Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E9D2466EF4DA11EF87145B80762E951A.roa
File: E9D2466EF4DA11EF87145B80762E951A.roa (raw, json)
Hash identifier: /tjz1gMAFtLOs+55RkMY5aD6tTQLpx/LdT6iSwVfNYA=
Subject key identifier: D0:AD:A8:71:97:BF:2C:1D:00:DC:D2:1B:BF:FC:50:BE:79:EE:7D:C5
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0166A3
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E9D2466EF4DA11EF87145B80762E951A.roa
Signing time: Thu 27 Feb 2025 07:17:33 +0000
ROA not before: Thu 27 Feb 2025 07:17:30 +0000
ROA not after: Wed 26 Mar 2025 07:17:30 +0000
asID: 62240
IP address blocks: 154.195.159.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 91811 (0x166a3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Feb 27 07:17:30 2025 GMT
Not After : Mar 26 07:17:30 2025 GMT
Subject: CN=67c0118d-e2d8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:35:8f:1a:11:13:86:27:ad:ad:24:51:36:a2:
b4:73:b1:c5:19:8c:05:c1:52:60:da:d5:a7:f7:cf:
48:c0:43:2c:a5:80:3f:44:6d:8d:5e:4d:d5:d6:41:
1b:0c:d3:1e:93:49:2b:98:82:38:bb:b1:bc:f4:71:
05:92:f9:2a:2b:e0:60:c2:a7:6e:19:22:fb:78:38:
28:55:5e:90:24:08:45:d5:19:f7:d7:c7:aa:e2:02:
a2:de:21:1c:11:85:7a:ba:4b:cb:78:57:5d:19:1e:
40:6d:7d:52:7e:85:b7:3b:39:86:d4:05:25:44:6a:
f8:af:e3:e6:21:af:d3:fd:6a:44:01:13:fe:8b:b2:
7b:d4:37:6b:3f:ba:3f:2a:e9:bc:aa:01:53:40:53:
d8:88:d8:28:0e:79:67:9a:5c:65:ec:4d:b2:6e:6a:
2c:ff:53:15:d6:5c:ce:a3:87:c3:25:4f:7e:81:1f:
33:9f:7b:29:f2:52:86:8f:d6:0a:56:ed:d4:85:7c:
1f:fa:61:e0:53:32:24:fd:5f:60:3f:02:ae:3b:06:
82:e2:07:36:85:2b:98:85:68:51:b0:22:e2:04:9e:
83:3e:a0:c7:03:a0:7a:37:c7:e9:a8:69:2c:d8:5a:
6a:40:d4:9a:a6:e3:ed:ba:ab:ca:0f:9e:28:7e:1b:
41:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:AD:A8:71:97:BF:2C:1D:00:DC:D2:1B:BF:FC:50:BE:79:EE:7D:C5
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E9D2466EF4DA11EF87145B80762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.195.159.0/24
Signature Algorithm: sha256WithRSAEncryption
d8:02:aa:b2:6a:b7:6d:82:c5:48:ba:e8:5f:13:0e:c7:da:98:
02:fe:f4:81:3e:19:18:8d:14:72:b3:a4:ce:0f:b6:38:c0:84:
3e:00:01:91:e8:9f:ae:2a:2f:a9:6a:f1:b5:9a:e4:a6:bc:55:
6b:75:8a:7d:2a:39:02:6b:7e:6f:bf:51:ea:c0:3f:84:79:d3:
c6:f2:6c:ed:68:94:b1:0e:81:8e:da:28:dd:db:dc:f7:c2:a4:
a6:2e:2b:7e:2c:f6:74:e6:1c:10:65:7c:c8:e5:84:31:61:ab:
a9:0a:1c:bc:e8:36:c6:25:3e:d6:9a:42:4a:81:35:1a:9d:6a:
b5:1c:ce:74:65:09:26:4c:31:d5:d2:5f:6e:0e:8b:bb:85:6b:
c3:3d:fd:47:77:c3:a2:da:f7:9c:1c:19:aa:ac:4d:fe:0d:db:
2b:41:30:4c:14:2e:ee:27:13:9d:f5:7e:fa:f0:a2:ba:be:3f:
9e:aa:76:0f:3b:50:b7:8c:55:23:78:cc:39:96:68:d5:45:37:
cd:48:48:a4:8e:0f:66:1d:70:8b:1e:45:cd:c3:79:c5:7c:07:
31:12:73:89:8a:13:67:52:29:51:6d:9b:91:fc:93:01:25:10:
56:7c:ea:21:4a:82:fe:43:59:73:c1:5c:ce:59:f2:3f:b0:0f:
88:2b:3c:e6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 9 06:52:25 2025 by rpki-client