Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E62EB9B8EF7E11EFA055A550762E951A.roa
File: E62EB9B8EF7E11EFA055A550762E951A.roa (raw, json)
Hash identifier: pEOzHfBYMPz8KaOR/uTJ7yAZkXpFbu6gfByRmT+3WEI=
Subject key identifier: 0C:36:0C:F6:A6:65:42:7A:B2:9D:E7:BC:98:73:DE:2D:3A:A4:B2:60
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0158D2
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E62EB9B8EF7E11EFA055A550762E951A.roa
Signing time: Thu 20 Feb 2025 11:36:18 +0000
ROA not before: Thu 20 Feb 2025 11:36:14 +0000
ROA not after: Thu 20 Mar 2025 11:36:14 +0000
asID: 54600
IP address blocks: 154.217.236.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 88274 (0x158d2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Feb 20 11:36:14 2025 GMT
Not After : Mar 20 11:36:14 2025 GMT
Subject: CN=67b713b2-2442
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:81:78:d8:32:6a:bc:28:ef:52:a7:32:97:98:
71:72:be:16:cc:57:99:80:8a:6a:b3:3a:98:8c:08:
b9:34:2d:d1:d3:32:58:20:dc:cd:28:f9:40:a3:66:
45:1d:2d:40:e3:1b:38:e7:95:2c:45:f1:f4:0e:e5:
ce:2c:de:57:91:b6:a2:4c:4b:e9:83:3f:6a:a8:95:
0f:d0:f6:59:e3:e3:80:17:16:5a:6b:f3:59:f1:bc:
95:db:76:96:50:df:8f:82:f8:67:f6:d1:45:4c:5d:
c0:c5:d3:e5:b0:f9:83:f8:e7:bf:47:1b:ee:15:e3:
63:a6:98:2e:8d:56:b6:45:9e:af:15:6d:06:08:45:
19:46:97:90:4c:56:49:00:c3:41:f0:29:0c:73:1b:
c4:9d:52:a2:f4:2a:0b:8a:d5:84:86:02:37:a9:78:
10:da:f7:26:6b:06:3e:97:c0:12:3a:b3:78:f3:58:
67:7d:d4:e2:7d:07:70:fd:83:21:62:f7:13:aa:64:
4d:fe:e0:d9:e1:08:1a:37:b6:89:0a:34:28:06:18:
fb:fa:c9:ee:06:b1:b3:c3:53:a7:64:37:c8:3b:62:
f3:19:43:98:a4:f0:c4:52:50:48:c5:a8:97:49:b2:
a4:3d:1e:75:68:bf:a6:b2:80:c7:27:21:7b:f3:2a:
45:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:36:0C:F6:A6:65:42:7A:B2:9D:E7:BC:98:73:DE:2D:3A:A4:B2:60
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E62EB9B8EF7E11EFA055A550762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.217.236.0/22
Signature Algorithm: sha256WithRSAEncryption
49:76:97:db:6b:bb:5d:95:90:8e:70:b3:1a:49:c4:2b:d1:ca:
eb:d0:ef:35:21:30:36:4b:e7:87:02:06:52:0a:cb:d1:56:bb:
23:8c:fc:d8:12:da:2d:a6:3e:b5:5c:24:7a:ee:77:99:23:83:
66:86:3c:bf:7f:74:96:e5:8c:6d:4b:88:b8:93:fb:74:c0:4b:
7f:3f:89:66:c9:d6:1e:ff:c4:0b:87:ca:c9:59:02:89:1f:21:
b5:21:2f:3b:2a:14:23:fb:40:d0:7c:4c:fe:ea:74:d4:59:8b:
a5:f1:a7:cb:47:4c:99:35:30:64:08:66:a5:ae:89:7f:cb:c6:
76:b4:b4:97:ee:eb:b8:c0:e0:29:72:d3:11:6e:24:3f:09:91:
46:84:bc:17:0e:c1:5b:a1:ae:68:61:24:29:74:cf:6e:78:c7:
eb:1d:f7:9a:56:02:c3:70:35:b0:dd:4a:05:75:46:73:95:86:
ca:10:ac:62:6a:bc:53:b0:9d:a5:d2:b4:ac:6a:8d:1e:92:e4:
f4:a0:a8:5e:6b:8c:7d:b2:a8:3d:d7:13:b9:87:1f:77:ca:5c:
a8:57:19:f3:c7:cf:7a:74:c9:ec:7f:bb:40:5f:cf:59:1c:95:
eb:5c:b6:39:8c:ad:2c:87:83:3b:79:f5:67:d5:6b:e2:84:c9:
a7:16:9f:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 9 09:43:53 2025 by rpki-client