Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/03A17B7ACE8211EFA361A552762E951A.roa
File: 03A17B7ACE8211EFA361A552762E951A.roa (raw, json)
Hash identifier: 4HLyrYzWNK25TygcwDNM7c9jWZMJkILmxUkTvjy0wB0=
Subject key identifier: A5:B3:42:B7:8F:43:B8:BA:F6:14:0F:AB:6F:C7:66:95:37:CB:76:FD
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 0103AD
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/03A17B7ACE8211EFA361A552762E951A.roa
Signing time: Thu 09 Jan 2025 12:05:27 +0000
ROA not before: Thu 09 Jan 2025 12:05:24 +0000
ROA not after: Sat 01 Feb 2025 12:05:24 +0000
asID: 17561
IP address blocks: 45.203.17.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 66477 (0x103ad)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Jan 9 12:05:24 2025 GMT
Not After : Feb 1 12:05:24 2025 GMT
Subject: CN=677fbb87-d584
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:4a:10:50:1e:4c:a1:12:3f:0d:bd:43:6f:d7:
ae:79:7d:8a:e7:c9:c4:d1:8d:9d:4c:bf:07:30:c9:
a5:1e:a9:04:2b:3d:73:97:14:15:5a:0c:d3:f6:22:
68:be:a2:35:3b:fa:44:37:ce:da:4b:82:5f:5b:1c:
c8:f4:63:55:38:cf:b1:64:6a:e2:6c:91:89:8d:ec:
01:0f:e3:21:76:65:8b:48:73:9e:ed:81:61:3d:09:
12:ac:1c:1d:80:8e:6c:52:87:a6:14:a1:ac:b0:81:
9f:1f:94:68:eb:dd:49:48:a5:6e:26:f0:73:a7:e2:
5b:18:a8:9d:1e:8a:20:9f:ac:c2:82:df:74:cd:e2:
9c:52:99:0e:8c:b2:86:ad:19:be:35:05:e7:4d:93:
47:86:aa:c3:29:58:c1:bf:1c:bb:27:e9:35:6f:51:
55:6f:0e:52:dd:45:1d:7b:db:bc:d3:11:13:95:67:
96:4b:a4:76:b0:fe:20:39:65:ac:5e:da:26:ec:7c:
d1:c4:03:f2:c4:b6:9e:05:b7:ec:d9:1d:50:0e:19:
62:59:13:c4:c1:12:6b:fb:25:ab:31:21:f7:69:20:
c9:14:4d:3c:88:b6:ad:42:53:ee:af:8e:1e:4d:6d:
65:b7:78:49:b9:ba:7a:dd:3a:5a:5f:be:48:40:4b:
cb:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:B3:42:B7:8F:43:B8:BA:F6:14:0F:AB:6F:C7:66:95:37:CB:76:FD
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/03A17B7ACE8211EFA361A552762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.203.17.0/24
Signature Algorithm: sha256WithRSAEncryption
67:43:78:73:db:ae:62:70:3e:56:b5:29:e8:9b:86:ea:c5:4f:
38:2a:b0:1e:65:7a:6f:15:c6:8b:64:a6:47:b7:8f:38:c3:35:
d4:22:2e:a0:17:ad:57:64:a3:cd:70:f5:d0:42:61:93:b9:0d:
4f:6c:73:21:7b:23:f1:93:a4:48:7e:4d:64:ce:43:34:74:9a:
7b:de:86:a5:69:1d:b7:5d:a0:ae:7e:85:0d:55:b7:46:94:a7:
29:44:43:5b:5b:2e:b5:1a:ee:c8:d5:a8:b3:06:c9:bb:f4:cf:
95:6c:96:f3:47:7a:5d:67:3a:8b:18:51:95:4c:73:08:40:b2:
12:9a:f6:65:0f:cd:44:20:0f:af:9d:f5:a1:c7:75:2c:8e:79:
06:cf:8f:03:c3:32:11:3f:98:8c:f9:e0:0e:17:f2:5e:98:f8:
c9:df:8d:79:fd:2c:d9:15:e8:39:1b:28:dd:27:60:b5:95:eb:
00:8d:4d:ac:a4:d1:58:bb:42:c8:c3:8e:ef:ab:23:22:93:f8:
89:7e:77:72:56:86:e7:bf:8f:0b:22:c7:42:40:23:52:71:8b:
ac:0c:de:d5:54:11:c0:34:18:b8:25:a7:f8:fd:c7:74:28:a5:
39:06:7e:03:be:c6:7f:b3:5f:9a:e6:88:0b:1b:a9:23:ce:c4:
ae:6d:e5:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 09:52:44 2025 by rpki-client