Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A2017506F52711EFB09E4589762E951A.roa
File: A2017506F52711EFB09E4589762E951A.roa (raw, json)
Hash identifier: +p6CA34O6V9SqJg8slquTBcseU+Ni45nRWXQw6ONLU4=
Subject key identifier: 5E:20:A9:ED:68:8C:2D:5A:AC:8B:21:70:31:D1:7D:7A:69:2A:58:39
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 016956
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A2017506F52711EFB09E4589762E951A.roa
Signing time: Thu 27 Feb 2025 16:26:44 +0000
ROA not before: Thu 27 Feb 2025 16:26:41 +0000
ROA not after: Fri 28 Mar 2025 16:26:41 +0000
asID: 395793
IP address blocks: 154.193.108.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 92502 (0x16956)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Feb 27 16:26:41 2025 GMT
Not After : Mar 28 16:26:41 2025 GMT
Subject: CN=67c09244-2755
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:05:d8:d0:62:16:49:fe:5f:88:05:d9:c7:35:
ab:7a:de:ac:03:a0:84:8c:ac:8e:fc:be:29:23:1c:
1b:38:e4:a1:2d:79:50:a3:8d:27:ee:0b:be:09:e1:
99:4a:0d:06:ac:64:62:66:89:c9:83:24:9f:a7:1d:
5d:f4:07:2a:c6:d5:55:97:ec:a5:61:72:98:aa:a0:
37:82:55:0e:20:c3:38:00:81:ad:01:cb:a7:2f:8e:
52:39:ad:36:ae:74:af:b0:2f:5c:f0:1e:08:31:8a:
c2:d7:64:a8:e6:7b:ff:d1:99:59:aa:05:f0:4a:50:
e6:82:c7:47:4d:ee:46:4c:26:da:d8:c1:67:ec:b7:
ae:02:f8:80:d0:b2:70:59:58:70:3e:69:b7:d8:ac:
ef:7a:00:4b:b4:fd:ee:f8:d8:ac:3e:e6:c9:5e:bf:
48:27:ad:f4:85:dc:4f:77:32:91:b8:82:8d:92:78:
7b:41:50:f0:be:bd:2e:fe:f5:5d:76:9f:ed:13:bb:
2f:04:36:bd:10:1c:26:0f:26:92:41:b3:0c:d8:ec:
a3:9b:2f:96:b8:6f:66:b6:6d:68:86:fa:94:a2:17:
7d:02:f1:74:a9:ba:b8:57:1a:b2:7f:42:d6:b1:7b:
21:bb:8e:cd:b1:5c:73:7e:4d:3e:c2:93:9c:1e:c1:
79:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:20:A9:ED:68:8C:2D:5A:AC:8B:21:70:31:D1:7D:7A:69:2A:58:39
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A2017506F52711EFB09E4589762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.193.108.0/24
Signature Algorithm: sha256WithRSAEncryption
51:27:bb:cf:d2:58:94:2e:f9:ba:37:88:4b:b4:ee:29:0c:33:
29:6a:54:d0:7f:5f:1e:67:02:e9:30:35:11:d6:08:1e:9f:fe:
5d:16:ed:13:48:40:0e:1a:a9:bd:b4:d8:2e:d8:f4:bf:04:9c:
c9:43:25:54:f5:2d:40:45:40:63:33:b1:c1:37:d9:33:60:75:
9d:0b:e3:83:c2:e7:e2:f8:48:17:a4:9a:fa:92:46:7c:4a:e2:
72:df:20:c9:64:eb:b9:d7:a1:da:5a:f6:b2:ea:33:06:59:f0:
20:1a:42:fa:1d:c8:5b:e9:28:f2:50:0b:02:fa:4e:ee:cb:8c:
0e:1d:9d:f4:84:ab:71:b4:d7:24:dc:d1:1f:4a:0d:19:90:7a:
7b:ff:7a:1a:52:08:54:8f:07:1c:fe:d1:7b:50:d7:ed:41:21:
50:e3:39:ac:e5:79:44:06:dc:cb:4c:97:b1:6b:75:00:25:e1:
be:8b:b0:9b:42:1a:7f:83:ac:5d:05:92:5e:16:35:7f:52:b1:
e5:49:9b:d9:ac:76:fb:bf:5f:ac:67:2f:de:d1:27:61:dd:72:
b7:0a:21:d5:a0:f5:8f:f3:29:6a:9d:05:ef:d5:26:bb:f9:98:
e7:db:5f:e9:f1:33:1a:ae:9e:ad:01:d1:50:c1:5b:5c:25:0e:
a1:d0:8e:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 9 06:59:01 2025 by rpki-client