Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C8DDF0BAF69811EFB5E2006F762E951A.roa
File: C8DDF0BAF69811EFB5E2006F762E951A.roa (raw, json)
Hash identifier: JoNN+jJE1ExOO66b+6YqdC8CHLBUbU0nckd8zFQ+NFM=
Subject key identifier: 63:AB:87:AE:83:27:96:AF:B4:21:46:66:45:9E:34:3F:33:55:92:F2
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 016E40
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C8DDF0BAF69811EFB5E2006F762E951A.roa
Signing time: Sat 01 Mar 2025 12:29:14 +0000
ROA not before: Sat 01 Mar 2025 12:29:10 +0000
ROA not after: Mon 31 Mar 2025 12:29:10 +0000
asID: 202656
IP address blocks: 154.219.194.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 93760 (0x16e40)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 1 12:29:10 2025 GMT
Not After : Mar 31 12:29:10 2025 GMT
Subject: CN=67c2fd9a-a02d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:57:7c:bb:00:fb:91:04:16:a4:86:c6:5d:ec:
ec:da:cd:0a:48:f6:ff:56:ef:57:45:dc:2c:cb:35:
ea:6e:3b:24:f8:71:3a:2d:c7:83:42:1f:37:91:57:
8f:90:0a:6e:e6:c5:b9:53:21:8a:99:ec:48:02:c0:
ba:95:a7:f9:07:27:5c:cc:d5:5a:ff:7a:7f:1c:67:
06:1d:3e:c4:06:a5:85:57:13:9e:55:b9:08:cd:e3:
c6:45:d7:ea:22:63:49:30:59:f2:66:da:bc:cf:f8:
3d:d0:36:c7:ad:72:7e:46:66:2b:db:49:ab:c7:58:
ba:37:31:66:47:19:58:c3:d6:a2:aa:42:cd:d1:77:
70:77:0e:e1:05:33:75:12:dd:3b:5b:04:57:a3:45:
4f:bc:01:fc:57:95:53:c5:a2:96:68:65:c6:d3:82:
f8:96:58:bd:54:19:7f:23:07:ce:ba:35:5a:58:81:
92:8e:ab:6e:1b:72:05:ce:2d:90:28:41:61:1a:2a:
93:ba:9f:ca:b2:68:11:ee:67:9c:78:e0:0e:8a:2b:
16:fc:8e:ea:46:8c:4f:92:4d:8c:0b:67:34:7c:28:
eb:4a:45:81:5c:60:c2:dc:01:5f:70:2e:52:1f:55:
70:6e:a2:f5:a6:8e:c5:07:3c:55:de:b3:80:2e:e3:
63:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:AB:87:AE:83:27:96:AF:B4:21:46:66:45:9E:34:3F:33:55:92:F2
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C8DDF0BAF69811EFB5E2006F762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.219.194.0/24
Signature Algorithm: sha256WithRSAEncryption
21:00:74:c0:f0:05:7a:f0:e6:3c:a1:1c:eb:23:b9:64:34:a3:
69:6f:9e:17:45:f0:bd:44:9b:91:76:cb:41:ab:ab:ec:1b:81:
5e:b3:d4:a0:f8:20:8b:42:7d:74:e3:76:13:e0:82:fb:ab:19:
9f:eb:07:8f:e1:ac:d0:3c:11:a6:e2:56:72:eb:5a:bd:1c:bd:
66:37:1c:e0:b1:c7:a8:ad:c4:ac:a4:ed:ac:a8:c2:48:33:ec:
66:87:00:12:8f:c3:5e:38:34:58:af:ba:91:0f:63:51:c2:ff:
a7:03:12:ae:62:27:3e:96:2b:a8:ab:68:6c:7e:ad:c3:e5:2c:
21:c5:a4:73:a1:cc:3c:a8:37:dc:45:30:bd:9c:5c:4c:09:91:
fc:2e:51:3f:11:59:8b:06:15:8f:09:7e:27:9d:25:4d:15:01:
f5:9f:ba:53:21:af:b0:67:52:9c:ee:2a:27:84:da:2b:15:0e:
cc:4d:d5:f3:62:b5:e8:cf:aa:c2:8d:e3:f6:b0:4a:83:9f:8e:
a3:ca:be:a4:9b:61:7c:6a:8a:ee:f0:ab:67:4d:1d:12:99:68:
24:fd:b2:33:d7:c1:92:db:06:a7:75:b7:8b:85:99:a3:47:e9:
d1:e4:f2:47:f7:f6:e5:a4:c7:90:ad:0d:b3:6e:90:09:39:e3:
d1:4b:95:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 9 04:50:00 2025 by rpki-client