Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/243BFC32BEAD11EF9FBCE7BE762E951A.roa
File: 243BFC32BEAD11EF9FBCE7BE762E951A.roa (raw, json)
Hash identifier: qSI0Elq0i4Cxmm1PoJ/uOX495IX/o32jZXvQb2d/NVI=
Subject key identifier: 9E:75:CE:78:B3:E4:D7:6B:91:CE:D4:AE:BC:B6:9B:09:B1:1D:6B:F8
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: E72B
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/243BFC32BEAD11EF9FBCE7BE762E951A.roa
Signing time: Fri 20 Dec 2024 08:33:52 +0000
ROA not before: Fri 20 Dec 2024 08:33:48 +0000
ROA not after: Fri 24 Jan 2025 08:33:48 +0000
asID: 395793
IP address blocks: 45.206.66.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 59179 (0xe72b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Dec 20 08:33:48 2024 GMT
Not After : Jan 24 08:33:48 2025 GMT
Subject: CN=67652bf0-a0c1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:1b:fe:30:cd:3f:dc:29:5a:c0:43:c2:05:ca:
f2:2b:01:7e:9e:5e:7a:8b:ed:b0:49:f5:88:11:37:
fe:a2:9f:8a:e0:5f:bb:bf:0f:11:27:33:6e:e0:db:
56:78:72:61:8b:3b:e7:77:d9:d5:48:bf:76:e6:2b:
77:a5:25:e6:f0:2e:a1:dd:6d:ef:de:cb:bf:b0:5b:
79:9e:79:42:23:7b:b6:54:b0:20:23:c4:35:16:6b:
91:2d:ce:67:ec:d5:2c:3e:30:2f:c9:65:ee:c3:86:
ec:3f:d8:d6:d4:e7:a9:ea:50:c5:ea:5a:35:2c:94:
47:dd:97:c7:3f:89:fd:47:8f:7c:a9:2a:b7:92:fc:
3b:95:a2:1a:45:0e:1f:ab:c8:68:3d:b6:a0:d5:d8:
d1:1c:80:e1:ed:d9:c8:4e:c2:9a:33:23:d6:81:2e:
da:1b:95:ec:97:48:42:02:30:50:cf:6e:ab:6f:3b:
e8:37:50:24:7e:1f:41:ed:d6:f8:75:17:91:62:a4:
af:1f:5a:09:89:9e:eb:f3:26:53:d1:87:36:53:77:
9e:08:87:a0:74:1a:bf:2c:f9:1b:a8:82:ea:08:8c:
47:00:f3:58:e4:8b:cc:03:f1:6c:fd:fa:a5:f4:5c:
ed:c0:51:53:76:4c:58:a9:03:2d:13:c9:53:30:ce:
7b:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:75:CE:78:B3:E4:D7:6B:91:CE:D4:AE:BC:B6:9B:09:B1:1D:6B:F8
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/243BFC32BEAD11EF9FBCE7BE762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.206.66.0/24
Signature Algorithm: sha256WithRSAEncryption
a4:1f:71:75:6c:bd:ed:c1:79:72:40:f6:11:13:3a:7d:95:b7:
0f:ba:6b:95:4c:74:bb:ae:f2:16:d4:1c:9a:13:69:21:a7:e6:
a5:11:00:ed:8c:c3:02:8d:21:55:9e:88:d3:43:af:2b:f0:37:
46:06:90:b2:02:72:75:5f:ef:ae:df:2c:48:a6:49:d2:7e:0c:
e8:f8:2b:52:f3:6c:ca:7d:b1:30:ae:53:43:29:77:04:27:c5:
1e:9e:e8:4a:3d:22:de:a4:6e:8f:7b:1a:9d:46:1c:55:90:93:
3c:ae:3a:ff:ca:45:f3:ef:38:6b:39:27:b8:18:93:3d:57:19:
6b:c2:c8:28:fe:56:31:5c:f5:7a:60:79:ed:cd:95:b5:b7:3c:
b3:41:21:76:65:86:42:e3:9b:70:b5:83:8c:b1:f0:3b:84:a5:
4d:e1:49:97:65:28:b5:a6:57:9d:59:8a:33:48:e6:9c:43:1b:
93:16:57:18:bd:cb:a8:cd:20:11:b1:96:8c:49:45:57:52:a7:
cc:c5:1f:0a:be:e5:82:94:7e:39:03:6f:46:0f:42:ef:f6:16:
b2:43:31:84:0d:43:a5:04:d5:a3:84:f3:df:15:00:61:85:d2:
d1:a2:42:91:7c:14:ac:34:d2:e3:23:be:8b:b3:88:55:e7:40:
84:88:f0:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 09:58:40 2025 by rpki-client