Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/9B344E28F4FB11EFA02E5D5F762E951A.roa
File: 9B344E28F4FB11EFA02E5D5F762E951A.roa (raw, json)
Hash identifier: sWP3s6Td1U2WIZp7T8yh0TEa5i1WMpRuTOHwxnvkpIo=
Subject key identifier: 21:39:DB:BC:C3:20:AB:28:4E:73:06:49:EA:73:E1:1E:DC:95:3B:E6
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 016808
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/9B344E28F4FB11EFA02E5D5F762E951A.roa
Signing time: Thu 27 Feb 2025 11:11:35 +0000
ROA not before: Thu 27 Feb 2025 11:11:28 +0000
ROA not after: Wed 26 Mar 2025 11:11:28 +0000
asID: 62240
IP address blocks: 154.196.44.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 92168 (0x16808)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Feb 27 11:11:28 2025 GMT
Not After : Mar 26 11:11:28 2025 GMT
Subject: CN=67c04867-fe1e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:18:49:4e:1b:0c:d3:0a:f3:66:5b:c8:cb:42:
c8:0d:bf:15:be:84:d5:3f:50:2e:31:4b:81:38:d7:
c4:c7:8d:6e:08:c1:93:c2:25:a1:6c:eb:15:a4:32:
8d:04:0a:39:b6:35:77:b7:39:88:50:05:3c:c1:dc:
59:f0:0c:50:c0:2f:fd:bd:b7:14:b9:aa:78:71:5f:
75:c8:bf:00:8d:95:c7:5e:47:d7:1a:1b:e8:d5:e9:
96:86:7d:42:fb:46:08:c9:29:6e:a4:65:bb:1d:06:
f7:79:da:40:65:36:92:16:ee:a3:2a:48:fc:94:21:
60:32:fe:f1:3d:71:df:c8:ca:11:0f:6c:58:27:01:
10:3a:a2:cf:4e:e2:cb:bb:38:4b:84:ab:3d:dd:b7:
9a:f7:89:ba:7e:f4:85:d6:2e:85:5e:15:77:59:22:
7c:e9:00:40:df:bb:86:c4:73:fa:19:7c:4d:3b:6c:
9c:86:29:df:a5:8c:2d:90:55:7d:b0:c4:08:49:b4:
89:c2:99:66:89:6a:19:ab:0b:33:c5:14:05:c6:58:
94:0c:59:e6:a4:cd:fb:54:6f:1c:cd:ac:53:da:57:
cc:9b:d1:a6:e3:ed:99:d3:62:4b:6e:e9:4c:e1:ec:
97:b3:4f:72:55:4d:72:7a:af:87:1c:b9:30:f7:35:
64:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:39:DB:BC:C3:20:AB:28:4E:73:06:49:EA:73:E1:1E:DC:95:3B:E6
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/9B344E28F4FB11EFA02E5D5F762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.196.44.0/24
Signature Algorithm: sha256WithRSAEncryption
0a:3a:9b:37:a8:a2:9a:3a:76:60:df:a4:67:46:85:2d:d7:7f:
87:a8:33:75:57:15:64:67:ff:fa:33:90:f9:a5:6e:73:a0:9f:
fd:08:63:bd:d9:df:49:af:37:ed:ce:49:08:e5:d1:ce:41:0a:
49:e3:27:58:6d:84:2a:61:a3:9c:7b:5b:a3:43:e8:a2:bc:9e:
86:86:84:64:bb:bd:4d:1c:ad:a3:33:c6:78:a9:2c:0b:f9:f9:
81:6c:49:0f:fe:c6:67:a2:12:46:6c:f6:84:90:8b:eb:57:a8:
80:2e:c1:0c:61:38:48:fd:da:57:c4:82:18:ee:9d:e6:19:30:
0a:ad:43:35:85:e7:16:fb:35:e3:0e:8e:e8:d9:3c:2b:eb:e0:
2a:a0:06:57:4b:f8:c0:8c:86:e5:bb:f0:de:0a:7b:ed:f2:3a:
a9:4c:02:3d:39:51:5a:dd:dc:0d:0c:9a:65:35:c4:e6:1a:86:
fd:a2:29:06:53:50:9b:34:14:db:d8:6d:db:94:8c:88:77:88:
81:45:4b:f3:cb:0f:4d:5a:da:f2:b0:6b:a9:30:ef:56:81:bb:
72:0a:83:a8:8f:7b:8a:09:da:c8:30:c7:8b:63:e3:f6:4c:ac:
d4:30:45:1c:81:14:4e:53:67:42:1c:80:ca:15:a2:ae:58:31:
ef:c1:cb:af
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 9 07:17:01 2025 by rpki-client