Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A90262AE8A9611EE99DB26214AD9E6FC.roa
File: A90262AE8A9611EE99DB26214AD9E6FC.roa (raw, json)
Hash identifier: kVtLF+e5zwBtDyq9CMS/0sGKtQO8IAT54MNxdaUa7jE=
Subject key identifier: 16:83:7D:BC:F0:F8:E3:C7:AB:26:12:FE:9D:90:5B:0E:74:69:E2:10
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 540C
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A90262AE8A9611EE99DB26214AD9E6FC.roa
Signing time: Fri 24 Nov 2023 06:56:58 +0000
ROA not before: Fri 24 Nov 2023 06:56:55 +0000
ROA not after: Tue 26 Dec 2023 06:56:55 +0000
asID: 62240
IP address blocks: 154.195.140.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 21516 (0x540c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 24 06:56:55 2023 GMT
Not After : Dec 26 06:56:55 2023 GMT
Subject: CN=6560493a-b847
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:6e:02:ab:d0:73:44:9f:8e:2e:96:d9:4a:a4:
14:64:34:10:5c:f2:61:8f:88:c3:6c:7b:57:70:eb:
d3:1e:d0:65:55:ea:7e:f8:dc:02:fa:64:00:98:9d:
12:d7:b1:00:f4:07:b6:4d:a7:f5:53:3b:45:6e:a9:
9b:ea:bb:58:76:9a:3e:07:63:3d:f2:ec:e9:6b:f9:
b3:8a:e7:10:ee:1a:55:31:20:b3:bf:25:62:7b:7a:
8a:e4:4b:e0:a9:b7:57:44:02:23:e7:9c:b8:d1:94:
5b:ec:2b:22:24:2d:04:b0:59:e5:5c:34:65:de:71:
c5:3a:6b:22:1b:48:f4:2f:c3:71:2b:1c:d8:c4:9b:
bc:2b:f1:aa:f3:1d:2d:0d:77:ce:fc:d6:5b:93:19:
37:70:8e:0e:05:3e:ec:7b:f1:8e:88:c4:90:1c:ad:
12:e0:29:1d:2b:ac:d5:a1:1f:7c:d0:4e:63:71:c5:
46:80:ab:d9:71:23:cd:b0:66:17:bf:1b:97:f7:af:
8c:f8:f7:94:93:29:57:d4:37:d2:00:f1:43:d0:52:
24:e3:90:77:5f:3e:28:8b:59:ac:a9:60:4a:b7:1e:
8d:2e:86:1b:61:40:3e:3f:03:b9:66:51:2e:3f:0b:
d0:5a:65:b1:5b:80:08:df:9f:0a:0c:6f:7b:ad:bb:
ac:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:83:7D:BC:F0:F8:E3:C7:AB:26:12:FE:9D:90:5B:0E:74:69:E2:10
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A90262AE8A9611EE99DB26214AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.195.140.0/24
Signature Algorithm: sha256WithRSAEncryption
b5:14:9e:86:8f:eb:af:58:81:b1:63:44:6f:ca:d7:90:36:6d:
f0:31:ea:aa:95:39:e4:e5:67:70:2d:1b:d2:3f:a6:b1:e8:04:
b6:3d:22:d2:8a:91:8b:f5:a1:82:4e:44:78:22:b3:73:77:5c:
29:ae:af:d0:0d:2c:2a:b6:b3:ac:f9:c9:54:f2:59:44:18:bf:
dd:a0:ff:15:ca:f5:df:96:dd:5c:c1:26:c9:05:84:f2:f5:7c:
c8:25:e5:a3:9d:9f:99:1c:2f:55:00:29:d5:1f:68:4b:49:db:
b3:64:ad:f6:95:44:d2:16:69:f9:bc:f2:d2:8d:3d:08:29:eb:
cb:d7:fe:f4:b2:4a:d5:23:27:2d:d5:a4:64:db:39:6c:84:c9:
08:ca:81:aa:57:1d:a9:95:fa:41:2e:b5:86:89:cb:6a:14:7c:
1e:86:b4:d8:fd:86:3b:59:7c:1e:5f:8b:8f:40:39:de:9c:c5:
fa:1d:db:c1:78:45:32:5e:2b:80:a9:4a:64:51:9f:84:9a:47:
f5:e8:cf:ac:fb:2c:fa:6b:51:32:03:98:9e:4d:fc:ab:fd:36:
8f:31:4d:93:60:08:82:f8:20:cc:ad:27:e0:4e:41:9d:81:82:
b6:14:64:18:3a:af:17:e1:80:6b:23:d3:29:7b:b6:86:f6:37:
cf:0a:34:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 9 11:15:05 2025 by rpki-client