Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/17CA8E18C9A311EFB8DDB557762E951A.roa
File: 17CA8E18C9A311EFB8DDB557762E951A.roa (raw, json)
Hash identifier: H9w8Oh/vibr5dpWBcAoT7EVZ04Ige7wwcV5IRBhjEow=
Subject key identifier: A1:A5:1B:0D:D3:44:D8:9C:99:F3:EA:D7:FC:EB:AF:04:7D:58:93:4B
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: F673
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/17CA8E18C9A311EFB8DDB557762E951A.roa
Signing time: Fri 03 Jan 2025 07:19:39 +0000
ROA not before: Fri 03 Jan 2025 07:19:35 +0000
ROA not after: Sat 18 Jan 2025 07:19:35 +0000
asID: 54801
IP address blocks: 45.207.224.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 63091 (0xf673)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Jan 3 07:19:35 2025 GMT
Not After : Jan 18 07:19:35 2025 GMT
Subject: CN=67778f8b-0d8b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:1d:fe:0c:5f:b3:4f:d8:21:e4:c9:6b:31:dc:
ee:68:c3:18:56:ce:91:82:14:32:ea:59:d0:42:fb:
24:1c:17:77:c8:04:a6:79:2a:6a:5d:a7:c2:ac:ef:
d6:ce:b9:9d:f0:be:bf:0a:35:e0:6f:56:7c:1c:27:
54:89:a1:66:b6:7e:ce:a9:92:91:f7:99:18:ce:22:
2f:1c:52:59:a3:16:6e:c3:f5:9f:1f:6c:b4:34:1c:
5d:f7:53:65:29:ac:10:24:ab:67:dd:76:4a:c2:0d:
e7:82:ba:97:82:16:37:45:b3:e2:0c:a9:d6:b3:ac:
88:79:c2:fe:64:a3:27:94:59:6f:8e:2f:43:e0:b5:
50:92:99:41:d4:26:77:8c:7b:6d:1d:23:df:f8:84:
bf:6e:31:7c:ab:49:8d:cb:55:a3:df:d0:96:94:08:
35:b3:cd:d7:23:0d:2f:a2:97:bf:46:59:5f:0f:3d:
7c:29:41:75:ef:53:21:75:57:4c:57:95:3b:48:b2:
41:7b:c9:3c:a5:89:58:df:f8:4f:d7:8c:73:03:cb:
51:8c:d1:82:57:9d:a2:a4:df:d1:2f:62:c6:83:98:
35:d5:5c:ad:c7:81:99:4c:98:f3:a6:12:06:5c:41:
ed:b2:a2:0b:9d:bf:c1:ff:19:0f:9d:0d:33:b2:95:
7f:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:A5:1B:0D:D3:44:D8:9C:99:F3:EA:D7:FC:EB:AF:04:7D:58:93:4B
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/17CA8E18C9A311EFB8DDB557762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.207.224.0/19
Signature Algorithm: sha256WithRSAEncryption
9f:60:e1:0f:0e:4b:dd:e4:66:b0:14:93:5a:91:d2:e7:8e:43:
dc:b6:cc:aa:14:bd:40:47:74:5a:31:92:d6:64:b4:8e:60:c1:
5e:6e:10:72:21:fd:64:d9:1f:7c:5b:09:21:75:09:a9:91:b3:
f1:a8:9c:b4:e0:d3:0e:c6:23:23:fd:8e:ac:08:f9:cc:84:bb:
f1:c1:e4:7b:c0:e1:9c:7b:19:8f:0d:72:fb:96:61:f8:b0:d8:
bc:b5:af:04:5d:cb:38:73:f5:0d:b8:3d:d7:3c:3b:78:71:16:
3d:95:1e:5c:cc:80:52:e3:95:83:65:98:4d:c8:b2:ec:d6:18:
f0:70:77:ca:e8:93:8b:e0:b0:87:fd:d3:a1:43:0b:f5:a0:f5:
7f:94:72:48:d6:8d:d7:d8:ff:f1:e6:3f:26:ef:ab:d5:4d:ba:
5c:36:fc:1b:ef:e6:78:65:21:21:63:c0:a3:47:20:8b:1e:b6:
f1:3a:60:02:8d:69:a8:2a:ad:65:e2:ba:c8:98:98:51:8f:be:
00:ef:04:e7:97:76:d1:40:50:07:0b:b2:89:0a:65:59:a7:13:
1a:62:33:3f:25:2b:68:ed:e8:cd:20:ba:e0:66:ae:0f:69:0a:
f4:3d:00:38:2d:ee:21:f8:7b:03:48:4f:6d:3b:5d:5e:fd:2b:
95:53:89:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 09:46:24 2025 by rpki-client