Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/EF3D1264F61511EF858BA168762E951A.roa
File: EF3D1264F61511EF858BA168762E951A.roa (raw, json)
Hash identifier: cPrU0HezBPa3fnQVSfr4YnqI2iRNWN30mKMHgETvNyE=
Subject key identifier: D8:67:61:F7:8D:6E:42:2E:B7:02:2A:A6:D8:B1:F0:BD:08:9A:34:9A
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 016C0D
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/EF3D1264F61511EF858BA168762E951A.roa
Signing time: Fri 28 Feb 2025 20:52:34 +0000
ROA not before: Fri 28 Feb 2025 20:52:30 +0000
ROA not after: Wed 26 Mar 2025 20:52:30 +0000
asID: 62240
IP address blocks: 154.194.92.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 93197 (0x16c0d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Feb 28 20:52:30 2025 GMT
Not After : Mar 26 20:52:30 2025 GMT
Subject: CN=67c22212-cc60
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:34:61:15:9f:06:ef:be:22:8b:29:82:70:55:
0b:59:08:83:43:0e:c5:ea:f0:90:0c:f3:60:a1:7d:
d1:cc:15:2a:7a:1c:68:d9:fd:bf:f7:30:a4:13:e9:
24:ba:92:12:e4:cb:b7:28:ab:cd:c7:90:4a:32:5c:
9d:5c:63:3a:c7:99:24:fb:9c:e1:56:84:5e:0a:94:
b0:2b:22:5d:76:9e:63:c7:22:ad:e8:52:bd:a1:f7:
8a:68:91:48:2e:6e:81:89:93:33:fd:c8:d3:9e:75:
31:90:79:62:06:d5:f1:d1:e6:45:12:74:b7:4e:38:
9e:d5:44:5b:76:96:cc:ff:d1:20:fe:ba:22:17:bd:
6f:b3:9e:7a:e0:01:d1:07:f4:01:6b:14:c7:20:8e:
eb:20:c8:46:92:fb:1a:ec:28:82:cd:81:7f:fa:98:
95:27:a5:c1:5a:e1:fb:c3:80:6c:28:00:a3:90:a5:
c2:37:35:49:d1:bd:9d:e9:1a:8e:dd:ae:01:3d:fd:
d6:fa:bf:8a:4d:99:69:51:4a:20:0f:92:35:16:71:
89:c2:c3:4c:b0:d3:d7:01:a3:af:0a:98:23:c1:47:
97:85:db:29:c9:17:7d:5e:92:eb:c1:aa:30:fe:54:
95:98:41:ff:ec:28:b7:2d:f8:e4:ab:22:23:41:b1:
09:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:67:61:F7:8D:6E:42:2E:B7:02:2A:A6:D8:B1:F0:BD:08:9A:34:9A
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/EF3D1264F61511EF858BA168762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.194.92.0/24
Signature Algorithm: sha256WithRSAEncryption
34:ae:76:72:86:dc:6d:d9:0e:7a:c0:39:b0:d8:49:5a:06:81:
72:a5:bc:62:c6:95:e5:58:98:83:2d:15:00:4d:15:35:b4:ec:
58:3d:90:d5:98:af:14:b3:c2:10:25:12:f2:d2:1a:db:40:1f:
d8:71:9f:d0:45:33:b9:9f:4e:3a:09:a9:91:47:d4:3f:3e:b5:
90:fd:83:64:94:15:93:24:c2:ce:83:b9:c9:8d:0c:13:16:8e:
c1:ac:40:e2:89:c7:ed:6e:ed:22:15:49:3e:64:f6:88:03:24:
68:4f:a6:a2:ba:dc:12:28:06:df:08:0f:d2:05:8d:06:b1:0f:
36:60:d6:4b:5f:6c:2a:64:e3:a7:68:8b:e5:83:df:64:02:1e:
8b:d0:50:75:5a:61:61:cd:e2:c7:3a:b3:b2:f4:0c:6f:90:37:
8a:01:4f:56:d1:48:51:df:c1:07:c6:ce:4a:17:14:f1:24:0d:
2f:31:85:58:0b:b8:43:a4:6e:b4:6d:eb:ed:16:a8:05:73:76:
8a:66:35:f3:b3:fb:bf:c2:08:5c:47:0a:86:2f:b0:1b:93:21:
49:00:d1:d3:f4:39:94:38:5d:3b:82:0b:c9:38:a4:4f:07:b5:
75:0d:83:a0:85:5c:9b:fc:40:e6:67:6c:d7:70:64:d5:6d:e7:
80:39:ce:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 9 06:11:24 2025 by rpki-client