Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/2C0C39F4B92B11EF94D6F19F762E951A.roa
File: 2C0C39F4B92B11EF94D6F19F762E951A.roa (raw, json)
Hash identifier: il0Aaj5MrIWGddIOEWLKJuNFSLA0EFM4U0uOO43TVLo=
Subject key identifier: 20:FF:50:66:07:0A:B9:C8:21:32:F2:48:59:56:BC:43:F3:9E:31:9F
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: E347
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/2C0C39F4B92B11EF94D6F19F762E951A.roa
Signing time: Fri 13 Dec 2024 08:20:55 +0000
ROA not before: Fri 13 Dec 2024 08:20:51 +0000
ROA not after: Sat 25 Jan 2025 08:20:51 +0000
asID: 202656
IP address blocks: 45.199.241.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 58183 (0xe347)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Dec 13 08:20:51 2024 GMT
Not After : Jan 25 08:20:51 2025 GMT
Subject: CN=675bee66-2655
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:78:8d:05:77:3d:49:52:6a:4e:28:ba:ef:18:
58:f5:67:6f:39:ed:fb:98:5d:84:61:59:c2:d9:ea:
df:f1:d6:91:d5:8c:02:dc:c2:f0:80:3b:f6:26:34:
45:1c:8d:d8:c9:b9:72:c1:8c:9f:8b:e5:f4:ec:36:
d5:17:fa:6a:ff:f4:ee:8b:48:51:37:fa:07:52:c5:
15:51:e7:18:d7:d9:7c:bf:12:e7:1a:1e:e2:89:8f:
6d:a9:d2:2e:bb:39:e9:e7:88:cc:a4:ba:7b:e8:d1:
0b:1e:08:9a:ab:e9:d3:32:8c:3a:75:25:da:7d:2e:
80:93:bb:6a:7a:83:2e:c0:8a:4d:ee:a6:94:10:4f:
52:a3:a1:f5:b1:d4:f2:fe:0a:41:5f:29:a0:e2:5a:
5b:5a:da:d9:be:e7:d8:c1:a8:41:e4:21:ea:0b:ee:
bf:59:8c:37:de:d5:70:c3:f7:50:2b:ac:a3:e6:dc:
eb:bf:2b:9f:a4:7c:d5:0b:09:fd:66:25:c7:89:65:
54:bd:9f:18:5d:72:e2:27:42:25:b4:22:49:be:ba:
36:c2:b9:bc:ea:13:66:e2:73:83:ac:47:d3:60:11:
79:0d:ff:6d:a2:b2:77:72:80:c2:60:99:c7:9c:e8:
7e:5d:e7:50:8a:27:ea:54:ae:4f:95:52:40:e8:2a:
50:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:FF:50:66:07:0A:B9:C8:21:32:F2:48:59:56:BC:43:F3:9E:31:9F
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/2C0C39F4B92B11EF94D6F19F762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.199.241.0/24
Signature Algorithm: sha256WithRSAEncryption
06:ee:07:96:70:d6:23:f6:4b:34:79:aa:37:58:67:78:e3:61:
b6:6c:7f:a6:72:fc:ad:cc:fe:12:a2:be:6c:df:7c:cf:1a:5b:
ca:99:df:b3:3a:f3:8e:6e:ae:42:79:f6:55:d8:bd:a9:ef:e9:
e6:d9:2c:0a:97:f7:b4:60:d7:a6:e9:d3:c2:18:c3:2f:0a:ea:
bb:82:09:02:94:5b:3d:fc:40:c8:a5:33:ad:6a:f3:14:07:57:
68:68:ef:0d:99:06:15:67:5c:c0:06:1c:d1:0d:e2:2d:d6:8a:
1f:af:5a:a1:00:e0:9e:3a:b4:2a:3c:5e:d6:a1:b2:3b:9b:4b:
47:0a:12:70:d7:ec:58:d5:74:95:b2:4b:3f:05:e5:f3:e1:ad:
25:5f:40:cb:82:3b:17:20:31:f5:7e:4b:9c:63:23:f6:a8:fb:
1e:ed:c8:9e:be:00:79:53:bd:17:6b:28:ae:3c:57:4f:72:eb:
ba:72:e3:f3:a5:84:aa:56:d2:52:7c:03:39:2d:16:16:b7:a8:
b4:10:15:20:44:30:0b:bf:6a:4c:3d:16:e4:04:f2:d3:42:b9:
a2:3a:67:11:94:b8:30:76:e9:f4:af:54:6c:b4:4d:cd:f9:f7:
4d:0d:c2:9b:c9:0c:a2:f9:d2:58:8e:86:06:21:d2:2a:cc:1c:
4d:7d:07:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 09:59:57 2025 by rpki-client