Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/09B0724AB78B11EFA638B968762E951A.roa
File: 09B0724AB78B11EFA638B968762E951A.roa (raw, json)
Hash identifier: MrJeWRLOVg4HzWEgGpFQfaWH74r6Xk+jZXMiG6h74vg=
Subject key identifier: CE:F1:C2:F5:7A:38:A2:8D:BE:B8:35:E3:7D:F3:3B:4E:78:32:0F:B2
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: E287
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/09B0724AB78B11EFA638B968762E951A.roa
Signing time: Wed 11 Dec 2024 06:42:06 +0000
ROA not before: Wed 11 Dec 2024 06:42:03 +0000
ROA not after: Thu 16 Jan 2025 06:42:03 +0000
asID: 6079
IP address blocks: 45.205.88.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 57991 (0xe287)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Dec 11 06:42:03 2024 GMT
Not After : Jan 16 06:42:03 2025 GMT
Subject: CN=6759343e-8994
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:50:99:14:5d:ac:ff:f1:66:4a:1a:ea:2c:91:
93:04:63:d1:97:b9:d2:a0:fe:d9:e8:44:91:8f:8f:
0b:21:a4:1e:bc:ae:cc:d6:8a:7d:5b:6b:70:0e:d0:
b1:7e:8c:ad:29:64:9b:81:d2:30:13:43:6d:4d:cf:
5e:1f:48:0f:c0:18:fb:31:be:d0:2e:c8:db:6e:46:
3c:b2:49:62:60:aa:2e:23:04:00:02:58:1a:be:f5:
11:3b:56:79:a5:12:33:81:7f:76:99:41:80:f8:9c:
d2:96:9a:5f:50:6b:19:1d:b0:1c:19:c5:f2:8b:e5:
cd:a3:e2:5d:38:fb:57:8e:58:10:8f:ec:31:4c:94:
d0:fe:ef:c5:0b:43:8f:d0:b2:e1:ce:08:a7:18:c7:
13:34:3e:9b:5e:65:f8:82:7b:08:c3:ae:dd:ed:96:
b3:26:8f:1d:dc:e9:ca:c7:2c:2c:50:f8:3b:7c:f7:
d5:90:a1:a2:48:7b:85:b2:68:e6:55:21:79:9a:4d:
4f:77:af:db:34:14:30:bc:8e:fd:f8:2e:67:b2:32:
b9:d0:3c:c4:d8:1b:4f:2e:46:87:e9:08:4f:8d:04:
54:5b:f0:22:42:c5:81:75:04:f2:6a:dd:4d:63:08:
ea:fb:31:3b:9f:c5:37:20:28:56:8b:c7:b5:62:95:
d9:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:F1:C2:F5:7A:38:A2:8D:BE:B8:35:E3:7D:F3:3B:4E:78:32:0F:B2
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/09B0724AB78B11EFA638B968762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.205.88.0/21
Signature Algorithm: sha256WithRSAEncryption
ae:30:53:29:55:9e:ad:7d:a4:77:2d:2d:c9:b6:a6:4c:d0:49:
f9:fe:95:b7:8a:1e:53:e5:28:db:0a:8e:fb:b1:61:46:27:1f:
c6:4d:71:79:9a:27:2c:d7:c8:39:f8:af:ed:e0:9d:a2:4a:e9:
2d:40:6e:29:78:99:44:68:63:97:53:82:4d:80:11:d4:a2:bf:
d6:81:2c:0f:e2:4e:1e:9c:a4:53:4c:c8:34:e9:a4:e9:75:b9:
2b:52:56:4a:a1:86:37:a2:57:c3:0b:ad:b6:f1:ad:b2:c4:80:
13:d3:a8:0d:98:0c:35:7d:5e:1c:ee:68:52:14:eb:2c:bf:ee:
26:90:31:8e:c5:11:ff:8a:09:c7:b2:4c:9b:db:9a:71:23:68:
01:e9:04:4e:23:99:05:e7:38:5c:83:00:26:96:50:74:70:11:
b9:58:c1:4c:26:17:2d:44:bc:63:c0:3f:fb:1f:e4:cc:ad:db:
7c:6c:f1:97:17:23:98:d0:5d:88:c4:9a:9c:12:e6:ec:c0:3d:
77:f5:8f:95:19:1d:fa:aa:14:48:52:11:74:4c:aa:fe:b6:39:
9a:fd:de:57:c9:e0:25:13:26:56:7e:e2:0c:9f:a5:93:93:b8:
1f:e4:be:40:09:5a:86:7f:e3:b5:06:41:ca:a0:89:8c:fb:a3:
bb:5b:75:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 09:40:10 2025 by rpki-client