Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/ADD65E40F4DD11EFBCD7FE92762E951A.roa
File: ADD65E40F4DD11EFBCD7FE92762E951A.roa (raw, json)
Hash identifier: bGVz45I04scF3nJGxB+x8TgGAuyDUQaLdpRK/iIynUI=
Subject key identifier: 53:A1:AA:F9:A9:23:8A:9A:90:27:FC:0B:DC:E7:8D:45:05:6D:48:8A
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0166B1
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/ADD65E40F4DD11EFBCD7FE92762E951A.roa
Signing time: Thu 27 Feb 2025 07:37:21 +0000
ROA not before: Thu 27 Feb 2025 07:37:18 +0000
ROA not after: Wed 26 Mar 2025 07:37:18 +0000
asID: 62240
IP address blocks: 154.195.166.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 91825 (0x166b1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Feb 27 07:37:18 2025 GMT
Not After : Mar 26 07:37:18 2025 GMT
Subject: CN=67c01631-06b3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:e4:83:d3:c9:35:ce:77:a3:c8:2d:60:5f:b2:
f7:88:75:46:29:85:d7:06:22:c1:92:65:5f:82:14:
5f:c7:7b:af:b8:f2:43:b1:84:6a:89:4d:f5:a3:28:
9f:14:5a:b6:0e:17:49:30:6a:a6:94:da:48:a3:38:
9d:7c:79:34:24:ea:83:eb:65:17:5b:de:50:f4:93:
10:54:36:8b:96:54:5e:b8:96:27:f8:bf:02:19:bc:
37:0d:63:34:2b:61:59:b7:e7:f5:c3:40:92:6b:6c:
9f:a3:20:cb:61:c0:8a:3b:52:8f:3d:b4:ec:c8:e9:
9d:58:08:80:58:0e:85:db:db:9a:9a:61:4f:fa:19:
33:0c:ea:42:d6:48:0b:f1:dd:13:c1:54:d2:39:9e:
29:17:ee:57:4f:b0:2b:f6:ff:d4:d7:e4:9a:d0:8c:
46:15:70:94:54:18:3b:b9:82:48:7f:5f:52:0d:6b:
e5:47:98:5d:80:8a:ef:0e:14:aa:d4:9c:fb:8f:d5:
a4:b0:64:0e:bf:ef:89:3c:88:c0:97:12:79:40:c5:
5a:d8:d4:af:8d:0d:49:d8:09:8c:9d:c4:18:56:ec:
02:da:20:30:79:d0:53:5d:fc:dd:61:03:8e:a1:72:
da:6d:be:ed:58:2b:c3:08:d8:c1:07:40:8e:a5:14:
a2:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:A1:AA:F9:A9:23:8A:9A:90:27:FC:0B:DC:E7:8D:45:05:6D:48:8A
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/ADD65E40F4DD11EFBCD7FE92762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.195.166.0/24
Signature Algorithm: sha256WithRSAEncryption
06:95:b4:60:a5:41:89:1e:0d:85:16:54:4c:12:b3:d7:ea:e6:
13:a3:c0:8a:7a:8d:86:05:ea:30:9c:1a:2b:09:37:55:74:7c:
6e:b0:a6:1f:a6:e3:0e:2c:34:3e:06:09:c0:19:3c:36:10:b2:
0d:74:75:79:e9:6a:95:c3:e6:cc:24:38:be:00:6b:19:68:5f:
0a:c5:92:1d:dc:02:4c:49:db:1c:b1:f8:c2:15:f4:a9:d2:65:
2d:f6:65:b1:bc:c8:be:41:8f:c0:2d:68:0c:19:74:74:51:39:
f3:3f:73:46:96:57:d2:6d:9a:60:51:87:18:a0:e4:a2:61:5a:
53:86:89:08:12:d0:a9:a0:20:4d:ec:fa:40:b7:a2:ce:ac:9d:
94:62:e5:b4:d8:c9:38:6f:41:59:92:a8:10:3d:92:9b:ee:24:
e0:f3:26:66:9c:8d:e1:b8:f3:46:45:6a:1f:2c:c0:bd:79:80:
1d:22:42:29:4c:d8:4a:d7:b8:ec:9f:22:99:a8:fc:15:14:2e:
14:6d:ec:89:d7:31:a4:a0:de:f2:6e:00:63:a4:72:76:c6:55:
26:7c:bb:1a:0a:7b:0a:4a:d7:74:7f:a3:61:23:b1:b5:e9:36:
49:57:f1:21:bb:a1:e7:5c:93:e7:22:c2:f6:86:51:9e:c7:d9:
67:9d:94:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 9 07:07:51 2025 by rpki-client