Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/28A01F6CBEA111EF8A865375762E951A.roa
File: 28A01F6CBEA111EF8A865375762E951A.roa (raw, json)
Hash identifier: 8mQQJGAPzFoj5Ky5pUtv7HKsbPNKgcabSncv2u/X2ns=
Subject key identifier: 08:B9:FE:3F:75:D6:25:7C:45:B0:B5:D1:94:8D:8B:82:ED:C9:C8:C3
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: E702
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/28A01F6CBEA111EF8A865375762E951A.roa
Signing time: Fri 20 Dec 2024 07:08:05 +0000
ROA not before: Fri 20 Dec 2024 07:08:02 +0000
ROA not after: Thu 23 Jan 2025 07:08:02 +0000
asID: 202656
IP address blocks: 45.195.208.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 59138 (0xe702)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Dec 20 07:08:02 2024 GMT
Not After : Jan 23 07:08:02 2025 GMT
Subject: CN=676517d5-ee79
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:20:03:2e:26:44:9f:7b:f2:7c:ab:dd:4c:12:
28:1f:5d:e3:cc:19:c8:f4:48:e6:4e:d2:03:c2:b7:
dc:02:ff:b2:29:25:bf:b5:4a:f9:7a:be:2d:6e:ac:
84:7e:86:25:77:75:0c:22:88:78:a9:a2:e4:55:3b:
6d:2f:12:d5:f2:69:46:e1:25:d7:fd:90:10:a7:f1:
30:78:25:f2:35:20:f4:f5:8a:88:e1:83:7c:b7:2e:
36:eb:4e:78:df:e2:61:cd:d9:dc:26:5b:74:05:d2:
69:f0:7a:4a:b5:a0:44:f6:f4:67:5b:e2:d6:d5:65:
99:06:0f:fb:87:23:92:57:ba:d8:ff:7d:18:b4:32:
8f:1a:cc:34:8a:d4:ae:89:59:ae:f1:73:36:4b:60:
22:c1:5c:8e:88:6a:0a:8b:a5:aa:d7:f3:75:4d:c0:
39:56:54:68:29:f9:d1:e9:69:14:7e:8c:ae:c4:11:
25:df:4a:e6:3e:f0:2b:9a:dd:d8:b1:3a:3e:1b:46:
a7:61:78:01:ef:eb:72:6c:ff:c1:c7:a5:e1:76:c0:
e3:5d:d9:8a:4e:27:c4:29:7f:ac:6d:5c:33:4c:2d:
c4:71:97:1b:ca:e9:ea:c5:e6:32:95:29:2f:f3:4d:
f1:d0:5c:12:2f:6b:91:4e:f0:56:74:4d:ef:84:6e:
da:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:B9:FE:3F:75:D6:25:7C:45:B0:B5:D1:94:8D:8B:82:ED:C9:C8:C3
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/28A01F6CBEA111EF8A865375762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.195.208.0/24
Signature Algorithm: sha256WithRSAEncryption
a9:e0:1a:d6:18:e4:6d:8c:82:55:62:6f:24:ac:ac:5e:c9:f0:
10:0b:27:2f:c2:b6:b6:6b:a9:4f:7b:f1:f0:18:ec:dd:0f:c4:
19:f0:7d:a8:f8:96:42:97:b7:15:81:75:08:6e:d3:f9:9e:63:
d3:a4:4a:84:fc:6c:0d:1b:13:f7:ba:78:db:64:16:53:ee:69:
43:04:a4:c3:cb:d0:90:1b:06:36:f9:03:de:fd:49:e9:25:4e:
ef:b5:0e:ec:54:26:04:48:a8:47:77:6d:f1:10:ca:ee:4a:0b:
78:7f:c3:bc:99:68:f0:50:3c:69:56:25:b9:7c:95:20:8b:78:
dd:da:b5:c9:fe:36:00:2a:9b:f2:75:b2:44:42:6f:a0:4b:43:
bf:d2:4b:05:81:c4:5d:36:c7:4c:09:32:e5:d6:52:94:85:02:
05:9a:7c:f9:18:4b:55:34:ae:5d:94:00:02:ed:df:0e:47:10:
1e:aa:31:88:d2:65:1d:b0:20:2a:72:62:1e:51:42:c1:06:c5:
ae:98:e5:ee:8e:d7:bb:8e:f4:ae:fc:2f:ef:09:ee:73:37:70:
5e:5c:3e:71:fa:3e:96:e6:ca:b2:bb:7f:49:32:04:75:6f:dc:
f0:98:4e:bf:7b:bc:00:cc:66:85:5b:1f:01:12:f7:5a:5b:0e:
00:ee:f6:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 09:57:49 2025 by rpki-client