Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F0692A8CF68E11EF9CEA75AC762E951A.roa
File: F0692A8CF68E11EF9CEA75AC762E951A.roa (raw, json)
Hash identifier: Z7OAFUYim2ylXTdSc3jgMGu5Gymkim4G5PYduiHq0YY=
Subject key identifier: 06:4E:3A:A0:59:EE:A9:C3:FC:63:B7:3A:40:82:97:66:D8:47:71:5D
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 016DFB
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F0692A8CF68E11EF9CEA75AC762E951A.roa
Signing time: Sat 01 Mar 2025 11:18:45 +0000
ROA not before: Sat 01 Mar 2025 11:18:41 +0000
ROA not after: Mon 31 Mar 2025 11:18:41 +0000
asID: 202656
IP address blocks: 154.222.12.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 93691 (0x16dfb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 1 11:18:41 2025 GMT
Not After : Mar 31 11:18:41 2025 GMT
Subject: CN=67c2ed15-05bc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:8d:cb:17:9e:af:03:f6:47:5e:f2:47:54:e4:
24:db:d8:04:97:b1:58:80:f5:b9:0a:7e:ec:a0:1a:
8c:d2:de:6f:10:57:ca:91:0b:f3:ae:a3:47:93:eb:
60:97:0e:ca:9b:38:01:f2:e7:f0:d5:fb:30:25:93:
88:e0:e9:57:41:40:22:b2:40:fe:4b:8c:2f:80:b4:
cb:34:11:91:12:bf:fc:7a:f1:56:c2:57:6f:4f:93:
87:7d:30:65:d8:0a:50:62:b5:ad:3e:22:3c:22:47:
e5:2b:6f:7a:15:6f:28:7a:00:85:a2:35:eb:36:2f:
e3:0b:30:55:30:1a:4c:52:71:83:6b:8f:65:7d:e8:
b4:6d:72:fa:0e:29:fd:7a:20:96:41:22:b7:53:73:
d2:50:13:75:57:b8:55:be:19:a5:e2:83:ff:5a:d5:
3c:a1:a8:2d:7e:82:67:9c:3a:62:a4:de:2b:d2:69:
42:fa:8a:8a:ca:e3:97:92:62:e1:b1:20:ab:35:02:
e9:dc:85:02:14:eb:e0:57:2e:cc:41:b8:b1:a4:87:
3a:56:a5:ce:4d:2d:6b:be:a3:43:75:4a:ca:c9:02:
34:4a:d9:9d:50:1e:10:4b:cc:ac:2d:e0:e1:39:6b:
73:ba:3e:12:52:fd:60:d2:7e:38:95:6b:cc:5d:df:
05:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:4E:3A:A0:59:EE:A9:C3:FC:63:B7:3A:40:82:97:66:D8:47:71:5D
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F0692A8CF68E11EF9CEA75AC762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.222.12.0/24
Signature Algorithm: sha256WithRSAEncryption
7e:8e:a3:d3:ce:74:15:68:6e:a1:53:85:d1:8b:e7:32:44:e3:
4c:01:5a:61:f4:8e:34:43:be:64:ff:e5:24:28:68:4b:d7:35:
e9:8d:fd:bf:5c:fa:10:99:25:73:15:f9:33:e9:b1:ac:c2:92:
7a:82:1a:e3:b4:07:c2:2a:2b:67:cf:4d:5f:85:75:37:b5:32:
4d:5c:ca:eb:61:b5:e7:8b:b8:1c:82:41:93:12:a3:ac:b6:f3:
7a:3d:44:b4:d8:37:c9:03:ab:1a:f6:2a:32:3a:19:c8:82:e7:
f4:c3:6c:95:d6:a3:dd:ce:02:3f:0b:fa:4e:65:4d:86:49:31:
ea:ca:45:3d:a0:15:77:76:c7:b4:22:d9:d0:1a:4f:5d:bd:8a:
c5:a7:89:58:b5:d3:27:df:af:6f:50:80:29:b1:bd:43:56:19:
c7:84:41:ab:46:c5:03:b4:46:ac:69:c9:b5:8c:95:df:d2:8e:
05:b8:db:6c:b7:eb:f6:c3:c7:58:d8:d8:de:1f:44:13:0b:f9:
88:51:be:4a:6a:56:dc:21:43:51:bd:a0:3b:1a:b9:27:0f:34:
41:66:07:84:a6:3d:d2:b9:99:2a:40:ff:c3:ed:20:07:e2:63:
74:2d:75:84:92:e1:85:ac:01:bf:21:92:2f:de:3d:89:9a:d9:
05:89:42:ac
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 9 06:03:16 2025 by rpki-client