Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/9654D0908A9D11EEABBA87374AD9E6FC.roa
File: 9654D0908A9D11EEABBA87374AD9E6FC.roa (raw, json)
Hash identifier: amH1xljzto2Ry3NAVpXbSMtyisOqaANOD6dy7sbJRgs=
Subject key identifier: 90:29:E0:A0:F1:C3:4D:E4:53:F6:81:15:57:CE:A0:0E:1D:D2:33:02
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 5493
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/9654D0908A9D11EEABBA87374AD9E6FC.roa
Signing time: Fri 24 Nov 2023 07:46:33 +0000
ROA not before: Fri 24 Nov 2023 07:46:30 +0000
ROA not after: Tue 26 Dec 2023 07:46:30 +0000
asID: 62240
IP address blocks: 154.195.119.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 21651 (0x5493)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 24 07:46:30 2023 GMT
Not After : Dec 26 07:46:30 2023 GMT
Subject: CN=656054d9-5c2d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:8b:31:c9:b8:6d:02:6d:ac:32:25:5f:b3:08:
9b:95:dd:96:60:36:7b:7e:b8:cb:d4:4a:af:57:10:
36:b2:39:49:95:68:11:be:c7:64:6a:93:02:3c:be:
ca:17:8f:05:df:e3:f0:e8:d2:9f:45:2b:6b:0e:66:
ea:f2:45:8d:d9:60:d4:4c:91:ad:ba:29:20:f0:ef:
f3:81:8f:b9:30:ad:3d:6a:7c:69:9f:85:f1:5f:79:
5a:5f:b0:6b:a1:9b:db:b6:a7:5b:f6:41:9e:1e:01:
a7:94:02:b2:c3:3a:3a:55:40:33:e2:02:2c:f0:fc:
7e:4f:ac:4f:9d:a4:5e:2e:87:57:2f:8d:29:23:ff:
a6:1a:3c:ad:1d:5a:e7:0b:b1:1e:41:0d:7f:5d:80:
38:39:21:0a:40:69:ae:b3:35:58:a9:59:50:59:1a:
89:ac:f7:d7:0a:c0:d7:e8:97:db:c5:26:cc:6d:4f:
f0:40:36:42:0e:6f:d5:b2:99:27:1c:97:29:bd:68:
0b:ee:94:a5:3f:51:1d:42:a3:ea:70:92:26:ca:06:
ce:3c:9c:37:13:a5:e6:97:18:ca:c7:e3:f2:65:e2:
dc:06:05:94:af:4e:92:42:8a:b9:e0:bd:00:46:a1:
53:51:ee:61:f0:07:4b:03:11:14:18:03:ac:5d:6e:
64:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:29:E0:A0:F1:C3:4D:E4:53:F6:81:15:57:CE:A0:0E:1D:D2:33:02
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/9654D0908A9D11EEABBA87374AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.195.119.0/24
Signature Algorithm: sha256WithRSAEncryption
93:ca:b9:2a:90:8f:a8:08:4e:13:3b:8a:8e:aa:13:e0:08:7c:
89:b6:c9:25:8f:94:4e:dc:41:c6:72:3b:cd:fe:a1:65:e6:d8:
71:4f:0f:a7:88:f7:f3:1a:0b:d5:48:fd:39:94:52:5b:74:00:
11:58:24:60:6e:77:72:3d:d2:4b:08:d7:74:13:a3:f7:bc:f3:
d3:36:f6:c7:37:72:f9:c0:72:3a:58:7c:bf:4e:3e:d2:fe:72:
dc:d3:fe:d7:2a:cf:19:f1:23:3c:4f:35:31:16:02:c7:21:ba:
45:0a:2c:f9:12:e0:1b:0d:43:55:e1:65:e3:35:d2:32:96:12:
29:87:a5:ff:74:c8:b4:12:d9:86:57:63:12:7f:e0:b4:60:2d:
3b:e0:21:fa:e9:38:cc:2b:9a:29:2d:10:58:1c:7b:8e:38:33:
d8:9a:a6:26:e8:18:f1:ce:5d:4a:cb:8b:f3:ac:7f:69:6d:4e:
e4:61:63:aa:10:b2:68:20:5f:3f:54:12:c6:35:b7:0d:c3:55:
e9:ef:5d:a6:8f:93:c8:4a:f4:9e:12:b0:21:31:6e:12:83:b3:
7c:0e:d8:01:3c:33:da:25:3a:ad:f5:5b:5c:ee:30:d2:eb:ce:
e4:b3:ac:06:78:a7:55:97:1a:57:11:73:cb:6c:bf:b4:61:c3:
a4:ca:71:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 9 11:45:19 2025 by rpki-client