Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A7573AF88CDD11EE924DCF644AD9E6FC.roa
File: A7573AF88CDD11EE924DCF644AD9E6FC.roa (raw, json)
Hash identifier: Ov2dIpTiS+EtVRSTB4tzcaSx9TxCuTQzz4Sxv8/ydMM=
Subject key identifier: E0:A9:1F:F8:BA:EA:FD:28:8B:9C:73:86:AC:89:3C:49:6C:F8:A9:36
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 54FA
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A7573AF88CDD11EE924DCF644AD9E6FC.roa
Signing time: Mon 27 Nov 2023 04:30:12 +0000
ROA not before: Mon 27 Nov 2023 04:30:09 +0000
ROA not after: Tue 26 Dec 2023 04:30:09 +0000
asID: 62240
IP address blocks: 154.196.77.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 21754 (0x54fa)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 27 04:30:09 2023 GMT
Not After : Dec 26 04:30:09 2023 GMT
Subject: CN=65641b54-5aad
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:4b:1f:69:72:88:a8:e4:a2:b3:b6:75:9c:ba:
f4:07:ce:49:a1:99:51:0c:e8:4e:06:9e:b3:60:11:
09:ad:b2:28:7a:2e:a2:17:a7:4e:e9:8a:32:bf:8b:
db:43:ab:90:3d:df:e0:79:45:6e:44:3c:ea:80:01:
22:34:a0:c8:c7:b2:54:15:4d:ff:aa:4a:b2:29:29:
d5:da:7e:4d:02:6c:21:2a:f3:46:06:4b:19:9b:e5:
1e:0f:79:be:7e:5b:66:d6:31:86:43:d0:e9:10:d5:
c5:b0:13:7d:da:41:05:b4:28:4b:b2:02:0d:d1:f8:
6c:36:b2:f0:d3:1e:59:c2:30:a5:18:a8:c5:19:aa:
a0:d3:05:c6:aa:b8:a4:a1:85:29:2f:9a:22:f2:6d:
44:70:cf:18:21:41:9d:d8:8b:22:f6:b1:8c:fb:e0:
9f:64:8e:a7:b6:1c:ec:2f:6a:7e:dd:52:31:13:05:
4c:42:a4:c9:61:25:56:3b:5e:7a:57:64:d4:e4:5d:
7e:1d:7f:62:49:31:1b:35:44:56:37:34:01:b1:83:
4a:c3:e8:c4:33:52:f1:4c:b9:1a:64:1c:18:63:7c:
cd:ae:bf:84:5a:12:e5:71:8b:51:a0:16:71:f5:04:
e3:16:6f:d7:60:62:57:91:75:2d:3e:5f:09:0a:d3:
a4:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:A9:1F:F8:BA:EA:FD:28:8B:9C:73:86:AC:89:3C:49:6C:F8:A9:36
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A7573AF88CDD11EE924DCF644AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.196.77.0/24
Signature Algorithm: sha256WithRSAEncryption
09:86:75:bf:85:3e:36:e1:c6:aa:40:22:d3:41:15:58:86:7e:
88:c5:ff:ea:14:d4:4c:b5:5c:8f:47:7f:2d:10:f6:e8:0e:7c:
b0:13:28:99:ec:40:67:62:f2:5a:ce:4c:df:56:d1:f5:7d:f1:
a3:88:df:a8:15:ac:2a:18:8a:ac:df:ea:50:94:e1:49:ac:c0:
b8:7f:d9:aa:71:f3:89:54:d4:fe:d0:81:78:e7:d1:d5:1d:75:
76:f3:28:bb:d1:9f:36:c2:13:95:89:73:f4:33:88:85:2d:bb:
37:f3:64:f7:6d:a5:ef:59:44:2c:46:f6:d7:fb:33:8a:2a:39:
89:87:94:92:e7:d7:5d:07:5f:42:54:4e:29:78:90:18:60:b8:
f4:4e:eb:b9:f1:39:44:79:4d:fa:1a:30:d7:86:0a:3f:9f:34:
b2:7c:35:0e:6a:4d:f4:de:87:75:70:a4:40:2d:a8:74:7a:69:
e8:0b:34:8d:ec:ad:da:4c:37:3a:7b:14:54:39:db:ad:56:b2:
88:e6:19:e4:7c:e3:be:3b:5d:b4:b7:7f:1c:ea:8e:b5:80:47:
70:6e:15:dc:37:48:59:b3:f5:5d:70:d8:8a:b7:86:22:f9:4c:
f0:76:96:8e:c0:e9:fa:8e:d9:37:78:0e:d5:de:0c:97:83:c8:
7e:b7:84:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 9 10:44:10 2025 by rpki-client