Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/BCD92668A02A11F08506B7C6DAE4EC9C.roa
File: BCD92668A02A11F08506B7C6DAE4EC9C.roa (raw, json)
Hash identifier: Q3qlvgPgYUDhF3vi8U1KODLPPKdwa9Pdur7OyxvV7OM=
Subject key identifier: D7:20:EA:8F:60:7F:09:95:FC:A8:58:92:53:20:FB:AA:42:18:BE:86
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01A223
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/BCD92668A02A11F08506B7C6DAE4EC9C.roa
Signing time: Fri 03 Oct 2025 07:29:47 +0000
ROA not before: Fri 03 Oct 2025 07:29:42 +0000
ROA not after: Sat 18 Oct 2025 07:29:42 +0000
asID: 211392
IP address blocks: 154.84.15.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 107043 (0x1a223)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Oct 3 07:29:42 2025 GMT
Not After : Oct 18 07:29:42 2025 GMT
Subject: CN=68df7b6b-f0df
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:0d:74:93:85:6d:ea:ba:c3:42:29:e7:80:a6:
4d:65:04:bf:19:7e:cb:8f:a0:0a:95:8f:41:bf:8c:
8d:b1:55:47:78:fe:c9:6a:f5:c4:f5:2f:d4:e1:e2:
30:64:2d:ab:a8:04:f2:5d:ba:1c:eb:25:c5:dd:42:
87:36:fe:94:31:07:84:ae:ce:fd:59:5d:8b:7d:f4:
9d:54:0f:82:e9:ed:cd:6d:ec:14:7d:35:fc:98:88:
2b:57:08:88:d1:b5:89:23:ef:2b:c9:8e:15:95:a2:
7b:d1:cb:dd:44:74:15:39:d9:f8:f9:51:7f:e0:70:
fb:45:82:dd:3a:85:00:72:04:9c:5c:a4:84:df:cf:
9a:c8:0a:51:c0:10:db:e7:2d:a0:26:e3:c1:26:1d:
22:e9:bd:37:0a:86:e3:13:ef:54:e3:ba:7e:d7:15:
39:de:e2:c2:9e:eb:3d:5f:d8:56:f6:ec:24:d8:30:
ab:df:5b:85:30:8e:15:f8:89:46:7c:50:ef:da:b6:
e8:7c:3a:d7:25:4a:5b:b0:6d:57:91:dd:0a:44:30:
dd:d6:e8:c0:ca:b2:79:48:4b:81:16:08:ba:65:87:
9b:22:a8:9a:a5:78:05:29:d8:9c:68:0b:2f:fa:eb:
25:dc:7e:47:dd:6d:8a:e5:65:4b:b4:dc:bd:48:43:
ce:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:20:EA:8F:60:7F:09:95:FC:A8:58:92:53:20:FB:AA:42:18:BE:86
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/BCD92668A02A11F08506B7C6DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.84.15.0/24
Signature Algorithm: sha256WithRSAEncryption
2b:01:62:1f:1b:78:ea:bf:53:a0:98:24:3b:87:7a:ed:54:04:
cb:48:7f:37:38:cd:67:92:06:e2:e8:6a:0e:f0:79:2c:42:58:
ea:35:29:e4:21:bf:fe:9e:e5:a5:8e:68:2f:50:c9:ad:9b:bc:
66:4c:ed:7a:67:80:12:29:af:93:d8:46:91:1f:a2:00:78:c9:
e0:23:c3:29:f1:c7:d1:49:44:f4:a4:6a:28:f2:5c:67:a1:df:
44:77:85:e5:94:b6:70:45:ed:49:dd:3a:3b:73:ea:45:d5:44:
2e:61:87:e6:92:08:04:58:16:2a:7e:1f:b8:6d:4a:67:03:d4:
a4:9c:89:db:73:60:6d:a7:3d:02:cd:d4:28:51:9f:dd:ef:23:
45:33:49:62:ba:fa:86:67:c9:22:1d:bc:ee:1c:9a:77:03:96:
c9:9e:a5:f6:42:84:68:6d:3a:62:8b:f4:b7:b3:95:3b:7e:0c:
94:ec:be:33:91:b5:13:ff:f8:af:f8:ea:d0:49:f9:56:30:94:
9d:3f:91:39:fe:9e:e9:3c:76:6d:52:cb:7b:9c:0b:6e:31:2d:
56:73:cd:88:d8:65:c0:58:60:03:29:9e:da:47:ae:56:5a:2b:
97:48:95:b6:34:0f:f5:b4:ce:de:03:ce:67:5d:6f:6b:21:0d:
db:81:bc:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 08:51:45 2025 by rpki-client