Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B0057F2EF33011EFBBDCA689762E951A.roa
File: B0057F2EF33011EFBBDCA689762E951A.roa (raw, json)
Hash identifier: 6lhATdP9e39GAui2flCG9ZeT5ftYeuAruiHUXZbMV2Y=
Subject key identifier: 0F:6F:F9:04:73:7A:7A:38:1B:3B:BD:7E:BC:C2:EE:CC:1B:7E:4B:51
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 015D18
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B0057F2EF33011EFBBDCA689762E951A.roa
Signing time: Tue 25 Feb 2025 04:26:31 +0000
ROA not before: Tue 25 Feb 2025 04:26:26 +0000
ROA not after: Wed 26 Mar 2025 04:26:26 +0000
asID: 39600
IP address blocks: 154.94.40.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 89368 (0x15d18)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Feb 25 04:26:26 2025 GMT
Not After : Mar 26 04:26:26 2025 GMT
Subject: CN=67bd4677-652c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:61:cd:be:c9:0d:70:8c:23:e3:aa:a6:57:d0:
fc:15:81:97:d8:d0:14:44:bc:98:7d:e0:79:ee:e7:
0b:16:c4:96:36:21:fc:c3:cd:69:c3:5a:21:f5:89:
29:25:fb:06:9e:e4:ce:9e:1f:f8:49:58:d2:5a:63:
83:a7:04:83:4f:32:b3:53:de:49:80:02:1e:86:2c:
1c:ee:cc:c4:40:bc:3a:2f:e7:c9:49:95:9a:f2:17:
85:4e:0d:2b:a9:2d:5a:84:56:ef:70:10:a4:54:a1:
0f:aa:1c:86:64:88:ca:db:6f:60:df:c3:59:e2:1e:
28:b9:ee:52:bd:8a:12:6c:2a:7e:cb:af:50:b5:b5:
47:bf:bd:9f:96:b6:dd:7d:62:c6:c6:fc:7a:ba:98:
34:74:a3:d2:9f:66:4e:29:bb:65:1a:b8:c2:b4:cf:
49:d2:3e:d6:26:e8:e8:e8:47:ca:ef:ae:7c:6d:f5:
38:91:24:57:42:21:25:97:26:ff:68:60:70:09:fc:
6e:44:ee:1d:63:09:6c:1d:80:25:68:f4:24:d8:b7:
fd:d0:8e:d7:a4:5b:ed:ae:36:28:a7:4b:8a:56:3d:
59:ec:00:bb:79:26:3b:5a:cc:5e:cf:d8:2c:96:06:
67:16:59:c9:f6:fe:9d:33:96:6a:0a:f9:1d:e8:63:
dc:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:6F:F9:04:73:7A:7A:38:1B:3B:BD:7E:BC:C2:EE:CC:1B:7E:4B:51
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B0057F2EF33011EFBBDCA689762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.94.40.0/24
Signature Algorithm: sha256WithRSAEncryption
5d:63:21:fe:c5:70:15:e0:75:69:d8:8c:47:b2:9c:16:e8:2b:
6b:27:9c:ff:81:48:6b:fc:2c:32:13:6b:76:4c:44:4c:ce:c3:
66:c8:61:89:55:62:45:5c:49:d3:fc:c9:e5:bd:a8:ef:d5:a3:
ff:b8:78:ee:60:7a:51:85:b8:f3:4e:90:55:f5:21:83:0a:fd:
af:eb:ba:d4:18:1b:17:92:87:95:ea:d0:7d:d8:d7:3f:c3:66:
47:8d:13:b1:e6:a2:2f:85:57:3a:96:45:ae:82:89:42:a0:8e:
32:a5:00:64:7a:8a:5f:12:17:c6:fc:9b:d9:a0:31:dd:44:91:
c0:cc:14:fe:30:c5:1b:b9:23:8e:a0:48:91:3f:78:37:9d:08:
5a:2d:e9:67:1d:57:e1:54:a3:32:d0:4b:ea:ee:48:e6:40:a0:
de:d4:8d:d6:f7:ee:a5:bc:ef:02:2a:57:35:d6:c2:29:54:a3:
dc:08:68:ed:86:c3:7a:c2:43:31:41:f3:9e:8f:a6:dd:a8:76:
44:6a:19:1b:fb:2c:86:79:55:73:71:03:0a:a7:57:a3:06:4a:
a2:a3:21:17:22:1b:5b:df:dc:d6:1c:31:75:f1:a0:6c:bd:16:
a8:b0:c3:79:ca:08:72:f5:10:db:c2:41:79:d5:e4:75:ff:51:
78:d6:d0:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 9 07:07:49 2025 by rpki-client