Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A618E1EA8CDE11EE843FE9674AD9E6FC.roa
File: A618E1EA8CDE11EE843FE9674AD9E6FC.roa (raw, json)
Hash identifier: YCT9uY9mfmKJXrJd5GleJzMmgeBYf2dlilDOGlxQ+As=
Subject key identifier: 3A:82:7F:22:7E:DF:41:BC:6B:C4:75:AF:7F:D2:87:E3:20:E8:6A:CC
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 5512
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A618E1EA8CDE11EE843FE9674AD9E6FC.roa
Signing time: Mon 27 Nov 2023 04:37:19 +0000
ROA not before: Mon 27 Nov 2023 04:37:16 +0000
ROA not after: Tue 26 Dec 2023 04:37:16 +0000
asID: 62240
IP address blocks: 154.195.190.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 21778 (0x5512)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 27 04:37:16 2023 GMT
Not After : Dec 26 04:37:16 2023 GMT
Subject: CN=65641cff-5aee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:46:4e:cd:f2:39:e8:a0:34:6e:49:ba:4a:7d:
d8:8d:ab:fe:60:cb:e3:d1:8e:8b:30:a2:e4:0b:e1:
8b:5c:d8:7c:ee:73:23:6a:ca:b7:2a:d2:21:f2:5b:
b8:e1:cf:2b:e1:63:8d:7f:43:79:f7:fc:b8:8d:5c:
dc:c6:75:b0:c5:dd:d6:72:9a:46:ba:e8:a4:2e:9d:
22:a8:c7:e8:f3:76:40:3a:b3:65:fe:a2:7e:e8:6d:
00:d8:55:3c:20:c5:f1:2a:b0:42:bd:a5:aa:f1:55:
9b:a5:fd:30:28:78:00:18:35:43:f9:f9:dd:60:69:
6a:10:bc:e7:8d:73:d1:4e:ac:31:a1:80:77:05:ea:
d5:97:8e:04:67:ac:2e:10:8f:d0:fb:48:ca:8b:3d:
9e:5c:ea:b5:fe:b9:18:76:d3:17:a0:90:88:71:34:
ae:59:62:55:a0:56:cd:71:63:87:16:53:b1:d0:2a:
16:7d:28:7a:17:c8:eb:9b:62:a0:db:e4:93:88:3d:
4e:e6:01:9c:a1:f9:cf:b9:96:5f:0a:f9:f5:5d:c8:
3d:59:c4:61:25:f0:91:8d:1c:d3:59:47:47:8d:45:
78:81:41:c5:9e:19:dc:b1:53:79:9e:68:3b:0e:e8:
a8:b9:11:60:75:06:13:1b:39:d2:32:d2:df:db:20:
2d:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:82:7F:22:7E:DF:41:BC:6B:C4:75:AF:7F:D2:87:E3:20:E8:6A:CC
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A618E1EA8CDE11EE843FE9674AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.195.190.0/24
Signature Algorithm: sha256WithRSAEncryption
9b:03:03:82:5b:68:7a:53:58:36:62:75:cb:9f:15:64:ae:e9:
da:67:58:cc:e5:e2:9f:4c:97:1e:0a:0a:91:ba:30:8e:d5:e8:
c0:b7:aa:44:40:e8:75:e4:46:58:ed:5c:aa:97:61:9a:6a:22:
12:44:a4:9d:d5:8a:d1:bf:ea:a5:b8:ea:c4:e1:3e:2d:33:e4:
af:6c:3b:29:a7:c9:e7:d9:14:14:f9:33:4c:1b:d5:10:99:2e:
ec:b9:36:ca:63:c5:62:e6:ec:38:33:6c:94:ff:5f:bd:02:80:
a2:8d:21:8c:82:00:80:bc:62:d5:b4:ba:18:52:40:72:28:7e:
ed:03:09:84:b2:8d:6d:b9:e4:19:7b:0a:e4:02:36:af:38:e6:
c3:cb:c4:88:1b:30:cb:66:cd:6a:4d:af:17:e8:d5:bc:f9:0e:
ff:e3:80:ca:ad:41:d9:a8:fe:c4:0c:ba:fa:d7:7c:f0:8a:04:
6d:ca:86:4a:c5:c5:22:ad:3a:ac:c8:ac:70:c9:50:2e:c7:f8:
fc:c3:3f:94:95:5d:0c:ee:36:63:16:89:c7:06:cb:d2:44:c4:
18:b7:01:95:8c:a6:9a:a2:c8:bf:86:f1:24:f4:8a:b0:a8:a7:
18:c2:41:98:54:93:d3:59:1e:92:ce:e8:49:a8:80:53:b4:b6:
e4:63:43:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 9 13:23:08 2025 by rpki-client