Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/13332D68CE5511EFB8B951B5762E951A.roa
File: 13332D68CE5511EFB8B951B5762E951A.roa (raw, json)
Hash identifier: UNhwS4VEq1Q5hsR6A3ey7FadBl/6TX0HW6bHZTQGn44=
Subject key identifier: 56:AA:F2:73:B4:6B:E6:EC:48:C5:AD:44:68:33:A7:17:25:1C:96:00
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 0102D9
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/13332D68CE5511EFB8B951B5762E951A.roa
Signing time: Thu 09 Jan 2025 06:43:46 +0000
ROA not before: Thu 09 Jan 2025 06:43:42 +0000
ROA not after: Tue 21 Jan 2025 06:43:42 +0000
asID: 135377
IP address blocks: 45.203.160.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 66265 (0x102d9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Jan 9 06:43:42 2025 GMT
Not After : Jan 21 06:43:42 2025 GMT
Subject: CN=677f7022-12a0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:3a:97:74:18:96:15:a3:e8:70:83:52:01:6a:
90:38:bd:28:5e:67:23:8c:68:63:03:f6:bd:98:c9:
6f:ea:8e:f9:38:60:9f:17:46:5e:26:7b:0b:bf:39:
be:9c:f3:66:20:9c:5e:7e:af:60:cf:b7:20:ae:ba:
fb:c8:16:68:be:c0:d9:28:bb:ad:12:c2:47:fa:96:
84:77:8f:25:5f:6f:4f:d3:13:06:90:47:99:19:78:
b5:fd:96:5b:4e:fb:87:7a:4e:09:19:b2:c4:d1:fc:
1a:d8:c8:ae:8c:5b:f6:d8:f0:ae:ac:50:f6:9d:c5:
b4:34:07:20:3b:5c:f8:c5:74:62:f9:c3:3c:da:c7:
e4:7c:b8:99:fd:54:f2:a3:d0:8d:a7:ee:9b:4a:aa:
1b:bb:82:35:53:62:61:7e:d0:e1:56:4e:80:80:4a:
72:39:3b:23:18:13:75:70:19:47:67:57:a8:32:57:
a0:b1:c1:37:99:2f:77:21:45:40:8c:73:75:e4:75:
9c:65:19:1c:4e:42:97:c0:ba:9a:f5:6e:83:07:9e:
fe:32:b4:18:6a:17:b2:ba:10:ec:10:77:c1:48:6b:
76:04:30:8c:ba:fd:e9:56:7b:e8:ca:9a:3c:1d:35:
57:45:25:79:c9:37:cb:c6:51:9d:8a:27:e5:1d:1e:
d4:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:AA:F2:73:B4:6B:E6:EC:48:C5:AD:44:68:33:A7:17:25:1C:96:00
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/13332D68CE5511EFB8B951B5762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.203.160.0/22
Signature Algorithm: sha256WithRSAEncryption
aa:bf:78:ec:e5:ce:29:42:3f:6c:98:43:32:e4:6d:7f:42:94:
2f:f3:77:6d:8f:4a:c4:c6:91:9b:a2:fa:9f:60:a0:f6:4c:cf:
db:1d:d8:28:ed:64:20:94:d9:ec:11:53:e1:53:df:66:05:24:
58:a2:bb:ac:15:53:d5:5c:e6:08:06:a6:f8:6b:6f:d4:1b:cf:
ac:5c:b1:34:85:31:8c:fd:e0:64:83:74:4e:09:e6:1e:b9:1a:
5e:69:dd:0e:86:c3:69:b7:2b:9e:9f:38:be:39:1b:e7:f0:c9:
b0:ad:32:05:25:e4:76:35:d7:3e:7d:04:db:77:b8:39:49:c7:
37:0c:f5:88:05:89:b3:31:2a:f6:93:16:9c:90:d7:97:60:65:
d7:6b:e8:1d:90:8f:d7:96:40:0f:ef:d5:4b:d3:89:52:2a:27:
08:5f:07:ab:c2:a3:a8:d8:70:f0:a8:f3:d3:e3:6f:5e:2b:8f:
d7:b8:72:ba:ad:d9:97:de:56:1f:b6:2c:05:dd:3e:b3:a2:b0:
11:d2:8a:3a:88:97:16:28:34:df:31:9f:ce:3f:35:73:c7:b1:
45:e3:12:95:d4:45:79:a0:5f:60:6a:a7:cc:48:ee:95:cd:a3:
fd:b7:b3:3f:a4:d0:f0:14:4c:82:71:65:05:72:cd:4d:f1:c1:
ab:40:ba:d4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 09:55:42 2025 by rpki-client