Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/2720403CBDD811EFB1A5A784762E951A.roa
File: 2720403CBDD811EFB1A5A784762E951A.roa (raw, json)
Hash identifier: dZEr56+EzDfOtBYOGjO4cvKG6+m4U6POXBwjmS4RsXw=
Subject key identifier: 01:4D:0A:4C:4E:91:1E:D7:AC:E5:7A:A7:D3:78:D0:C1:7D:51:1B:AD
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: E5B3
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/2720403CBDD811EFB1A5A784762E951A.roa
Signing time: Thu 19 Dec 2024 07:09:14 +0000
ROA not before: Thu 19 Dec 2024 07:09:10 +0000
ROA not after: Fri 24 Jan 2025 07:09:10 +0000
asID: 395793
IP address blocks: 45.206.65.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 58803 (0xe5b3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Dec 19 07:09:10 2024 GMT
Not After : Jan 24 07:09:10 2025 GMT
Subject: CN=6763c69a-76e6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:6f:46:50:37:cb:a3:b1:13:07:c7:47:df:4e:
72:ef:92:ed:4c:b8:fc:61:97:96:e9:10:50:37:64:
a9:e1:61:db:dc:5f:31:b5:fb:fc:9e:65:e0:3c:f5:
b3:a4:24:28:87:47:a0:bf:33:0c:de:56:78:5c:5e:
13:d1:c2:e0:1d:0b:95:99:75:73:7d:b9:29:90:56:
bf:0e:83:1f:17:d7:30:67:64:7a:e2:29:d1:2f:db:
c2:a2:03:93:55:1c:a3:48:75:f5:50:e1:d8:73:99:
04:e9:3f:79:b4:b4:60:d1:b2:d1:2e:52:fc:f1:39:
ff:09:cc:ea:dc:15:28:e6:01:1a:12:8b:eb:08:52:
8d:57:ef:c0:b1:68:86:9b:dc:5b:ac:54:72:1d:f5:
d6:24:1d:e7:16:63:1c:22:8e:76:9c:e7:7d:8d:6f:
33:26:d9:73:4b:c0:9c:cc:d8:22:66:7d:56:70:c9:
cf:d6:55:19:1e:2a:04:af:f4:a2:ea:c0:72:67:d1:
87:55:7d:26:70:58:4f:9e:47:a9:8d:56:ba:bb:13:
76:3e:4d:62:2d:0e:da:69:48:61:73:b5:a5:2d:44:
b7:f2:9b:7e:c7:7a:4f:6e:15:9c:76:01:c7:7a:52:
93:ad:eb:a5:80:5a:6f:1f:1f:90:bd:4d:f5:94:96:
77:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:4D:0A:4C:4E:91:1E:D7:AC:E5:7A:A7:D3:78:D0:C1:7D:51:1B:AD
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/2720403CBDD811EFB1A5A784762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.206.65.0/24
Signature Algorithm: sha256WithRSAEncryption
63:d5:17:bf:da:0a:f0:a8:63:4b:8b:2c:17:a4:dc:64:14:5d:
c9:ba:37:bc:16:ba:b2:e2:22:1a:fa:d3:47:06:36:8e:d8:a7:
f7:43:d4:6a:7c:82:34:ad:5f:9a:68:02:f6:54:14:17:7f:2e:
88:98:01:1b:1f:2f:aa:0c:f6:78:4d:2b:92:a8:a5:1e:bd:a9:
f8:09:df:12:a4:e8:83:b0:02:34:e8:92:8e:17:f6:07:31:ef:
47:b1:f6:b9:8c:0f:d9:60:e8:9e:d7:cd:53:44:98:47:00:1d:
93:09:41:3b:76:90:3b:09:b6:f3:61:46:0d:0f:b2:58:db:11:
f1:e6:f6:cd:95:7e:2f:8a:b7:40:2f:3a:d4:a5:24:26:b6:4c:
e3:cf:b4:94:cd:65:85:46:0d:90:d9:4a:49:e4:ff:b8:ae:da:
85:a1:42:7a:35:c4:d2:44:06:c8:09:20:46:18:9a:be:49:76:
ce:7f:55:35:83:9c:49:1b:c2:7b:ed:90:5a:08:15:a1:c5:cb:
da:fe:65:12:c3:c6:07:71:d4:79:e5:de:53:4a:ba:57:bb:da:
a0:1a:c8:ec:ed:99:15:b6:93:ca:70:07:d0:e4:58:0f:83:11:
c7:9c:54:cd:f6:59:5c:7f:39:b1:c9:26:b5:07:33:8b:a7:2d:
e3:19:ca:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 10:00:53 2025 by rpki-client