Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/DE5B2FA68A9311EE840424184AD9E6FC.roa
File: DE5B2FA68A9311EE840424184AD9E6FC.roa (raw, json)
Hash identifier: TtUJY8O5Bh+xSOuwGZVdVQQFWxzn5gzMb7jR/iASf7M=
Subject key identifier: 51:3E:2D:DD:AB:86:C1:E7:B8:83:CA:64:9E:21:4C:2B:76:D2:31:F0
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 53D2
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/DE5B2FA68A9311EE840424184AD9E6FC.roa
Signing time: Fri 24 Nov 2023 06:36:59 +0000
ROA not before: Fri 24 Nov 2023 06:36:56 +0000
ROA not after: Tue 26 Dec 2023 06:36:56 +0000
asID: 62240
IP address blocks: 154.196.30.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 21458 (0x53d2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 24 06:36:56 2023 GMT
Not After : Dec 26 06:36:56 2023 GMT
Subject: CN=6560448b-0671
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:f5:e0:cc:f6:ef:3e:48:85:fb:9b:66:c3:04:
c7:ae:18:0b:fe:ee:88:f1:27:0f:56:a1:60:6f:f7:
9e:64:06:e8:7f:af:1c:19:a3:e4:08:ae:49:c4:3d:
4c:56:07:21:4f:3e:8a:15:56:ee:31:46:b0:03:5b:
c0:35:1f:f8:9b:3c:25:c5:b1:85:ee:5c:56:2b:f8:
d5:fa:b4:dc:9e:24:ef:a8:c9:22:fb:09:ea:21:b6:
8f:b0:29:ab:81:59:2a:e7:27:23:29:7b:ab:39:64:
e8:9d:f9:bc:0b:b1:6f:af:62:5d:78:03:a1:0c:40:
77:55:49:b0:bc:3d:87:9f:bd:67:05:0a:a8:15:e5:
a8:da:7c:37:23:6b:1f:88:b9:66:02:0c:b1:32:29:
8e:d7:6d:81:44:f2:67:2b:0b:77:64:f4:67:68:ba:
08:17:85:c3:d7:33:0b:aa:16:60:d1:24:38:0a:fa:
c2:e5:0c:c9:82:3f:24:58:26:d2:cd:69:2c:59:55:
1f:a2:d3:41:a1:f4:8d:f9:0e:3e:a1:44:b5:f2:1c:
08:f7:7b:b1:f5:aa:a3:81:38:db:a9:1f:07:31:58:
9d:83:1c:27:ec:98:53:2b:39:2e:eb:53:c6:09:03:
73:ad:c6:bf:8c:6e:b4:19:5e:45:bf:f7:e2:2f:48:
3a:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:3E:2D:DD:AB:86:C1:E7:B8:83:CA:64:9E:21:4C:2B:76:D2:31:F0
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/DE5B2FA68A9311EE840424184AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.196.30.0/24
Signature Algorithm: sha256WithRSAEncryption
32:66:7c:08:b9:c7:a4:b4:b1:21:b0:41:f7:ff:cd:d6:d9:1e:
45:2f:5c:c0:72:b9:e5:10:11:b8:93:1c:ae:27:7d:9f:55:fa:
d8:c4:36:b9:fd:dc:45:4e:6c:4d:4e:1f:6d:a7:5a:94:0f:d4:
19:f9:d2:f4:31:58:46:8e:36:d1:7c:1b:8d:a7:b4:91:99:e4:
09:60:7b:84:7d:8a:f9:77:0d:98:06:a8:49:9a:30:1a:b4:fc:
2d:66:c0:55:4e:c5:18:82:b5:82:93:09:40:03:37:e6:54:92:
6d:12:72:82:02:2b:32:0f:8c:d8:b0:19:a9:fa:53:be:cf:94:
2a:1d:7a:96:a4:fc:e4:6a:ec:69:09:c6:97:3e:0f:d9:80:ec:
f4:81:be:07:d3:9b:c6:67:e7:bb:85:cf:01:f7:ee:fb:b9:6d:
47:ea:6b:6d:e8:34:4d:4a:f0:e7:56:8e:a1:0f:78:9b:73:5e:
85:1a:4b:bb:a3:ae:be:f0:0e:73:9b:e0:82:5b:af:d2:83:98:
4c:4c:de:21:71:1c:b8:58:37:04:db:62:6e:a3:f5:12:58:5e:
7e:4d:b8:03:f4:5d:ef:25:30:5a:62:58:e2:23:74:f3:9e:bf:
d7:e7:d3:ea:c6:cf:b0:dc:6f:6e:18:fe:a2:9f:1a:13:1e:9e:
82:2b:96:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 9 11:49:27 2025 by rpki-client