Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B3D86C8C8CDF11EEACF65E6B4AD9E6FC.roa
File: B3D86C8C8CDF11EEACF65E6B4AD9E6FC.roa (raw, json)
Hash identifier: zQ+M/zbvVNFKC7WiEmUCmaqAOxdriIKz1o+aEr+EDnQ=
Subject key identifier: B4:C0:7E:22:AA:EB:8C:2C:22:91:F0:FF:99:79:D3:DD:28:B1:9F:16
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 5529
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B3D86C8C8CDF11EEACF65E6B4AD9E6FC.roa
Signing time: Mon 27 Nov 2023 04:44:52 +0000
ROA not before: Mon 27 Nov 2023 04:44:49 +0000
ROA not after: Tue 26 Dec 2023 04:44:49 +0000
asID: 62240
IP address blocks: 154.195.188.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 21801 (0x5529)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 27 04:44:49 2023 GMT
Not After : Dec 26 04:44:49 2023 GMT
Subject: CN=65641ec4-ffdd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:1a:cf:9e:ad:e2:56:9f:51:88:6b:e0:27:12:
49:c5:01:17:13:39:a5:54:63:1e:5f:af:da:b4:37:
e7:93:37:67:a1:4d:1b:67:34:6e:ea:91:7a:51:ef:
76:3a:5b:d3:d4:c0:05:16:1e:d6:05:9b:bc:34:d9:
c5:d4:66:57:a6:7d:b2:1c:4e:c8:4f:45:9f:74:44:
77:dd:c5:28:8d:9e:91:5c:c5:11:db:f4:15:8a:3b:
74:38:95:ec:04:de:d7:25:b4:c1:98:e7:3a:42:a2:
c2:18:58:a9:91:e8:3b:33:03:82:f9:d8:2e:0a:41:
c7:40:98:f5:fb:a1:e7:0a:0f:19:9d:a0:51:55:33:
cb:42:5d:3e:40:99:d0:0f:19:41:33:f6:85:33:ba:
9b:c8:10:5f:a7:88:cd:6d:73:6a:92:e8:19:d0:91:
34:1b:0c:74:e4:75:8b:9b:a8:f4:d9:c5:57:c4:1c:
6e:58:54:21:65:e1:65:bc:8d:65:80:fc:58:2b:f6:
bd:41:ba:0e:22:90:18:de:0f:01:f7:b1:24:4b:d6:
fb:d8:0d:15:85:2c:40:7b:57:c5:3b:bc:60:fc:f9:
32:bc:22:c1:bc:74:ad:1c:7c:0e:bd:a4:c6:4e:3c:
d5:cf:d2:5e:5f:45:2d:f5:e3:f7:63:b6:a5:f1:cc:
bc:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:C0:7E:22:AA:EB:8C:2C:22:91:F0:FF:99:79:D3:DD:28:B1:9F:16
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B3D86C8C8CDF11EEACF65E6B4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.195.188.0/24
Signature Algorithm: sha256WithRSAEncryption
c6:46:0f:78:89:46:dd:bf:99:80:29:3b:1e:9e:bc:ea:95:66:
95:04:2d:65:69:28:0e:7f:3b:50:ca:69:4f:9c:d5:c7:78:b2:
30:54:7c:1a:d9:02:b4:24:43:41:27:f8:06:33:f5:22:43:87:
c6:74:78:d9:8b:1d:07:4f:d1:a3:96:bf:ae:ef:e9:97:bd:79:
4f:ba:a7:b6:9d:8e:47:0d:02:96:59:4b:fc:12:4c:5f:e0:a2:
14:55:a9:c9:a3:00:fa:c5:47:12:71:4f:5e:4b:46:36:5e:c1:
df:b3:8b:65:bb:f2:de:49:e1:8f:2c:87:fb:e0:a6:3a:ff:88:
d8:b7:d6:b7:d8:d3:b5:59:30:e3:fe:aa:d4:01:89:cb:1f:0d:
1d:c7:82:fe:0d:35:2f:e7:cc:2b:f1:a2:bc:7b:5d:7e:19:05:
eb:4d:b4:f6:c8:0e:4c:10:d7:70:03:07:7a:8d:c0:f3:4b:33:
8e:81:4f:fc:4c:6c:47:b7:46:fc:d6:b0:fa:64:01:26:74:75:
40:73:27:d9:da:89:cc:3e:d3:54:10:ae:96:38:64:f9:e9:bb:
68:3d:97:77:19:57:1e:02:9f:db:6f:69:d1:23:79:70:96:74:
51:b9:93:b9:47:28:a9:14:ba:16:d3:36:59:ab:d3:0a:54:47:
41:39:ca:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 9 10:28:42 2025 by rpki-client