Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/BC0D36A8F88111EF9A1AFD5C762E951A.roa
File: BC0D36A8F88111EF9A1AFD5C762E951A.roa (raw, json)
Hash identifier: i0TyVoRNjEmjD31JOBRQkJB9IidKOSEgDzonaNahVv4=
Subject key identifier: AB:EE:D2:F7:BE:31:88:3F:9D:27:6A:D4:79:D1:E5:54:9C:BF:D6:0C
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 014279
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/BC0D36A8F88111EF9A1AFD5C762E951A.roa
Signing time: Mon 03 Mar 2025 22:49:16 +0000
ROA not before: Mon 03 Mar 2025 22:49:12 +0000
ROA not after: Sun 30 Mar 2025 22:49:12 +0000
asID: 151407
IP address blocks: 45.196.220.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 82553 (0x14279)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Mar 3 22:49:12 2025 GMT
Not After : Mar 30 22:49:12 2025 GMT
Subject: CN=67c631ec-e61d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:5f:45:bf:5b:3a:77:34:bd:aa:73:a0:db:d7:
7a:60:22:73:de:72:66:cf:d4:13:a3:74:66:26:88:
4a:75:b4:b2:ed:f9:c9:a1:83:a0:b8:f7:9e:99:fe:
4e:f3:17:94:49:68:9a:0e:94:ea:3a:5c:6b:51:f5:
6b:15:a3:0a:81:ed:6b:58:b9:b9:f7:46:3a:da:01:
95:66:76:28:ed:17:f1:cd:b8:62:d9:66:cf:2d:bc:
2e:62:72:c2:c2:11:2c:1f:bb:56:15:51:54:a1:3f:
5e:0d:fd:83:a3:d2:12:96:ac:d1:03:9d:e1:03:fc:
11:a8:3e:3b:ce:1f:88:ff:66:9a:80:2e:e6:56:40:
51:38:94:21:8b:b3:15:32:fb:4a:68:b5:1f:fc:c1:
76:6b:ce:d7:25:65:43:ea:7c:50:f7:22:81:77:08:
b2:12:9b:f6:5e:c1:34:13:51:a2:cb:f1:71:bd:76:
7d:95:be:05:95:2f:fe:8d:e7:a8:43:04:14:6f:7f:
0e:35:ab:e3:db:4d:1b:92:ad:7e:10:a2:be:00:95:
9a:05:4a:9d:72:bf:59:95:7d:31:3b:57:4b:ca:52:
9d:b4:1e:16:b2:44:15:d9:18:1c:47:ed:bd:27:14:
18:a9:fc:ef:af:c6:47:d8:33:da:9b:5c:6d:12:03:
e9:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:EE:D2:F7:BE:31:88:3F:9D:27:6A:D4:79:D1:E5:54:9C:BF:D6:0C
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/BC0D36A8F88111EF9A1AFD5C762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.196.220.0/23
Signature Algorithm: sha256WithRSAEncryption
10:92:f5:ee:05:a5:61:4e:3c:15:c7:7d:3d:0d:bb:94:b0:6e:
82:1b:22:48:9d:5b:b7:e3:8a:03:f6:fa:96:1c:4d:88:c3:e5:
7a:92:59:e3:63:cf:b5:57:c1:c7:fe:de:9c:04:a8:52:46:4c:
60:65:0a:ce:0a:13:81:28:29:68:d4:36:4b:b1:46:63:73:c9:
82:f9:92:57:27:e8:7c:03:87:cf:78:c9:93:b3:6d:72:60:5c:
57:6f:7f:8e:cc:fa:8e:2f:10:ee:01:4d:77:41:2a:f5:04:28:
f9:d1:98:8e:f6:73:48:3a:1c:9b:75:af:f1:2a:c2:03:e8:7d:
04:6d:eb:5d:24:19:40:51:23:7e:43:df:0a:c0:4d:86:81:ee:
7e:42:81:71:0f:b8:39:68:7e:83:c7:36:e7:8f:4d:fd:2e:b5:
82:b5:b9:5d:ea:d1:ab:bb:3d:b1:79:24:a9:8a:1d:48:39:ce:
e7:89:40:8a:6e:59:0b:68:fb:6a:38:42:19:6c:96:24:a6:9d:
6f:c8:69:78:3c:19:b1:73:a9:44:06:af:ab:c3:76:c6:78:78:
90:e5:be:8f:78:a2:3d:90:cb:b3:cd:de:9d:82:67:35:5e:91:
63:1d:c4:14:fe:90:36:78:93:43:eb:17:23:ad:28:de:fa:b9:
fc:e0:aa:09
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 06:13:01 2025 by rpki-client