Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/FE4BCF88F4EF11EF963D698F762E951A.roa
File: FE4BCF88F4EF11EF963D698F762E951A.roa (raw, json)
Hash identifier: AxR0Vh1iK6Iarobuu1bTiECbD/HFSv2nzrfNBAhs2IE=
Subject key identifier: 1A:F8:8A:C1:8F:8A:21:D6:03:C1:2E:5B:0E:91:D6:2E:AE:45:70:2D
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 016760
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/FE4BCF88F4EF11EF963D698F762E951A.roa
Signing time: Thu 27 Feb 2025 09:48:27 +0000
ROA not before: Thu 27 Feb 2025 09:48:24 +0000
ROA not after: Wed 26 Mar 2025 09:48:24 +0000
asID: 62240
IP address blocks: 154.196.85.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 92000 (0x16760)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Feb 27 09:48:24 2025 GMT
Not After : Mar 26 09:48:24 2025 GMT
Subject: CN=67c034eb-ebb1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:c6:af:45:49:78:bb:fc:85:eb:3e:92:65:42:
29:fe:b3:32:c8:11:57:69:90:b4:71:69:e8:ed:6e:
df:7a:92:9c:bd:36:dc:ea:bb:01:8a:67:78:fa:a5:
ff:d6:c1:87:ff:35:d2:be:f8:c8:f6:81:01:8f:86:
5f:08:27:2a:f1:22:8f:0a:b1:1d:2c:28:8b:d6:8a:
2b:36:2d:f5:6d:aa:16:12:18:0b:07:31:96:e8:e2:
75:f1:19:bd:68:17:a6:28:09:72:ee:92:a6:c8:eb:
f6:25:85:18:9c:85:c0:26:4d:9e:79:57:9c:95:f6:
36:2d:85:3a:29:d3:bc:12:8c:13:96:1e:cc:23:c7:
24:43:5c:ad:d4:f7:75:5e:f0:41:73:67:67:8c:36:
8a:14:f7:e3:22:74:a9:85:77:91:d2:93:58:1e:a1:
a2:55:be:21:7e:4f:50:57:9f:f6:bf:44:fc:3c:45:
b4:63:b8:91:23:1b:29:66:36:52:af:c0:01:69:da:
b0:00:67:eb:e4:7f:10:1d:2c:06:63:52:a7:5e:26:
29:d4:80:f2:ff:e3:e9:c5:a3:86:14:52:04:fa:99:
38:8f:b5:ae:51:14:71:18:ec:b1:50:34:72:9a:ac:
fd:b9:e6:51:d4:1b:80:b9:63:76:e1:0e:0f:70:9e:
45:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:F8:8A:C1:8F:8A:21:D6:03:C1:2E:5B:0E:91:D6:2E:AE:45:70:2D
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/FE4BCF88F4EF11EF963D698F762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.196.85.0/24
Signature Algorithm: sha256WithRSAEncryption
70:b1:f5:70:dd:78:a7:ff:ce:c3:79:69:75:be:af:89:c4:86:
a2:79:a8:49:56:b2:ee:f8:4e:ce:e5:4e:b8:31:c6:91:8c:95:
87:27:42:3b:df:de:15:5c:e9:92:86:b4:c3:d2:2f:66:21:fd:
e9:1c:27:ec:ac:b8:a2:03:a6:c7:ce:0e:ec:42:ab:06:ab:ad:
52:39:18:41:c9:ea:a9:43:1e:d2:0c:9c:be:63:af:d2:bd:d1:
78:31:62:9f:52:1b:68:bd:f2:97:26:e7:18:61:cd:33:aa:f6:
d0:4c:e0:4b:4c:ec:30:36:ef:49:e5:b1:a0:2e:e2:79:dc:80:
df:45:f8:9e:e4:46:37:0f:29:20:b1:6d:3b:f9:88:db:80:a5:
86:1a:46:6f:19:8f:0b:fc:1b:9d:f7:6b:81:1f:d5:30:49:7a:
7f:5b:5c:68:e3:3f:85:81:d4:67:38:5e:87:97:c1:35:cf:8c:
69:32:38:1b:be:ab:57:38:0e:6e:dd:ff:1a:80:f6:07:31:48:
32:a2:6e:46:48:17:9b:32:2b:17:ba:32:23:6d:2c:a1:16:0a:
13:91:13:c4:91:23:25:6b:a0:43:b0:e7:8a:cc:b0:3b:cc:ca:
ce:4d:7c:b7:33:2f:d0:90:b2:8a:c9:f6:ef:2e:9c:8f:40:06:
cd:d8:39:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 9 06:50:02 2025 by rpki-client