm: sha256WithRSAEncryption
65:98:e2:94:c8:b7:a1:d0:04:21:55:e6:d1:5f:d3:2e:f8:e9:
df:7c:d0:61:99:28:55:79:6e:27:09:02:9e:9d:2b:0c:1b:42:
91:b2:cb:8d:e8:c6:b7:10:63:59:89:b5:82:e2:9a:21:29:e6:
78:07:7d:b0:88:08:25:a6:b0:0e:a4:3c:77:c9:b1:b1:8d:fd:
ec:b4:10:e5:33:3d:36:0c:14:82:37:82:a9:0a:8d:82:eb:17:
64:3a:70:4a:63:e2:20:76:43:b6:36:f8:13:fd:c3:43:3c:b9:
14:d4:12:a6:ab:20:c1:a5:e8:61:7a:d5:6c:83:24:43:95:05:
ad:2e:d1:65:bc:04:f9:bb:8f:cf:fc:0d:95:52:d1:67:99:cf:
4a:1b:ec:9d:09:78:81:e4:fc:69:c2:85:5e:76:d8:e0:1d:a7:
b0:e9:68:e4:8c:47:08:1c:35:36:4b:a3:1b:1d:68:07:12:4e:
72:ff:4c:d7:e7:97:a0:e4:d7:0e:7e:93:b5:d5:df:79:f3:bf:
f1:14:f1:2c:87:bd:8f:f4:78:73:7d:64:46:9f:f9:36:6b:6f:
81:55:9b:d8:ed:bc:70:2a:18:6f:0f:ec:2b:f2:02:07:6a:c6:
3e:c3:4c:c6:2c:ef:19:85:7b:c8:41:a5:77:ad:bf:66:30:78:
5d:01:f5:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 9 06:48:11 2025 by rpki-client