Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/FDA660CA088111F09E6D3FB7762E951A.roa
File: FDA660CA088111F09E6D3FB7762E951A.roa (raw, json)
Hash identifier: KWjB5+RcMupa5BzkvMUvhmOGN6zx1TsaTfxotRTEiII=
Subject key identifier: 49:E9:1B:8F:66:F4:73:24:7F:D2:14:21:10:C3:AF:98:38:2F:71:DF
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0175C0
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/FDA660CA088111F09E6D3FB7762E951A.roa
Signing time: Mon 24 Mar 2025 07:31:25 +0000
ROA not before: Mon 24 Mar 2025 07:31:21 +0000
ROA not after: Wed 02 Apr 2025 07:31:21 +0000
asID: 133180
IP address blocks: 154.206.128.0/18 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 95680 (0x175c0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 24 07:31:21 2025 GMT
Not After : Apr 2 07:31:21 2025 GMT
Subject: CN=67e10a4d-cd7a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:58:d9:02:55:f9:43:96:35:39:91:5b:0d:3d:
58:6a:52:4e:cc:65:89:be:f9:6d:68:41:d2:20:7b:
b9:e8:69:d8:21:77:70:ed:b0:a8:87:7c:76:89:bc:
2b:e6:9a:5b:bc:e7:39:d2:0b:37:55:b1:87:1e:6a:
7a:95:1d:d8:ed:f1:be:3d:74:c0:d2:28:ae:73:74:
e2:b3:d9:36:f4:cb:59:df:69:be:33:ec:2e:e0:89:
ab:3e:0e:b8:f4:a4:48:82:51:f6:6d:46:1f:3d:83:
e2:0b:51:ec:18:9d:8e:a2:42:66:8b:1a:c7:a3:33:
83:c9:be:fb:79:2b:cd:e9:12:36:02:14:e4:98:29:
da:47:55:4a:70:4b:de:c4:61:ce:ba:d8:db:c8:80:
4f:e1:ab:b0:0a:67:98:6d:b5:6a:4e:7b:c2:fc:ee:
16:56:25:84:36:60:52:1b:da:6b:68:50:72:4d:37:
5a:60:e5:d4:04:81:5f:a6:a0:df:22:87:70:9b:22:
50:ca:a1:62:01:05:67:3f:e3:33:dc:6c:37:6b:a3:
fe:ca:5d:2f:0a:00:4d:50:4d:e2:46:2e:74:32:d2:
1c:b7:4b:da:b4:e3:ec:e3:a6:65:ee:67:5a:40:5f:
d4:f6:7b:a7:31:74:9c:5f:87:19:f2:ab:35:ea:c1:
9a:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:E9:1B:8F:66:F4:73:24:7F:D2:14:21:10:C3:AF:98:38:2F:71:DF
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/FDA660CA088111F09E6D3FB7762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.206.128.0/18
Signature Algorithm: sha256WithRSAEncryption
a4:f6:05:80:19:00:ce:71:12:cb:6b:07:e4:cd:66:c3:8e:67:
22:40:6b:21:0f:15:84:d9:20:1c:f6:de:3a:27:46:c8:74:2a:
f2:fd:ac:b8:a5:df:ee:86:fb:88:a5:2a:b2:9c:aa:72:bc:53:
33:dd:17:78:bb:7c:59:19:22:bb:1a:55:99:6c:2d:3d:ac:5b:
92:1d:3d:62:3b:dc:7d:1b:b3:b4:0b:ae:1c:b2:46:3f:cf:e6:
8a:55:58:97:93:a6:97:1f:9d:3a:43:dc:33:c0:5a:1a:6a:7f:
a0:fb:45:71:ee:f1:aa:cf:d6:06:75:61:7e:05:e6:2f:d3:a7:
1c:e0:60:5d:4f:b9:c8:b3:4d:16:b7:69:bf:2b:79:5e:7f:76:
39:65:37:ca:b5:2b:74:c8:1b:29:29:94:a5:07:43:03:8c:2a:
8d:04:01:ae:b2:79:3d:53:db:1f:7f:7c:9f:67:8c:2f:74:79:
97:18:87:17:ad:55:3d:b8:31:98:b2:72:04:df:88:6e:5b:60:
9d:fc:00:70:83:19:c5:e7:a2:70:3c:34:1a:91:f2:95:84:de:
ae:5f:0e:49:cf:fe:18:0e:e3:1f:6b:7f:a3:06:69:04:37:70:
62:2d:fa:6d:68:35:84:b6:42:ae:68:05:d3:86:47:33:1e:00:
46:e8:7a:81
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 9 13:21:11 2025 by rpki-client