Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E6A7C26CF61911EFB908BD80762E951A.roa
File: E6A7C26CF61911EFB908BD80762E951A.roa (raw, json)
Hash identifier: YU+SuxIdm+CHs9p6R8EUShc0VtGuo3T6ZloBRYstkgk=
Subject key identifier: 6C:F9:BE:26:6D:F4:15:CD:33:68:43:4C:C4:00:54:41:6F:12:B0:A0
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 016C39
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E6A7C26CF61911EFB908BD80762E951A.roa
Signing time: Fri 28 Feb 2025 21:20:58 +0000
ROA not before: Fri 28 Feb 2025 21:20:54 +0000
ROA not after: Wed 26 Mar 2025 21:20:54 +0000
asID: 62240
IP address blocks: 154.194.104.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 93241 (0x16c39)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Feb 28 21:20:54 2025 GMT
Not After : Mar 26 21:20:54 2025 GMT
Subject: CN=67c228b9-f388
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:6e:48:9c:c6:ce:bb:1b:54:6b:53:22:b4:1d:
72:dd:e7:57:83:ca:7d:b1:33:ee:07:24:cf:cc:f4:
43:f1:c1:2f:6f:c0:8d:5b:8d:5b:b8:8f:f3:fb:4e:
a0:79:a6:d1:d7:77:05:ef:3b:e8:11:7b:d4:b2:fd:
29:a3:7a:c2:c7:e8:6f:a6:0d:69:f7:fd:cd:89:e8:
6d:1e:51:ed:2c:59:f0:f4:5c:5c:99:0c:34:49:8c:
21:aa:4c:56:00:be:80:e1:87:58:f1:8a:17:fe:37:
09:f2:75:35:3c:d2:2f:8a:96:f0:8f:ca:87:8d:8f:
8f:3f:45:7d:60:ea:db:95:f9:a3:c8:89:0d:d7:00:
02:c8:e6:5f:b5:27:e5:5f:06:3c:7a:86:80:b8:46:
b8:73:00:33:7a:86:38:f0:6a:3a:f1:2f:9c:82:9a:
5f:c2:24:ec:53:7e:3c:41:c5:c7:92:b2:77:b6:34:
d7:56:57:a2:96:74:7e:21:6b:21:bf:ec:09:8f:2a:
d6:0d:65:ab:db:27:2b:d8:ca:13:7c:02:81:c3:ca:
45:02:e9:4e:86:7a:ec:f9:c7:e5:74:88:9a:18:c0:
1c:79:36:81:28:f3:5b:e9:ed:bb:b2:03:f5:bb:91:
60:19:4e:7e:d0:73:5b:ea:d9:b8:f2:04:89:83:66:
64:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:F9:BE:26:6D:F4:15:CD:33:68:43:4C:C4:00:54:41:6F:12:B0:A0
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E6A7C26CF61911EFB908BD80762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.194.104.0/24
Signature Algorithm: sha256WithRSAEncryption
4a:fd:be:1a:50:dd:c6:2b:c6:ab:34:6b:fb:d4:f5:de:50:cd:
b8:17:8a:ab:27:3b:02:6e:00:02:cd:b1:3f:cc:d0:bf:dd:da:
2e:2d:67:cc:53:08:12:e2:8b:89:f6:44:80:17:81:84:f8:f2:
0a:d9:86:a3:6c:75:86:63:b8:bc:94:a4:7c:ab:d0:3e:dc:78:
09:0a:57:96:12:7b:96:e6:52:7b:43:ee:e1:8e:38:b8:dd:5c:
46:9e:e7:50:a0:44:50:84:4f:9c:7c:1a:f2:50:ae:cb:be:66:
22:15:94:d1:b4:b1:d5:55:bf:fd:24:7f:b8:ed:c2:65:ef:11:
74:49:1b:77:10:bc:b9:44:e4:cd:bd:41:2f:13:87:90:2d:80:
05:d0:4b:ae:94:44:9b:c6:9e:f1:1d:62:c8:01:0e:90:ff:ea:
fe:98:21:83:79:38:76:f0:9d:a8:0a:5a:1f:f4:cd:91:e2:35:
67:46:c4:00:90:2d:a3:4d:e0:20:e2:20:2a:05:47:e5:ef:d2:
31:5f:fa:bd:3c:88:ea:2a:e4:ac:4e:66:2c:b6:f8:73:51:c6:
71:ea:36:08:06:3b:bd:d0:f0:16:54:00:2b:bd:d8:06:b9:df:
95:38:95:13:d8:72:90:f7:ae:a5:e7:7c:e8:d9:6c:55:58:73:
92:57:48:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 9 11:55:29 2025 by rpki-client