Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/ECAB600CF81B11EFB69EF2AF762E951A.roa
File: ECAB600CF81B11EFB69EF2AF762E951A.roa (raw, json)
Hash identifier: WIdmo+rvI+pl5Uf9vvK/ZD5dbX4ndRFmF4orYLcvijw=
Subject key identifier: F5:0B:3E:59:AF:BE:C1:33:C6:3A:96:4A:53:28:F1:C4:FE:07:40:2F
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01702F
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/ECAB600CF81B11EFB69EF2AF762E951A.roa
Signing time: Mon 03 Mar 2025 10:40:29 +0000
ROA not before: Mon 03 Mar 2025 10:40:25 +0000
ROA not after: Wed 26 Mar 2025 10:40:25 +0000
asID: 62240
IP address blocks: 154.195.130.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 94255 (0x1702f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 3 10:40:25 2025 GMT
Not After : Mar 26 10:40:25 2025 GMT
Subject: CN=67c5871d-1a9e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:d0:a3:3e:81:b5:b3:75:52:b1:ea:17:e1:3d:
94:7e:d6:97:10:33:54:89:c5:1a:df:a7:e2:8f:2c:
c6:7f:0a:28:94:5f:6b:67:11:24:03:46:0e:93:ce:
fb:9c:b9:ab:01:95:bf:05:f2:c9:b0:c6:76:25:c6:
4c:26:33:b5:7e:f3:a0:0e:56:4e:a9:79:ae:03:27:
38:73:fc:c6:93:91:e1:c7:7d:20:f0:c8:0f:ac:65:
ee:60:15:e9:35:f2:cb:50:12:09:63:f8:6c:68:71:
ec:ab:51:f2:9e:0b:70:c2:0d:55:ff:16:8e:7a:7b:
12:fc:14:49:12:02:27:85:81:f7:1d:c9:5e:1c:7b:
4e:fe:d1:a7:17:3f:be:28:c4:07:d0:41:2f:eb:f2:
cf:29:14:5c:5f:b2:ec:47:3a:1c:d2:cf:48:84:d7:
09:d6:73:5e:9b:19:86:53:78:70:99:00:16:f3:4e:
1e:5a:32:a1:2a:e3:c8:34:20:84:b0:10:7d:92:aa:
db:a5:8c:5b:75:77:94:94:dc:7e:29:04:51:58:d2:
4e:43:63:4a:eb:96:0b:17:b4:b8:f6:6b:2b:af:b5:
11:e8:bc:12:13:79:00:44:33:e6:ef:36:6f:34:23:
28:ae:6e:67:7d:36:33:a6:40:1f:83:5f:7e:2b:55:
54:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:0B:3E:59:AF:BE:C1:33:C6:3A:96:4A:53:28:F1:C4:FE:07:40:2F
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/ECAB600CF81B11EFB69EF2AF762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.195.130.0/24
Signature Algorithm: sha256WithRSAEncryption
70:bf:7c:8f:ef:1a:eb:ec:8f:3d:67:88:27:40:a8:db:0c:d7:
60:47:2d:22:56:3c:60:c7:b5:d0:01:f8:be:94:01:60:86:67:
a8:c7:8f:84:01:ec:fe:9a:0f:9e:d5:7c:94:6d:fb:f6:81:d0:
ef:97:62:38:38:fb:39:bb:b0:62:75:c5:ad:d7:0c:6f:d7:e6:
c2:b4:5a:cf:a2:90:74:f5:96:89:bb:75:e4:b2:83:23:0d:41:
8c:fa:ca:a1:c3:25:54:ba:16:45:8e:6b:0d:2e:81:aa:bf:e7:
5a:60:d7:4a:27:88:6c:ff:8d:04:67:2e:16:f5:79:4f:01:52:
e8:bb:a6:b1:93:2a:a5:5c:bd:4d:38:90:f8:fc:68:a6:c0:66:
83:5e:77:fd:11:25:25:b2:54:ea:0e:25:90:55:ac:e2:c7:e0:
21:87:77:97:95:1c:70:41:b3:9b:52:62:a7:86:f7:76:ef:16:
29:e2:94:8e:bf:77:ac:0c:73:ab:be:1a:33:f7:c8:62:24:a3:
17:86:b2:5f:95:0a:3e:ef:1d:ae:7d:be:75:77:3c:d2:22:4e:
30:f9:af:ba:3a:14:f1:12:4e:79:44:6f:7b:45:4a:8a:91:4e:
e6:14:38:67:e6:8e:3f:f9:c9:f2:7a:3c:42:a7:fd:78:82:f6:
f4:6d:11:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 9 06:02:21 2025 by rpki-client