Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/9574440403DB11F0A09A85BB762E951A.roa
File: 9574440403DB11F0A09A85BB762E951A.roa (raw, json)
Hash identifier: 7llg/qPUt6idGcfxc4jLiEJ214/2vJLYbdToRitMwGY=
Subject key identifier: E5:BA:36:3F:23:CB:CB:FA:DB:24:AA:F5:FC:A3:3F:EE:9E:51:13:E9
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 017482
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/9574440403DB11F0A09A85BB762E951A.roa
Signing time: Tue 18 Mar 2025 09:30:09 +0000
ROA not before: Tue 18 Mar 2025 09:30:05 +0000
ROA not after: Fri 28 Mar 2025 09:30:05 +0000
asID: 139880
IP address blocks: 154.194.128.0/18 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 95362 (0x17482)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 18 09:30:05 2025 GMT
Not After : Mar 28 09:30:05 2025 GMT
Subject: CN=67d93d21-969c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:bc:86:01:8c:6d:dd:19:24:3e:11:7d:e0:8b:
97:38:f2:9c:5c:15:9a:1b:04:b4:cc:5b:77:39:b3:
95:ed:0f:37:54:64:67:26:6d:81:e2:59:d2:d3:3c:
1b:7f:e4:eb:8a:82:83:09:2c:b2:f6:0e:55:7b:bf:
98:fc:92:ec:89:f4:92:af:a4:c4:05:a5:3b:63:91:
d1:87:03:39:69:0a:52:fa:92:0e:b0:49:99:16:7b:
b3:d6:bd:d7:84:5e:bd:1b:93:0b:77:18:2c:43:fc:
cd:36:9d:9e:34:93:8d:1b:d5:d3:17:2c:ef:60:1d:
39:52:44:59:c7:c1:a9:53:9b:f6:c5:6c:de:22:29:
28:d6:1e:22:7f:b5:59:25:63:0d:22:72:46:68:79:
52:c7:c6:ec:d8:65:3e:6d:61:23:b8:ac:fc:82:a7:
47:1f:a3:72:50:29:65:df:ff:e6:dc:a0:7e:19:7f:
28:6f:2f:34:88:30:28:28:c5:16:24:97:ad:64:98:
86:b2:83:4a:3a:3b:e5:e6:08:df:15:7d:3f:06:5d:
2d:69:c4:3e:89:81:a2:80:c4:32:2b:7a:ff:7c:7f:
a5:cc:c0:4b:38:13:ec:44:90:e3:3c:42:40:69:7a:
6b:62:3c:70:70:3e:73:b2:a6:ee:70:55:89:47:92:
6e:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:BA:36:3F:23:CB:CB:FA:DB:24:AA:F5:FC:A3:3F:EE:9E:51:13:E9
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/9574440403DB11F0A09A85BB762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.194.128.0/18
Signature Algorithm: sha256WithRSAEncryption
46:7e:24:97:f0:66:b1:cd:cf:e7:ef:b3:0b:cc:65:48:19:64:
82:9c:9b:76:d4:11:5b:66:fc:fa:b7:dd:cc:64:2f:f4:3e:ad:
fb:f5:20:ca:0f:4a:28:09:6b:d7:52:13:ad:42:86:12:e8:d7:
8f:a7:e1:9e:be:86:3e:3b:17:0f:e7:fb:15:e0:69:44:ff:8c:
c5:95:1e:6b:91:6e:5e:22:2c:bc:2b:a1:01:94:a4:ff:d4:97:
9c:32:88:7c:e1:91:f8:59:d2:62:da:b3:78:ad:c3:46:69:43:
06:fb:69:21:b3:aa:d1:66:25:8c:7e:5c:00:a9:ba:dd:fa:6d:
45:2c:ab:cd:71:6e:bb:21:67:a9:9d:58:fd:58:c2:eb:b3:b4:
a9:a5:d3:76:53:2e:d5:b7:57:01:73:76:d9:a1:95:66:91:68:
80:10:64:a1:a0:5c:34:f5:ff:4f:80:10:17:8f:e9:38:67:95:
c3:12:b7:ad:de:fd:52:47:1e:cf:24:85:00:02:47:9f:98:53:
d7:a1:63:d2:b9:01:65:5a:65:c9:48:20:be:0e:27:72:1e:b2:
2f:36:84:4b:f7:60:c2:cf:e1:16:c2:c8:75:73:f8:7f:c0:e8:
10:8a:85:46:fc:37:34:9f:34:49:c1:70:3e:c4:70:7f:45:b8:
80:aa:82:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 9 11:51:22 2025 by rpki-client