Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/9ED0E0B88A9511EE8559071E4AD9E6FC.roa
File: 9ED0E0B88A9511EE8559071E4AD9E6FC.roa (raw, json)
Hash identifier: lCnKrBPjDR95NtRX+kJAdfgJh/FLQzUGJFBDZaHZCIQ=
Subject key identifier: 5E:84:1F:C0:B1:79:13:42:49:3F:9B:B9:99:07:83:87:A2:2A:2B:37
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 53F4
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/9ED0E0B88A9511EE8559071E4AD9E6FC.roa
Signing time: Fri 24 Nov 2023 06:49:31 +0000
ROA not before: Fri 24 Nov 2023 06:49:28 +0000
ROA not after: Tue 26 Dec 2023 06:49:28 +0000
asID: 62240
IP address blocks: 154.196.27.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 21492 (0x53f4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 24 06:49:28 2023 GMT
Not After : Dec 26 06:49:28 2023 GMT
Subject: CN=6560477b-655e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:0b:da:60:a6:a3:f4:fb:2d:3c:9b:58:8c:9e:
14:3d:62:fd:e2:10:4b:0f:1d:67:3e:bd:88:59:3c:
f7:92:c0:84:6d:6f:11:37:7d:50:5c:ed:9c:67:06:
76:02:f3:56:4d:5f:a8:a4:c1:7a:b6:40:ea:9b:2f:
b3:b0:cd:21:3f:dd:97:2f:76:1a:13:36:f7:8e:f6:
c9:24:1f:04:d2:d7:72:10:6e:31:2d:21:7f:07:bd:
27:74:23:0d:4a:fc:b9:d3:52:e6:a3:da:7e:b5:e7:
ce:12:b3:2a:b2:95:c3:b5:dd:c5:be:94:c4:e9:ed:
52:79:20:c9:d7:ab:94:2d:b3:e2:e3:1a:8f:22:07:
ee:d4:4c:6e:bb:35:f7:47:b5:a7:a3:7f:cb:66:9d:
b5:65:a3:22:e4:49:ae:b5:76:da:06:60:ba:be:fa:
dd:ef:2c:0b:f0:6b:ce:fe:cf:35:53:a4:07:bf:a5:
66:e0:13:b5:f4:a2:8f:1b:a0:d2:e2:4b:51:9d:b8:
25:38:3b:eb:4b:d4:4e:ad:91:b2:03:6e:80:87:29:
ab:2c:27:08:d0:70:45:4d:44:85:93:a7:f4:86:d6:
68:32:1c:12:af:f7:87:be:01:e7:ef:a9:ea:4b:3f:
e1:67:fd:59:b9:e1:94:15:0d:b9:88:c8:fb:a2:b5:
d7:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:84:1F:C0:B1:79:13:42:49:3F:9B:B9:99:07:83:87:A2:2A:2B:37
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/9ED0E0B88A9511EE8559071E4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.196.27.0/24
Signature Algorithm: sha256WithRSAEncryption
33:ee:a5:35:7c:71:85:29:2d:bc:83:23:d6:46:dd:87:4d:61:
e8:32:c7:a7:93:92:d8:55:5b:01:a4:8d:42:5d:dd:f8:56:9d:
4a:f0:ca:1b:92:3b:ce:7b:c9:18:b8:e8:4c:d9:ab:30:46:d1:
8c:cf:01:3d:1d:a5:33:92:1b:cc:5c:22:d0:71:c9:bd:85:2e:
45:f0:bb:8f:08:d0:ad:bc:ce:e5:07:2c:10:97:83:82:c4:b5:
19:0c:61:0b:9d:32:df:67:ba:28:d5:94:4c:3c:06:ca:fd:4f:
39:26:e7:a1:4e:38:da:74:e9:5a:ae:ca:88:79:35:45:51:e7:
34:83:8e:10:f3:27:b4:e7:b4:54:cc:7c:6f:2b:bd:b1:10:e4:
8d:90:08:c9:4c:f2:48:13:9e:10:d6:0d:58:39:bc:11:49:66:
0e:8a:6f:7b:ca:05:83:bb:d1:06:d4:4c:8c:b5:8d:2f:1e:7c:
64:c1:a4:8f:58:11:28:a5:03:4a:03:72:93:92:45:50:c0:52:
67:3c:65:6e:9c:1f:73:03:98:90:5d:db:71:c8:7b:ae:ac:82:
7a:ea:e9:5a:99:65:d2:58:69:72:7c:76:ca:67:ca:fe:82:de:
03:20:54:92:5a:44:88:8a:ae:2e:d2:e4:3a:c4:bb:38:53:62:
e8:b4:24:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 9 12:13:58 2025 by rpki-client