Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/9E05FA963BD411F082EC39DDDAE4EC9C.roa
File: 9E05FA963BD411F082EC39DDDAE4EC9C.roa (raw, json)
Hash identifier: rr7r9ersxqJzXlCUdGPYxtIwjYPHmov6SlAiJW8OSXg=
Subject key identifier: F7:0C:18:49:52:97:67:0D:41:DB:DD:1D:9C:FD:77:4C:9D:17:80:7E
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 018382
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/9E05FA963BD411F082EC39DDDAE4EC9C.roa
Signing time: Wed 28 May 2025 15:01:22 +0000
ROA not before: Wed 28 May 2025 15:01:17 +0000
ROA not after: Wed 04 Jun 2025 15:01:17 +0000
asID: 135097
IP address blocks: 154.204.192.0/18 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 99202 (0x18382)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 28 15:01:17 2025 GMT
Not After : Jun 4 15:01:17 2025 GMT
Subject: CN=68372542-c631
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:29:ea:12:27:2a:70:84:3d:c0:a3:58:d9:e9:
e1:86:12:0a:5c:b4:47:e7:f5:2c:05:12:4c:df:51:
51:78:b0:08:d6:a9:ae:42:94:4d:f3:66:95:5f:aa:
5b:a3:13:58:7e:ff:ef:7e:45:82:0f:61:01:a7:a8:
27:7c:a6:1d:17:d3:a7:0f:3e:59:a8:2f:0c:34:48:
1f:f9:56:4b:c5:ef:89:9c:21:26:a7:34:7e:93:ae:
d5:95:ed:03:aa:94:fe:c8:35:16:ee:b2:51:61:16:
fb:ea:eb:5f:88:01:69:f5:86:ea:5b:27:ea:86:16:
14:92:b0:b4:44:09:b8:b1:a7:5b:84:29:fa:2f:68:
31:42:dd:9e:74:2f:f0:d2:7d:d6:8a:0a:01:b9:b3:
76:23:3d:9e:86:d0:60:bb:6b:ab:ed:03:5e:31:5e:
5b:c8:35:f4:67:e2:b8:e6:07:d1:7e:8e:a5:74:61:
78:24:55:bc:d4:94:4c:1d:af:6d:00:b1:6d:6d:b4:
46:41:5a:75:b2:a7:91:50:86:d4:34:21:86:fa:98:
f3:84:60:7f:36:4d:d6:62:f3:99:fc:dc:d7:34:68:
35:4a:82:cf:d0:f4:70:7c:f4:1f:f9:b6:6b:12:ee:
44:dd:1b:a0:33:4c:18:dd:ef:a2:51:4e:48:33:87:
e1:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:0C:18:49:52:97:67:0D:41:DB:DD:1D:9C:FD:77:4C:9D:17:80:7E
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/9E05FA963BD411F082EC39DDDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.204.192.0/18
Signature Algorithm: sha256WithRSAEncryption
50:6d:c1:c6:22:2a:a2:04:1b:39:0e:cb:68:51:6b:01:9a:7d:
1a:03:0d:d5:ec:cd:0d:1e:c7:dc:27:ad:99:01:d4:73:c3:1f:
f4:11:38:d6:1c:95:10:72:62:98:f2:6a:06:fe:c7:c5:8e:eb:
1d:fe:36:36:d7:66:41:da:90:47:5d:d7:4c:08:1c:8d:bd:01:
65:72:f3:e4:20:06:d0:2b:9a:5d:d0:27:dd:24:2d:58:88:0f:
04:a5:31:68:a4:8c:b8:8e:a5:28:1c:eb:1b:99:53:db:d2:03:
df:8a:49:0f:a3:1d:6f:69:5e:85:99:78:a9:1d:ef:04:3b:43:
08:19:fa:5e:bc:aa:5b:39:af:31:9a:59:58:5f:da:b5:d6:95:
6b:ef:ce:b1:03:ac:3d:e2:f2:03:fc:77:4c:f7:00:c1:87:81:
68:34:25:96:83:30:7b:c6:2b:25:4b:d2:b6:86:b7:7d:35:46:
3f:63:5b:7d:9c:2b:49:af:50:01:3a:06:6b:d8:b9:df:cb:4a:
ae:1a:26:e0:86:a7:f8:cd:42:98:b7:1c:1c:a1:58:c2:19:25:
11:5f:a0:0c:bc:e0:5b:3b:17:c5:db:0e:8b:88:33:2b:c5:fd:
89:51:cd:e8:9a:46:47:bb:84:30:03:e4:fb:e2:9e:10:db:f7:
4c:7d:77:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 6 16:54:33 2025 by rpki-client