Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/FCD9164C8A7E11EEA3701E514AD9E6FC.roa
File: FCD9164C8A7E11EEA3701E514AD9E6FC.roa (raw, json)
Hash identifier: SIL6kKdEVS0k7gINZhQhc+kIaf8iTfBi2J39vHLcBJE=
Subject key identifier: 80:98:82:0E:3F:5D:ED:4A:FA:FA:7B:76:05:66:95:1E:8A:0B:29:A1
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 52A4
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/FCD9164C8A7E11EEA3701E514AD9E6FC.roa
Signing time: Fri 24 Nov 2023 04:07:31 +0000
ROA not before: Fri 24 Nov 2023 04:07:27 +0000
ROA not after: Tue 26 Dec 2023 04:07:27 +0000
asID: 62240
IP address blocks: 154.195.105.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 21156 (0x52a4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 24 04:07:27 2023 GMT
Not After : Dec 26 04:07:27 2023 GMT
Subject: CN=65602183-5c68
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:10:31:f3:81:92:6f:4b:cd:a5:d9:57:e8:bb:
9b:1c:24:5d:f4:e5:c7:9d:5c:66:e2:ac:df:a0:c8:
f7:ab:b8:b4:ec:ef:12:2e:30:60:d5:63:d2:8f:74:
d5:bb:05:c4:35:64:08:33:27:c8:8e:0c:10:3d:5c:
c2:86:a2:c4:0c:65:23:35:45:cb:73:88:3a:a3:d7:
74:cb:c0:d6:5e:d3:2f:bb:f3:13:97:35:57:83:a9:
15:cf:68:21:95:80:82:ef:f3:7b:56:7e:9a:ba:33:
e6:52:b1:c2:7e:56:6f:4c:8b:0f:c1:32:91:04:bd:
e2:69:c2:9d:c7:09:3e:c9:5e:f7:97:02:23:7f:68:
9a:89:ab:92:e6:19:eb:2f:dc:be:f0:f7:df:0a:49:
dc:49:e1:0d:3d:40:1c:1a:cb:e9:0f:72:cf:c3:8d:
08:ba:13:0f:ae:ba:48:d3:ba:5d:3d:bb:8f:b3:54:
60:86:55:b4:22:24:15:ce:ec:a6:af:22:4f:8f:5b:
42:75:94:82:1b:56:0a:0b:88:5b:e3:5e:a4:84:64:
55:79:92:73:95:71:bd:4b:44:51:e2:29:a4:84:1e:
71:f4:7b:5c:d0:6f:d2:64:33:8e:c2:d4:c3:a7:0b:
13:9f:a2:21:5a:e8:23:7c:19:a2:0a:3b:74:22:cf:
cd:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:98:82:0E:3F:5D:ED:4A:FA:FA:7B:76:05:66:95:1E:8A:0B:29:A1
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/FCD9164C8A7E11EEA3701E514AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.195.105.0/24
Signature Algorithm: sha256WithRSAEncryption
0e:94:85:8a:7e:b2:ab:38:2d:03:72:4b:e0:e0:0e:e9:9c:75:
74:9d:8c:d2:ed:39:f6:95:91:a6:06:63:4b:10:0a:75:c6:d4:
ae:e0:35:63:08:35:30:90:51:f2:d4:b6:8f:fb:86:03:92:ec:
f2:a4:0e:30:6b:f4:6c:49:bb:47:a9:13:00:a3:88:ab:61:5a:
e1:9b:96:03:74:67:f1:10:37:1a:a3:73:11:19:de:54:ba:c8:
3f:56:2f:51:0d:ba:8d:ae:30:3f:97:e2:de:c8:00:16:43:53:
7f:73:ae:36:31:a8:68:17:45:53:5b:38:c0:fa:24:24:fd:fc:
f2:7b:8b:92:f8:28:06:ed:7c:61:54:78:e2:e3:5a:3e:07:06:
3f:4b:10:b8:e3:6f:fb:15:28:7d:01:14:c0:22:58:95:fb:cb:
6a:c8:f9:03:b1:6e:cf:37:b1:dc:f4:9f:e2:79:b2:bf:a0:77:
9e:4e:79:e7:48:9d:46:6f:6d:39:1d:45:b2:9a:94:d4:64:14:
38:56:8d:87:e6:b7:70:95:0b:4a:53:65:ce:3e:ae:7c:db:83:
21:69:19:e7:17:22:a2:4d:ec:cf:3b:8e:dc:87:ef:09:26:77:
9a:bb:c2:b9:4a:89:1c:d7:d3:99:01:1c:6a:f8:84:d8:af:d1:
d6:48:52:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 9 11:05:03 2025 by rpki-client