Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/1063A864B92A11EFA8F85999762E951A.roa
File: 1063A864B92A11EFA8F85999762E951A.roa (raw, json)
Hash identifier: CcjLz2Zoc8zORW1xbA7mJIl0xgIy2jsQs6Q46+NavHE=
Subject key identifier: C6:E2:E4:B1:0A:48:4A:82:ED:15:28:C4:29:3A:FD:3E:77:4F:84:01
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: E339
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/1063A864B92A11EFA8F85999762E951A.roa
Signing time: Fri 13 Dec 2024 08:12:59 +0000
ROA not before: Fri 13 Dec 2024 08:12:55 +0000
ROA not after: Sat 25 Jan 2025 08:12:55 +0000
asID: 202656
IP address blocks: 45.199.208.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 58169 (0xe339)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Dec 13 08:12:55 2024 GMT
Not After : Jan 25 08:12:55 2025 GMT
Subject: CN=675bec8b-c0bc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:e8:f5:ea:d4:61:31:f6:7b:43:97:8e:29:7f:
79:54:e2:25:bb:aa:41:e0:29:ef:4d:e8:a0:19:f0:
f7:c8:17:5a:72:dc:53:a0:e8:8d:85:20:cf:ee:6c:
fe:91:44:0a:7d:d3:94:bb:7b:15:10:3c:11:cd:7e:
f2:58:f5:6d:6c:5f:e8:ed:f1:f9:9e:2b:c9:35:d3:
90:06:78:16:e8:ce:d2:05:16:04:9c:ca:af:6f:72:
e3:06:4b:48:77:6e:c3:8c:aa:21:0c:ae:17:d0:14:
89:5b:39:34:dd:db:5b:f7:6f:d4:2b:2a:7f:a8:49:
0e:18:c9:9e:40:56:91:e1:64:68:b7:c4:f8:ff:ec:
7d:61:ac:55:50:bf:de:34:0b:d6:de:83:ef:ca:fb:
25:67:65:b0:81:9c:f9:80:9e:4f:e8:95:e8:11:c8:
3b:6f:46:a2:95:65:c4:08:0a:5d:98:0d:4b:16:32:
96:df:99:b5:d8:ca:ef:97:e8:79:67:36:32:73:80:
c3:25:51:b3:04:d2:a7:48:57:71:e4:b9:f7:63:8b:
44:50:00:da:c3:d1:1c:03:ef:43:e2:77:8c:b4:52:
77:b0:bf:c6:61:97:ff:6a:70:93:f8:3a:41:36:87:
e9:e7:a0:36:8f:b6:10:b3:b8:d9:8a:86:c8:93:4c:
c6:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:E2:E4:B1:0A:48:4A:82:ED:15:28:C4:29:3A:FD:3E:77:4F:84:01
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/1063A864B92A11EFA8F85999762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.199.208.0/24
Signature Algorithm: sha256WithRSAEncryption
07:55:f7:be:a4:78:b1:89:0b:70:35:5e:2f:22:4d:f2:a9:05:
ce:60:28:fc:25:ce:8a:22:83:4b:3c:f2:50:6d:f7:98:c6:55:
94:51:91:fd:39:be:71:62:a5:57:55:57:32:25:be:e0:30:b6:
02:41:4a:8e:a1:b9:ff:2b:21:f1:3a:30:f3:00:0a:43:05:0e:
3e:e9:4e:1b:04:20:e2:36:bc:38:22:62:da:b7:e7:07:24:98:
71:f3:f9:2e:a4:7b:7e:3e:ea:da:7d:c5:b9:57:66:ed:0b:a1:
5c:aa:3c:7f:f7:1e:ce:c9:cf:21:1c:69:88:eb:65:c7:8a:0d:
a8:b4:86:15:40:c0:92:e4:3b:29:43:11:4c:bb:20:6b:b1:28:
4a:01:25:2f:c2:68:c0:f4:4a:4b:26:a5:27:56:47:d6:cc:a4:
b6:98:bb:a9:b7:de:d1:08:b9:89:ab:d8:cb:cf:36:5d:1d:6f:
37:84:3e:38:bc:f8:b2:33:7d:63:e7:e1:11:f1:06:d5:27:82:
1c:a2:fe:b4:83:4c:d2:e9:7a:c1:84:18:c9:bb:86:a6:68:45:
39:c5:b5:f9:55:6f:68:6c:0f:e9:ad:d8:0e:9e:8a:b9:e8:05:
88:5b:bc:93:90:a4:2a:37:38:5f:f7:59:d5:f4:79:67:02:44:
5f:52:43:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 09:43:05 2025 by rpki-client