Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F05FFFBEF5E611EFA6AC37AA762E951A.roa
File: F05FFFBEF5E611EFA6AC37AA762E951A.roa (raw, json)
Hash identifier: xieOEd9pbhcbULP/8q1F9CKO3pbKIuT0XvDkesXQcoc=
Subject key identifier: 5A:42:51:6D:BE:09:31:4C:A9:EA:FC:02:AB:C0:06:39:71:77:E8:9F
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 016BA0
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F05FFFBEF5E611EFA6AC37AA762E951A.roa
Signing time: Fri 28 Feb 2025 15:16:10 +0000
ROA not before: Fri 28 Feb 2025 15:16:06 +0000
ROA not after: Wed 26 Mar 2025 15:16:06 +0000
asID: 62240
IP address blocks: 154.194.77.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 93088 (0x16ba0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Feb 28 15:16:06 2025 GMT
Not After : Mar 26 15:16:06 2025 GMT
Subject: CN=67c1d339-9182
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:b3:50:10:c2:0e:4e:e2:a3:5d:9d:0f:cb:d2:
89:a9:cd:74:f9:84:a3:27:b8:43:fe:6e:c1:d5:09:
1b:54:7c:fc:d3:af:6f:a8:4e:ec:1a:d3:1c:6a:98:
cd:eb:79:3e:79:45:37:2b:f7:60:8f:c0:68:d2:fe:
cf:23:c9:db:ef:b5:bc:84:0d:15:a8:b4:96:3d:1f:
42:50:98:71:df:90:b1:89:de:be:36:0c:99:6e:78:
7b:46:d3:e4:b7:ff:6c:31:06:57:cb:a0:c1:65:de:
7a:ff:dd:91:80:85:03:28:8d:0b:51:3c:d7:8d:04:
48:34:43:30:45:6d:34:5e:7a:80:9f:e2:82:51:ca:
18:c3:4e:94:bb:4d:7b:25:02:04:82:79:7f:23:fd:
31:0a:bd:a7:41:f7:82:68:d1:ba:8a:a8:6a:d3:11:
fc:54:1d:39:ed:66:3b:a9:9f:06:b2:46:5d:1f:17:
2c:4f:fd:1a:78:4e:b5:ad:89:3b:3b:13:96:ca:3a:
a0:d2:09:ff:98:10:cc:3c:49:d6:ff:bf:6f:57:ba:
a0:7b:58:9c:af:1a:6a:b0:39:85:bf:3a:84:a1:08:
d7:b5:4b:ec:41:c6:e7:dd:34:cb:7d:4b:67:c8:c4:
db:59:3d:0c:f8:f7:6c:9b:7e:c7:7b:a7:cf:d1:a7:
e2:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:42:51:6D:BE:09:31:4C:A9:EA:FC:02:AB:C0:06:39:71:77:E8:9F
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F05FFFBEF5E611EFA6AC37AA762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.194.77.0/24
Signature Algorithm: sha256WithRSAEncryption
54:2d:a2:cc:01:fd:1a:56:f2:01:c1:f4:72:f8:93:56:e9:65:
51:df:d8:1f:34:74:4d:b0:a9:de:53:d5:96:89:85:25:25:92:
7d:a1:59:08:b2:f5:30:3c:5c:2b:7f:89:b0:2e:17:0f:16:94:
c6:58:ed:b4:76:5f:ed:5d:41:e3:b5:20:48:a2:7b:5f:c7:5f:
f6:da:64:ae:ac:64:2a:20:d1:44:34:72:65:90:36:47:80:29:
95:bb:e5:09:1e:f1:40:0b:23:27:bd:59:1b:56:d6:78:4d:7f:
e4:44:c3:73:09:a8:54:1e:a6:f9:63:79:b0:cb:56:ba:c0:3f:
ea:d2:77:1f:d8:cc:3b:0d:d7:48:be:ff:ea:dc:f3:63:2e:00:
47:5e:e3:f7:d9:01:2d:58:82:4c:4a:b6:5d:4c:c2:0c:94:69:
a4:48:a3:d2:51:51:99:c6:ab:ff:bc:3d:10:74:ca:7b:9a:65:
e7:4c:5a:c8:5c:7a:7a:32:b3:4f:bb:7c:ee:a4:76:5a:65:d1:
87:c1:64:1a:4e:59:64:b1:6d:14:ea:7d:b0:c3:dd:a2:ba:22:
d4:10:22:8b:e7:ff:08:b3:71:15:1c:df:9a:f6:97:8b:9c:0c:
31:35:82:79:04:b9:2e:70:f0:2f:f2:57:e6:68:13:46:c3:a1:
61:be:b7:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 9 10:59:59 2025 by rpki-client