Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F1207F368A8B11EEA0E6A47C4AD9E6FC.roa
File: F1207F368A8B11EEA0E6A47C4AD9E6FC.roa (raw, json)
Hash identifier: xRhXQZjXw4je4EOOOsksQ4ZBJX+ZAiGlhfTrQ2gfJWA=
Subject key identifier: F0:97:69:16:24:AA:54:F3:A8:69:BF:C4:3A:25:7E:D7:57:80:0A:E5
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 5348
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F1207F368A8B11EEA0E6A47C4AD9E6FC.roa
Signing time: Fri 24 Nov 2023 05:40:15 +0000
ROA not before: Fri 24 Nov 2023 05:40:11 +0000
ROA not after: Tue 26 Dec 2023 05:40:11 +0000
asID: 62240
IP address blocks: 154.196.36.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 21320 (0x5348)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 24 05:40:11 2023 GMT
Not After : Dec 26 05:40:11 2023 GMT
Subject: CN=6560373f-b062
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:7c:ca:4f:a1:52:a2:ef:c5:fe:e7:94:b2:b7:
43:20:7b:3c:59:9a:b5:5c:33:b1:14:4f:9d:83:aa:
e9:cf:f1:40:da:7c:d9:3b:74:ef:d6:af:8e:47:d9:
ce:1a:8a:a3:ef:8e:71:76:78:ac:65:6f:7d:e5:2c:
d2:f8:30:ac:fd:bf:48:32:c6:5d:89:fa:a7:b1:c5:
a2:5d:f5:fa:96:1d:1c:64:2e:8f:c4:e5:3c:61:b2:
9f:de:1c:e2:4c:dc:97:f9:6d:cb:58:c3:70:b5:26:
b2:9b:f5:72:23:b3:76:86:3d:60:0f:f8:ed:d1:2f:
a1:01:85:59:61:12:13:6f:87:78:e8:e7:5c:fa:f4:
35:5d:39:7f:dc:6e:82:29:ef:66:c0:6d:7c:50:c0:
c1:12:6e:61:d8:34:c9:43:11:3d:ab:42:ab:3e:71:
e7:dd:bd:74:ee:60:7e:a7:36:b9:62:f4:19:e0:f6:
5f:6f:3a:4d:6c:49:28:9f:54:b5:cd:33:13:4c:f2:
34:a7:0b:80:d5:73:2c:10:3c:38:6e:8c:29:a7:34:
76:74:53:f9:13:3d:97:12:bb:cc:8b:5a:87:9b:f7:
6d:3d:68:5f:31:b3:89:21:41:36:6c:08:fa:bd:b1:
32:7d:e7:48:dd:64:ea:37:11:39:b3:c0:64:1c:72:
8f:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:97:69:16:24:AA:54:F3:A8:69:BF:C4:3A:25:7E:D7:57:80:0A:E5
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F1207F368A8B11EEA0E6A47C4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.196.36.0/24
Signature Algorithm: sha256WithRSAEncryption
b7:4e:d4:45:e3:c6:8d:f4:c2:44:db:f9:cb:62:83:ea:d5:53:
f5:7b:30:ea:05:a5:fa:22:67:18:e0:f1:bf:03:70:c5:17:bb:
2d:f2:4f:f9:dd:7c:9c:d3:05:24:78:d1:cb:59:0b:36:93:5c:
88:ee:d3:f5:0d:61:2d:08:bc:bc:50:b4:e3:7a:47:7a:1e:e7:
3c:fb:c5:1d:8c:f6:ab:41:02:6b:77:64:42:87:13:88:3b:65:
d4:61:16:07:3a:d0:18:61:0c:d9:06:43:25:a8:95:a8:1f:b8:
bf:e4:b3:96:60:b2:8d:79:f2:3f:6a:5a:cb:77:0b:47:89:e2:
7e:32:bc:db:fb:dd:c4:11:44:ea:21:ad:63:b2:f6:cd:47:e7:
7b:3a:35:a8:41:69:60:39:b0:0c:64:8c:b9:d0:28:81:ce:8f:
bf:b7:4d:13:94:b3:74:46:4e:2c:6a:8b:f4:da:31:d4:f4:18:
21:b0:1a:d2:d4:89:96:e9:ff:f2:31:2a:f1:a1:67:ea:09:c4:
84:89:16:f4:73:61:28:0d:96:77:ff:94:bb:c2:12:81:c7:32:
66:21:6f:9d:8c:bf:4b:d0:c4:b5:10:4f:02:b0:5f:7b:ca:de:
a3:3a:7f:bd:0d:ad:38:9a:bf:43:c0:d3:38:15:9d:e9:1c:68:
48:42:92:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 9 10:48:13 2025 by rpki-client