Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F4D260EEF1C411EFB55B8687762E951A.roa
File: F4D260EEF1C411EFB55B8687762E951A.roa (raw, json)
Hash identifier: fx93zXs0CXsYCYIAcdGMd7fTlzpm3VpMMP3dlFCMGg0=
Subject key identifier: 60:D2:27:B4:A8:96:86:58:A1:85:EB:08:31:6F:54:B8:E8:29:D6:A9
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 015B23
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F4D260EEF1C411EFB55B8687762E951A.roa
Signing time: Sun 23 Feb 2025 09:02:50 +0000
ROA not before: Sun 23 Feb 2025 09:02:46 +0000
ROA not after: Mon 24 Mar 2025 09:02:46 +0000
asID: 996
IP address blocks: 154.205.184.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 88867 (0x15b23)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Feb 23 09:02:46 2025 GMT
Not After : Mar 24 09:02:46 2025 GMT
Subject: CN=67bae439-dc31
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:4c:ad:cd:bf:f5:b0:5d:ee:b5:fa:25:e1:98:
4c:55:6d:29:19:b5:a3:ed:b3:16:89:10:7d:43:52:
20:2e:35:91:73:2c:f3:59:5d:58:ca:8e:f4:9f:79:
a1:8a:70:2d:48:8f:bd:27:73:9d:63:47:a6:b6:80:
7f:81:1a:cf:ce:ec:86:da:b3:23:d6:2e:f6:e9:df:
14:e3:25:35:87:6e:44:c8:6b:25:89:a2:ef:cc:42:
91:d4:82:36:cb:94:5f:82:1a:82:f2:4b:c8:13:48:
fe:24:78:b3:83:e5:43:68:3e:17:9b:f6:19:96:ca:
cb:17:c8:c7:b7:3f:0d:26:e5:00:1d:0c:be:07:c9:
26:de:a4:5b:22:fe:cf:51:63:31:2e:e4:95:e5:f9:
66:35:2a:9d:6e:0c:bc:0a:0c:53:d3:1a:69:b2:5d:
20:56:0d:df:ca:1c:9a:32:ef:d0:26:53:ef:7e:66:
32:d4:f4:b3:4f:d6:8b:21:b3:58:a4:d5:70:fd:9e:
cb:dd:a7:e2:cf:c8:5b:0b:bc:1a:47:28:fb:17:3f:
80:2d:36:ab:5f:28:f4:fd:c6:c6:17:79:5a:ee:83:
52:f8:3e:cf:b8:09:e1:1e:af:85:e5:cc:d7:3b:f2:
07:82:63:e4:4e:35:61:cd:b1:1c:02:e2:d0:8a:de:
71:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:D2:27:B4:A8:96:86:58:A1:85:EB:08:31:6F:54:B8:E8:29:D6:A9
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F4D260EEF1C411EFB55B8687762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.205.184.0/23
Signature Algorithm: sha256WithRSAEncryption
39:be:ef:d3:67:0a:b5:dd:e5:1c:88:f7:25:1f:d0:c5:cf:54:
4f:c3:4b:b2:f9:da:f1:d1:34:3d:b8:78:98:6b:a5:6c:46:51:
fb:97:d0:5b:42:e9:41:98:76:5a:db:20:55:1d:fe:70:dd:c4:
11:f9:0b:7b:57:97:35:f8:c0:cc:2f:83:76:4d:94:41:6c:4b:
c8:fd:8c:02:c1:db:2c:88:ca:20:85:57:4a:37:86:c2:0d:35:
bc:e9:81:e9:84:2a:b3:b3:45:79:36:6f:45:93:d6:d9:05:6e:
e8:7c:f8:d7:66:26:ce:24:49:d5:31:27:09:e4:8b:70:0a:52:
99:2d:71:1a:20:fb:a6:72:31:e0:bd:bc:32:fe:f5:3b:b4:12:
e1:53:3f:e8:56:a8:fd:19:81:13:9d:2f:9f:08:73:9b:86:e8:
32:d7:a6:ec:98:69:5d:16:0d:3b:74:de:18:4c:df:4d:92:de:
f1:4a:b5:c1:df:38:3f:a4:69:75:33:cf:94:06:52:aa:e6:4f:
77:dd:e5:e5:e1:c3:09:a8:8e:02:21:ba:d1:f5:17:69:99:2b:
7f:ae:04:34:ec:5a:a2:d9:21:4b:cf:a1:1a:81:83:65:db:f8:
0c:c5:51:bd:46:64:a9:bd:b7:93:7f:c5:8f:ef:02:28:b4:4d:
08:47:2d:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 9 12:15:11 2025 by rpki-client