Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/FCB1CBF8F16311EFAF508CAA762E951A.roa
File: FCB1CBF8F16311EFAF508CAA762E951A.roa (raw, json)
Hash identifier: qHWHRQKt2YO4hUkoXsKw+J0W3kSGqG1MO79nWvzd8FQ=
Subject key identifier: 7B:3A:C3:32:A8:62:33:63:E5:62:D8:D6:CC:F4:2F:0E:BD:A3:6F:52
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 015A8B
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/FCB1CBF8F16311EFAF508CAA762E951A.roa
Signing time: Sat 22 Feb 2025 21:28:41 +0000
ROA not before: Sat 22 Feb 2025 21:28:38 +0000
ROA not after: Wed 26 Mar 2025 21:28:38 +0000
asID: 149513
IP address blocks: 154.201.93.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 88715 (0x15a8b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Feb 22 21:28:38 2025 GMT
Not After : Mar 26 21:28:38 2025 GMT
Subject: CN=67ba4189-4e31
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:17:2d:4d:af:07:4b:cf:97:52:10:f1:f3:9f:
d9:3e:4e:a1:58:24:11:ae:27:f1:5f:60:b4:54:36:
09:17:ef:84:45:63:5e:09:c6:01:9a:5f:6d:44:85:
30:09:70:18:13:2a:ec:90:b6:29:80:aa:84:46:f1:
5e:ff:86:36:17:95:35:f9:c5:53:86:9a:8d:cf:68:
8b:31:a1:f0:4f:e6:2e:f4:19:06:16:e8:8b:e3:17:
02:47:5d:a3:95:90:11:be:28:33:e5:fa:75:00:0a:
4d:4a:1f:dc:15:2c:84:19:2d:75:7f:f5:4a:4a:0a:
af:bb:33:bd:f9:08:30:0b:d4:83:5d:b3:bc:aa:b5:
69:f8:7c:3e:2f:0c:77:06:94:62:32:2c:d1:51:87:
b4:f7:74:71:91:c0:f6:02:8c:3a:cd:04:2b:fd:f8:
1f:15:07:a1:07:45:96:68:41:5a:a7:6e:7e:cc:5f:
e0:b7:a3:40:76:6b:b4:db:17:1a:87:61:61:ff:30:
57:ff:de:9a:39:2c:3c:4f:84:07:f6:fe:db:13:d2:
6f:18:0a:4e:10:27:fb:65:ec:8f:0c:e2:bf:f8:48:
79:9c:32:3d:a0:da:b0:2c:2e:84:20:16:d5:5a:31:
4d:de:31:e3:06:2c:90:f9:53:6a:80:d0:d4:47:2e:
90:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:3A:C3:32:A8:62:33:63:E5:62:D8:D6:CC:F4:2F:0E:BD:A3:6F:52
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/FCB1CBF8F16311EFAF508CAA762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.201.93.0/24
Signature Algorithm: sha256WithRSAEncryption
bd:f6:f6:81:65:32:bd:dc:0d:db:3c:4f:f9:f4:67:01:56:4f:
3c:86:3b:51:c9:30:1b:b3:7c:0c:bd:46:f1:89:db:42:b1:9e:
97:b8:2d:af:ef:04:b0:aa:32:b4:30:56:d8:4f:39:af:6f:4c:
10:c4:2c:ba:fa:e0:7a:c1:83:27:1c:9d:f3:bb:73:b2:81:d4:
6e:63:c2:49:39:6b:f5:9c:f8:30:e1:36:36:27:08:53:90:f7:
f4:ae:03:18:bd:7c:f4:b5:8a:af:12:9d:46:36:03:72:1c:26:
d6:43:b4:85:8b:75:2e:f1:ef:c6:70:dc:9b:c7:f1:c6:4f:69:
5b:f1:db:17:55:23:da:ce:6b:8d:3d:d8:55:f9:ab:34:da:a9:
c2:3c:fd:46:98:2d:50:40:bc:0f:5f:a3:1c:bc:31:48:28:c0:
45:2d:09:9e:03:01:7d:d7:44:de:d5:84:bf:08:57:19:3b:47:
23:28:0c:ef:3c:74:38:51:a3:f9:07:7a:a5:07:69:4d:03:33:
9e:c1:0f:c8:f9:2d:c5:ea:7c:79:e2:9d:35:f8:ee:56:73:7d:
d8:03:6a:9a:79:6d:a1:45:b9:a9:77:c0:fb:01:25:12:f6:9d:
a4:c9:99:a1:e9:0f:bd:64:6d:72:0c:61:e3:83:3a:66:ab:a4:
e4:7a:3c:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 9 06:32:49 2025 by rpki-client