Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/42408EB8326611F19222BCD4DAE4EC9C.roa
File: 42408EB8326611F19222BCD4DAE4EC9C.roa (raw, json)
Hash identifier: J+8EWQH1U/KsILx/LPl86NK8K6r9ddD6S49n6PAQqOI=
Subject key identifier: 95:5A:36:89:59:1D:5C:43:F8:4C:FB:DB:77:EB:14:DA:CA:14:F7:2F
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01C375
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/42408EB8326611F19222BCD4DAE4EC9C.roa
Signing time: Tue 07 Apr 2026 09:43:41 +0000
ROA not before: Tue 07 Apr 2026 09:43:36 +0000
ROA not after: Fri 17 Apr 2026 09:43:36 +0000
asID: 214590
IP address blocks: 154.222.76.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 115573 (0x1c375)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 7 09:43:36 2026 GMT
Not After : Apr 17 09:43:36 2026 GMT
Subject: CN=69d4d1cd-1e4f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:df:d2:dd:a7:2b:9b:65:fa:c9:c9:87:d7:4b:
f2:f1:ec:ca:d7:d4:f6:63:02:16:d4:19:c8:27:60:
98:55:42:36:a2:38:3f:dd:3c:bd:39:96:e5:46:b9:
31:71:e0:4c:e8:9d:d5:53:c1:0f:9b:88:1f:34:d4:
b9:6e:70:5d:eb:7b:bd:13:8b:69:62:a4:55:d8:9a:
67:c8:8b:55:6b:9f:73:be:20:d8:12:03:0e:27:1b:
58:74:74:8a:0a:16:ca:0a:98:77:91:d3:c6:9b:18:
d5:b4:37:85:3c:ac:77:20:84:4b:73:41:ce:50:aa:
20:3c:10:08:10:de:55:c4:9d:c4:53:4d:22:af:e7:
d9:b6:de:ad:51:cf:a6:5a:62:d1:83:d1:00:8b:f9:
1e:e5:e7:33:4f:b6:d0:68:62:bd:0c:9b:b3:ca:05:
55:b3:a3:47:af:11:85:af:b6:1b:17:db:1d:4f:81:
90:51:12:55:f9:e1:a0:cc:57:7b:bc:a1:d4:91:8c:
62:a9:20:18:23:f3:c0:9a:b8:c1:e0:52:b7:81:c0:
84:47:cf:89:bc:a0:7f:a4:ec:b8:c9:a5:34:ea:b5:
13:9a:61:72:1c:17:46:b4:80:0d:39:ad:9f:3e:eb:
40:c9:8c:65:51:10:98:03:91:9e:06:3d:66:ae:cf:
cc:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:5A:36:89:59:1D:5C:43:F8:4C:FB:DB:77:EB:14:DA:CA:14:F7:2F
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/42408EB8326611F19222BCD4DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.222.76.0/24
Signature Algorithm: sha256WithRSAEncryption
01:f8:4e:f6:7b:5e:ff:10:30:bb:59:9c:b3:86:a5:37:14:83:
14:af:0c:a7:6d:85:24:d0:20:3c:95:9f:52:cb:75:e9:82:89:
32:7c:86:bd:2b:66:79:55:6d:08:3f:fb:d5:fc:be:cc:62:58:
7a:5a:dd:72:34:26:fa:af:4f:50:66:08:9b:fc:3f:37:5e:75:
72:a7:74:0c:ee:25:c4:d5:68:27:9d:56:75:a6:a7:52:2d:fb:
5f:19:d5:20:28:92:09:58:ae:60:a3:1b:1b:a5:5a:95:7e:cd:
37:ef:d9:48:f3:75:44:9f:42:a8:69:1c:97:f3:07:16:9a:11:
ee:68:e8:60:2e:04:fe:8f:22:b0:ca:eb:e9:22:98:26:17:cf:
ad:19:aa:fb:8e:2a:37:60:cd:27:af:a5:99:e5:73:66:f2:0e:
b3:5e:37:a7:15:24:88:7c:c3:59:f6:f6:7a:b3:74:a3:7f:35:
c0:72:82:1e:95:27:ca:d4:47:64:a4:48:5d:cd:ea:b0:67:63:
b8:b2:f4:90:b2:86:83:8f:28:dd:54:9b:3c:84:95:fb:f9:c1:
b6:aa:3d:af:3e:c1:b2:0b:72:13:91:2f:94:d9:36:2b:14:b5:
d4:33:72:e1:71:d8:1d:90:12:a5:bc:21:74:43:8d:bd:ed:af:
98:9f:12:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 23:55:42 2026 by rpki-client