Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/2ADFDCA6BAF811EF9F59CF6A762E951A.roa
File: 2ADFDCA6BAF811EF9F59CF6A762E951A.roa (raw, json)
Hash identifier: 6LjWU3PFK0NdA2oZdXzcru+7v3RtiGmT0A49rnSdIbo=
Subject key identifier: DE:A0:86:39:F2:1D:E5:D9:6F:F0:2A:D7:FB:F0:18:42:9B:DD:7C:91
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: E3F5
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/2ADFDCA6BAF811EF9F59CF6A762E951A.roa
Signing time: Sun 15 Dec 2024 15:20:51 +0000
ROA not before: Sun 15 Dec 2024 15:20:47 +0000
ROA not after: Mon 20 Jan 2025 15:20:47 +0000
asID: 395886
IP address blocks: 45.205.16.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 58357 (0xe3f5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Dec 15 15:20:47 2024 GMT
Not After : Jan 20 15:20:47 2025 GMT
Subject: CN=675ef3d3-7b1d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:69:8d:76:07:e2:24:bf:96:ab:35:1c:69:6e:
0a:05:ed:af:bc:ac:bd:ac:7b:a5:a9:73:94:b6:7c:
c2:fd:66:9c:6c:82:c7:b7:99:29:fd:c1:95:1d:16:
f3:29:b2:e6:ad:0b:77:e7:6e:38:04:77:87:3c:e3:
f4:dc:d4:9b:ee:d5:e0:fb:13:8e:39:a0:63:5f:5b:
11:8a:a6:1f:d0:60:eb:b5:a0:b5:5c:63:e8:4e:bc:
ec:72:a9:36:69:b1:e0:45:e6:b8:35:2b:40:99:54:
98:93:f8:8d:8d:14:97:f0:37:fa:07:5f:c7:ec:cf:
bf:e1:4b:c0:4a:13:00:c8:9c:27:70:c5:e5:4a:91:
69:a7:9b:f1:e2:14:95:ee:7d:bf:e3:31:15:6c:60:
f1:f4:bf:5a:69:54:4b:aa:a1:8b:ea:d9:26:5a:8d:
d0:f2:82:a7:4c:f7:da:43:08:8e:f0:83:84:06:20:
eb:1e:c0:f9:23:6b:93:32:28:c0:00:6b:3a:26:87:
3a:63:3d:ec:00:ff:9d:f3:ad:ef:52:c1:31:cf:b2:
ba:df:86:36:51:86:90:89:34:ef:2e:57:35:58:91:
54:eb:07:ea:65:eb:81:e4:d0:fc:66:b3:7f:bc:c5:
05:a7:3b:fe:5f:9e:79:87:eb:a9:14:3b:cb:c2:22:
56:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:A0:86:39:F2:1D:E5:D9:6F:F0:2A:D7:FB:F0:18:42:9B:DD:7C:91
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/2ADFDCA6BAF811EF9F59CF6A762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.205.16.0/20
Signature Algorithm: sha256WithRSAEncryption
4d:5e:87:b0:3d:58:b6:06:27:54:6c:db:89:3d:28:5b:79:7c:
8c:0c:1c:c5:86:b4:9d:a7:6f:bd:2b:02:ce:a0:80:d8:3b:98:
b8:10:cb:70:6b:da:1f:3a:e0:20:e7:88:88:b9:99:10:14:91:
06:40:0a:71:aa:00:f0:e0:7a:33:ce:4b:69:91:4e:d0:49:f8:
1c:b5:26:fe:8a:70:90:df:e4:68:69:09:92:60:81:0d:86:be:
b6:75:4e:dd:68:f4:e8:e3:22:fd:c9:12:52:a2:94:00:3a:16:
7e:6f:9c:fa:df:06:b7:fc:f6:c1:ea:60:86:37:9c:3b:a2:97:
cb:a9:72:3b:c8:4e:ff:3b:90:d4:70:dd:93:ee:19:6f:de:20:
e8:e0:74:8b:39:57:9d:ef:76:1c:01:24:62:b8:a6:1e:26:44:
50:1d:91:13:d6:e0:4d:be:7a:81:95:68:c7:3c:96:38:6f:cf:
a3:fa:64:9d:c5:4b:66:5c:55:0b:9a:be:71:42:9f:eb:e9:19:
e8:f4:32:8d:5c:c1:f5:3f:0e:e2:ac:da:f8:51:4f:0d:82:dc:
1c:19:a3:a9:58:31:40:26:a8:00:f9:9d:85:40:ef:f8:f5:de:
24:eb:ad:c9:d5:14:bd:9b:5a:d5:f6:0e:1b:cb:4c:5c:5a:d8:
29:bc:cd:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 09:46:11 2025 by rpki-client