Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E9597A428CDD11EE9DE074654AD9E6FC.roa
File: E9597A428CDD11EE9DE074654AD9E6FC.roa (raw, json)
Hash identifier: RInFrIZbJut7K0MUPX9tL/GAaFaPIkVb61bTn1UlMag=
Subject key identifier: DA:37:07:A0:61:BE:78:7D:DB:0F:22:15:CF:14:F9:0E:1E:44:17:68
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 5500
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E9597A428CDD11EE9DE074654AD9E6FC.roa
Signing time: Mon 27 Nov 2023 04:32:03 +0000
ROA not before: Mon 27 Nov 2023 04:31:59 +0000
ROA not after: Tue 26 Dec 2023 04:31:59 +0000
asID: 62240
IP address blocks: 154.194.88.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 21760 (0x5500)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 27 04:31:59 2023 GMT
Not After : Dec 26 04:31:59 2023 GMT
Subject: CN=65641bc3-2388
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:1c:8a:08:89:44:95:29:59:3d:53:7c:e3:7b:
01:23:8b:34:15:23:96:4e:eb:cc:21:bd:61:cb:60:
ae:a9:29:c0:c2:ec:cc:58:68:5d:36:ed:6b:2e:91:
df:14:27:51:cd:d1:cf:a7:e8:04:f9:6d:83:18:ad:
66:a0:42:21:4b:04:92:0a:0b:54:3e:a0:e9:e2:1e:
d3:19:c2:84:05:f9:fe:d9:e9:9b:a3:32:0f:85:ee:
59:20:b1:52:b3:8f:cb:be:4b:d5:cb:94:ad:d8:04:
0f:94:af:65:9b:7b:b7:65:43:25:aa:99:f5:b1:fc:
48:03:49:4a:06:ae:fc:71:20:a0:ac:df:c7:dc:94:
65:a4:da:60:d7:50:08:6a:ed:e5:94:0a:74:56:2d:
ed:8c:ed:b0:28:a3:81:93:e4:21:1b:60:65:bf:df:
3f:6f:48:c7:50:b1:1d:ca:df:8c:92:03:b3:87:24:
3b:a7:bd:f3:9b:cc:8f:74:28:e7:1a:a0:9b:de:db:
27:47:67:52:ef:68:c5:71:f3:56:08:c4:d4:d5:a7:
93:d7:6e:23:da:9d:35:73:4f:79:01:23:76:92:a7:
80:6d:fe:d2:3b:7c:7d:80:c9:8b:06:e6:02:49:ea:
e2:b0:86:fa:44:db:73:3c:39:37:93:0f:3c:35:7f:
6d:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:37:07:A0:61:BE:78:7D:DB:0F:22:15:CF:14:F9:0E:1E:44:17:68
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E9597A428CDD11EE9DE074654AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.194.88.0/24
Signature Algorithm: sha256WithRSAEncryption
78:98:18:fd:c2:b8:3a:66:4d:d1:15:51:ec:bc:60:48:82:3f:
2d:e4:96:ad:90:07:5f:6e:9c:cd:e2:45:78:29:50:6f:e6:99:
3c:b2:05:e5:e4:b9:26:4b:e2:23:6c:02:99:43:c0:77:ac:ef:
82:42:6f:c2:43:9c:3e:22:cf:28:a2:40:13:c4:7e:aa:96:83:
3b:3b:f4:5e:2c:53:dd:c2:e9:e9:f5:0a:ad:19:8d:ea:84:bb:
cf:c1:4d:87:23:4d:72:af:6b:b0:fd:f4:77:34:e1:59:49:74:
10:15:96:aa:ed:68:c5:38:0c:e6:d1:ce:b8:58:37:d8:e1:f3:
22:c9:f5:86:98:a7:9b:e9:0a:e6:97:a3:d5:c5:e8:a5:51:43:
aa:67:41:9f:09:9c:69:6b:a0:80:5f:d7:19:d1:24:19:9a:e9:
ee:e9:d5:8a:ed:82:b7:d9:61:07:dc:03:5d:cd:54:02:45:67:
3f:38:ee:27:b4:eb:f2:3f:a1:f6:d1:40:40:36:70:0c:6c:f0:
9c:6e:62:84:bb:ec:ea:25:b5:37:a1:3e:9f:1d:6b:ca:85:be:
dd:6d:51:1e:d2:f8:22:24:15:6b:a1:8b:55:5b:1e:ba:ce:4d:
c2:ca:28:99:bd:89:e4:0b:93:e9:01:21:57:f0:c1:a5:42:bb:
a0:2a:c3:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 9 11:45:17 2025 by rpki-client