Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/03D52D0EB92811EF9E9A708C762E951A.roa
File: 03D52D0EB92811EF9E9A708C762E951A.roa (raw, json)
Hash identifier: N8a1TMiPhpKo3TAvzJgGhJg2bQndllHylUJVEHoHYzw=
Subject key identifier: 7F:AD:B6:3A:DC:0F:DF:09:06:6A:EE:A2:71:75:F1:04:27:E8:B8:89
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: E31F
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/03D52D0EB92811EF9E9A708C762E951A.roa
Signing time: Fri 13 Dec 2024 07:58:19 +0000
ROA not before: Fri 13 Dec 2024 07:58:15 +0000
ROA not after: Sat 25 Jan 2025 07:58:15 +0000
asID: 44559
IP address blocks: 45.199.220.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 58143 (0xe31f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Dec 13 07:58:15 2024 GMT
Not After : Jan 25 07:58:15 2025 GMT
Subject: CN=675be91a-ce0f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:61:62:8b:a6:a6:30:bb:93:20:33:e2:22:78:
99:03:31:8f:e7:26:53:be:c7:5e:ea:da:dd:53:38:
83:df:15:f5:87:29:f1:eb:66:ab:52:c2:9c:6b:17:
c0:23:e7:a2:cf:27:57:de:ac:77:5c:a0:a3:8d:e5:
12:cb:e9:41:07:7d:e0:55:69:ca:b2:8f:c2:f9:e8:
cb:0c:5b:9d:1e:95:e3:c0:33:2d:9a:61:82:ff:06:
03:25:19:57:c0:9b:fa:51:28:21:15:d3:2a:82:6b:
b6:a4:46:2d:41:c3:42:fe:55:1b:69:28:c1:a6:cb:
ea:f8:13:f3:6e:48:2b:b5:d2:b1:db:f3:d8:ec:b1:
6e:77:f3:6e:b8:71:f6:af:11:aa:ea:a4:88:00:7f:
f9:6c:a3:3a:0d:99:d9:a3:4b:68:e0:2f:60:cc:d0:
d0:ba:ec:08:b9:ad:de:30:5e:53:de:2f:23:c9:d9:
e8:58:e5:d5:44:9f:5e:60:76:04:d1:9b:2d:2b:84:
e3:f3:c4:91:4a:46:33:62:b2:9c:7c:52:8e:5a:c0:
53:7b:dc:21:ce:33:b5:f3:4b:06:f7:0c:61:b1:95:
3d:72:ac:6e:12:1f:ba:f0:72:e6:03:ff:3e:4a:d6:
34:ee:3b:07:20:48:8b:9e:8e:29:7f:03:f9:7b:d0:
ae:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:AD:B6:3A:DC:0F:DF:09:06:6A:EE:A2:71:75:F1:04:27:E8:B8:89
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/03D52D0EB92811EF9E9A708C762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.199.220.0/24
Signature Algorithm: sha256WithRSAEncryption
83:34:e9:8a:8e:9c:7c:de:4c:41:17:3d:fa:a6:e5:7f:e8:7d:
a3:e9:ab:c5:98:1b:cb:e1:b5:27:38:98:b9:c1:2e:4d:9f:cc:
e1:2a:29:00:b8:75:6d:e5:8d:51:35:d3:d9:c6:ad:81:cd:00:
f1:45:96:ce:eb:ff:7f:fc:9c:d6:6e:b5:32:3c:c5:a1:ae:46:
de:6f:d5:89:12:cc:a6:6f:0d:c1:8f:05:c0:10:c0:0c:48:0e:
9a:3a:56:9a:55:90:02:cf:f3:f5:0a:c3:1e:a4:c2:c6:42:b8:
4b:9d:ac:3b:51:ff:97:67:16:36:92:eb:ec:86:f2:11:78:a5:
51:37:68:22:32:4b:db:2c:e6:b6:a8:d0:7d:e2:cf:dc:d5:0e:
3e:a5:30:de:8a:e9:84:2a:22:6a:3b:68:74:22:b0:47:d9:b5:
55:36:19:f2:99:51:5d:a9:3a:10:11:64:17:2b:b6:f8:9b:96:
2c:23:17:a1:de:42:55:12:ba:a4:e4:69:b4:61:0d:57:14:cc:
e3:75:4b:dc:78:4d:db:0c:06:2f:ec:9f:51:e8:28:96:3a:7f:
39:2d:e5:94:28:97:c2:08:8d:e3:79:ff:17:c2:c7:ce:7d:59:
27:dc:fb:91:b9:5d:ee:79:2f:54:fe:03:67:f8:6d:dd:4c:ff:
ff:6c:15:7b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 09:50:51 2025 by rpki-client