Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/1B7FF386C99E11EFB72EA2B7762E951A.roa
File: 1B7FF386C99E11EFB72EA2B7762E951A.roa (raw, json)
Hash identifier: HdItgxlVczn6dmbkvVp8Wo8pyxiC+GDjfoMCoYZe4yM=
Subject key identifier: 9E:C9:15:86:A3:8E:37:F2:AC:94:4C:7C:EF:3D:B7:52:59:69:CA:EF
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: F655
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/1B7FF386C99E11EFB72EA2B7762E951A.roa
Signing time: Fri 03 Jan 2025 06:43:57 +0000
ROA not before: Fri 03 Jan 2025 06:43:54 +0000
ROA not after: Fri 17 Jan 2025 06:43:54 +0000
asID: 48266
IP address blocks: 45.207.218.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 63061 (0xf655)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Jan 3 06:43:54 2025 GMT
Not After : Jan 17 06:43:54 2025 GMT
Subject: CN=6777872d-9d8a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:15:8b:26:26:2e:db:85:98:de:db:8a:0f:e7:
0d:70:02:91:63:4c:8b:53:15:90:c4:ea:11:9f:f0:
8e:aa:7e:10:35:1a:e8:be:67:a9:d9:55:39:cc:89:
2c:08:67:14:8a:e5:cc:62:79:33:34:f8:e3:04:d3:
fc:26:9a:68:12:78:d2:18:ea:16:78:08:af:e7:80:
b6:9f:89:1f:f3:00:31:f2:93:d4:82:12:a2:5c:d8:
e2:d7:c8:55:8b:0b:63:8d:47:6a:3b:51:80:b4:51:
01:96:7c:d7:9f:ed:0c:e0:fe:44:41:ef:af:d4:3c:
50:f8:8d:a3:32:3d:71:9a:e2:06:e2:8e:89:51:db:
b1:6b:8c:35:fd:67:47:a8:1f:9d:94:ba:6b:96:48:
3f:64:24:e2:db:06:21:6c:bb:cd:89:12:1e:19:49:
88:ff:08:1d:e6:5b:67:93:e7:93:c7:cf:6a:f2:1c:
5c:a0:6c:3c:8e:65:d5:7f:36:5c:9d:1d:b2:3d:11:
77:11:81:d4:ee:20:95:c8:1f:fa:2c:12:a5:d0:b8:
3f:7c:b2:68:aa:26:f4:04:2e:8c:ff:85:3f:44:d8:
bb:ca:b8:02:cf:de:39:a0:71:1b:40:52:de:cb:0d:
a9:ab:6a:92:25:7b:35:69:57:77:a2:c4:68:8d:9a:
b2:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:C9:15:86:A3:8E:37:F2:AC:94:4C:7C:EF:3D:B7:52:59:69:CA:EF
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/1B7FF386C99E11EFB72EA2B7762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.207.218.0/23
Signature Algorithm: sha256WithRSAEncryption
8f:8e:ec:4b:24:57:57:30:d6:4e:35:59:b3:e1:41:ce:c0:14:
f3:c2:36:2f:7b:2d:22:f4:62:57:88:4b:24:1a:19:03:0a:bf:
99:73:8c:2c:b6:9e:56:d5:b6:40:af:5f:48:4b:21:f4:e2:d4:
84:0e:48:8a:e1:c9:dd:57:60:47:a2:39:62:17:2f:b6:5c:f4:
72:47:e9:c3:05:df:30:a8:1a:ea:4a:f3:41:c7:ff:64:10:25:
3d:9f:e4:0f:7c:46:9d:6c:d3:4d:1f:31:ed:03:22:52:64:c9:
3d:ee:92:fa:c7:26:95:20:e8:57:c4:f6:9d:f7:9d:68:9f:74:
0a:73:2b:d3:1e:80:32:ec:e0:0a:e9:e5:07:57:1d:5b:81:d2:
51:5d:b3:ea:61:74:55:23:50:7f:4d:48:be:1a:a1:37:a0:4e:
a2:ac:25:4c:36:55:44:6d:5e:e3:51:74:8c:b6:ba:60:16:0d:
7a:87:a6:1b:3a:b3:44:71:b0:7b:7d:78:dc:e5:93:67:b9:90:
8f:06:53:7d:71:35:c1:65:c7:d3:1b:21:e5:bc:bb:00:f9:68:
25:05:1c:64:49:7c:79:63:78:5c:f9:03:8d:1f:f0:5a:10:8f:
66:78:a3:e3:81:e7:94:99:19:1f:e7:50:14:91:24:36:2b:03:
6c:31:3b:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 09:59:04 2025 by rpki-client