Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C4A20872F61811EFB428787B762E951A.roa
File: C4A20872F61811EFB428787B762E951A.roa (raw, json)
Hash identifier: LP8C9dvPAgKkyugnkUYVNHh1afYOiDFICT6/KVuJuUk=
Subject key identifier: 82:38:F6:FD:21:42:AB:7F:63:5C:17:85:01:0E:2D:0F:24:77:A2:0D
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 016C29
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C4A20872F61811EFB428787B762E951A.roa
Signing time: Fri 28 Feb 2025 21:12:51 +0000
ROA not before: Fri 28 Feb 2025 21:12:47 +0000
ROA not after: Wed 26 Mar 2025 21:12:47 +0000
asID: 62240
IP address blocks: 154.194.99.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 93225 (0x16c29)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Feb 28 21:12:47 2025 GMT
Not After : Mar 26 21:12:47 2025 GMT
Subject: CN=67c226d3-082c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:20:54:c2:42:9b:f9:0a:83:76:17:a6:36:e4:
58:b6:0d:a0:b5:6f:be:d3:cc:21:59:2a:b0:70:da:
a7:5b:59:e5:76:14:88:6d:b0:64:60:3d:68:7c:09:
2e:e8:8f:81:93:a9:39:53:77:54:09:30:34:b4:3f:
f9:09:ac:51:ca:61:25:33:39:fa:4c:68:72:c7:0a:
96:12:a1:4a:e2:e5:af:f5:fc:54:3c:af:fd:28:71:
1c:5d:f0:32:ae:23:02:17:1a:0d:4a:ea:7a:fe:e8:
38:ea:c9:08:7d:1a:63:5d:69:21:17:cc:d5:1d:ec:
f6:bd:06:9c:c6:33:36:36:de:b3:26:28:89:3a:90:
89:7b:40:af:15:e3:9d:0f:88:12:b8:7a:fd:54:67:
4c:62:c3:50:00:b2:89:26:b5:67:58:29:6e:13:59:
50:c2:50:7e:13:08:92:6f:1f:49:37:41:50:46:49:
fa:79:52:70:71:b7:1c:fe:a0:74:bb:3d:37:da:77:
3b:92:0d:d6:86:4b:a4:f6:4c:c0:45:a7:8f:6a:2a:
f1:03:e4:ed:7f:ef:0f:f2:f7:9a:e9:a7:1e:f7:35:
74:10:23:11:30:c0:2c:f4:5e:26:fd:ba:c6:af:b1:
54:4a:e9:47:41:98:5f:a1:34:76:3b:41:82:92:b6:
ee:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:38:F6:FD:21:42:AB:7F:63:5C:17:85:01:0E:2D:0F:24:77:A2:0D
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C4A20872F61811EFB428787B762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.194.99.0/24
Signature Algorithm: sha256WithRSAEncryption
90:f0:80:2e:27:20:16:02:97:72:d2:43:c5:fc:82:fa:39:64:
2f:4a:3e:e3:e9:f3:01:07:37:fe:dd:26:95:3c:f2:c2:00:c3:
b8:29:37:59:d6:75:bc:0e:de:b7:31:2a:26:ee:2e:11:c1:2f:
43:90:bf:b4:3c:26:ad:48:b8:1b:94:7a:b1:a0:79:23:f4:f6:
46:12:24:0e:7b:66:8c:68:2a:70:38:06:05:b7:83:c8:7b:d5:
28:7c:84:07:75:1c:79:0e:4c:80:8f:78:dc:2b:19:ad:b4:7b:
b6:70:42:c4:0d:38:20:c8:27:57:ea:c7:2a:b5:ff:c3:49:c4:
11:27:d6:39:8c:9b:24:65:92:01:fe:45:b3:09:21:82:df:44:
5e:9f:e6:9e:16:98:61:e4:7b:94:8c:c1:10:8f:52:7e:96:e9:
d9:08:f0:9a:e0:ca:24:21:6b:b2:b7:00:1c:b9:e4:45:83:73:
c1:02:4e:30:83:81:73:ec:16:e9:b2:cf:f5:bc:4f:47:f9:f5:
2e:60:37:d6:18:2b:dd:48:5c:ba:33:77:7b:98:43:2f:1f:72:
c5:b8:10:12:df:25:44:97:bd:28:2c:c7:a0:8a:7f:f1:e7:a8:
d8:00:ea:6c:a8:4c:44:e6:48:13:47:b9:77:b6:02:74:1f:11:
35:6b:d7:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 9 06:31:54 2025 by rpki-client