Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/AB66181E8CDB11EE9FAC4C5E4AD9E6FC.roa
File: AB66181E8CDB11EE9FAC4C5E4AD9E6FC.roa (raw, json)
Hash identifier: 21V4WWw1Hbc3egaduh7klQ3BRFuYOR3u04SQMTk+5jk=
Subject key identifier: 4A:40:DD:52:37:D9:B6:B5:47:BF:BC:4B:64:ED:E2:32:C7:01:BD:C6
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 54C8
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/AB66181E8CDB11EE9FAC4C5E4AD9E6FC.roa
Signing time: Mon 27 Nov 2023 04:16:00 +0000
ROA not before: Mon 27 Nov 2023 04:15:57 +0000
ROA not after: Tue 26 Dec 2023 04:15:57 +0000
asID: 62240
IP address blocks: 154.196.50.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 21704 (0x54c8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 27 04:15:57 2023 GMT
Not After : Dec 26 04:15:57 2023 GMT
Subject: CN=65641800-0be1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:d9:46:88:e2:29:78:45:3e:ed:ab:e8:49:fe:
57:e1:eb:6f:b7:4a:9b:9a:32:bb:6a:4f:77:ba:53:
9c:09:a9:a8:7f:7b:84:00:9d:7d:7b:31:cd:65:d4:
d7:39:21:11:84:01:96:fd:48:17:dd:bc:b5:1e:cd:
81:d8:89:24:1f:e7:95:b1:06:a3:70:36:b5:b4:03:
0e:7a:a8:f4:5c:4d:d0:fd:9f:ab:37:c5:59:04:6b:
d0:d6:93:65:ab:02:50:4c:18:87:ee:ff:42:7e:e1:
07:23:8f:1f:dc:df:74:da:ae:5b:03:0f:4d:6e:54:
ed:16:bd:03:c9:48:1a:68:3e:2a:67:ff:6b:8b:d0:
b4:ec:13:89:b1:13:2e:be:12:40:7d:df:84:0d:ce:
73:ef:6d:06:5d:ea:37:82:b0:6a:36:46:f6:10:8d:
7a:a5:37:a2:ae:de:39:2e:4a:38:1c:86:b1:cf:fe:
97:a0:c6:57:8c:89:05:f1:69:19:44:0d:f5:95:cb:
71:6c:77:c9:10:a7:d8:e7:2a:3b:31:7e:94:f8:f0:
00:1b:ee:e8:6e:32:1d:b7:2b:43:36:2d:dc:96:95:
60:cd:04:98:30:88:f3:c0:43:6f:1a:36:3b:80:84:
da:00:02:d1:dd:e5:0c:d2:74:6c:fe:a4:31:09:f0:
52:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:40:DD:52:37:D9:B6:B5:47:BF:BC:4B:64:ED:E2:32:C7:01:BD:C6
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/AB66181E8CDB11EE9FAC4C5E4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.196.50.0/24
Signature Algorithm: sha256WithRSAEncryption
3f:42:5d:39:fa:ac:9d:7d:e6:66:eb:92:60:90:91:12:23:f8:
85:00:19:e3:f1:52:a0:83:c1:e5:03:ee:d3:d7:e1:d7:2c:8d:
7b:f5:14:96:4c:c7:3a:71:2d:8a:f0:48:d5:b2:10:5b:81:55:
42:60:13:f6:14:3a:12:48:1c:94:2a:b2:15:c4:34:47:6a:63:
e3:c3:53:b2:59:77:0c:3f:2d:10:ce:94:81:12:18:95:a6:9a:
81:8c:67:63:02:08:e5:81:82:8b:da:5d:fc:65:cf:2c:22:4d:
33:fc:96:8d:ce:58:11:76:73:17:cb:f1:a1:83:55:0f:f0:5f:
f5:98:75:59:72:61:4b:a8:ab:cd:40:fe:73:d7:9d:0c:f3:62:
29:58:51:03:5c:bc:5b:62:bc:13:0e:6c:4f:09:06:10:52:7a:
33:cd:db:90:0e:0c:7a:55:4b:31:8e:30:56:bd:af:84:27:9d:
85:ac:a5:b0:49:54:0c:b1:3f:72:fe:d3:ff:b5:33:ba:b2:15:
1d:27:f3:37:9f:7e:34:22:4c:93:fd:ca:7f:67:5e:4b:b7:2a:
df:35:08:60:3b:89:b5:7d:84:53:e7:5a:37:07:7a:93:8d:24:
84:77:51:7e:4f:09:7c:0d:70:8b:dd:0a:e7:5d:b8:7b:ac:1e:
83:ff:ba:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 9 12:42:16 2025 by rpki-client