Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/2F90DFC2CE6011EFA5EE1D7C762E951A.roa
File: 2F90DFC2CE6011EFA5EE1D7C762E951A.roa (raw, json)
Hash identifier: Vh2r//FluCydjGt3u+oCou0h/3X73AlP2DG2wi5zrsg=
Subject key identifier: E4:11:BF:20:23:DA:2B:6E:84:44:E2:C1:33:44:3F:77:0B:7D:B5:A3
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 010316
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/2F90DFC2CE6011EFA5EE1D7C762E951A.roa
Signing time: Thu 09 Jan 2025 08:03:18 +0000
ROA not before: Thu 09 Jan 2025 08:03:15 +0000
ROA not after: Wed 22 Jan 2025 08:03:15 +0000
asID: 22773
IP address blocks: 45.207.0.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 66326 (0x10316)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Jan 9 08:03:15 2025 GMT
Not After : Jan 22 08:03:15 2025 GMT
Subject: CN=677f82c6-3354
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:33:77:c0:84:1d:d4:45:cb:ce:0e:5f:fc:47:
61:48:10:4a:c6:98:1e:e7:de:6e:ab:37:14:21:aa:
cf:25:06:5b:10:06:27:5e:b9:07:3f:75:d9:62:b0:
89:b7:99:99:bd:e7:e0:be:92:7a:80:05:1b:5f:54:
d1:74:2a:45:ad:58:15:d5:14:7f:8b:61:35:9b:df:
c6:db:c7:30:74:59:de:16:42:f0:3b:a7:e3:71:0e:
2d:d1:98:22:4f:f9:d3:c0:2f:8e:a0:43:16:8c:c8:
49:d9:d8:f9:a2:b6:6f:a2:4a:ea:81:bd:2c:b8:19:
cd:f1:93:4d:12:b7:06:d9:25:5e:f1:de:9e:80:ce:
55:01:2e:25:a4:56:2d:4e:f4:39:dc:28:a1:89:c0:
f1:cd:ac:d5:02:c9:23:b1:0e:08:1f:58:be:ed:b3:
d3:bc:89:3a:46:ce:c0:48:a8:33:44:7c:3c:74:55:
18:9c:70:97:4b:6c:90:42:8a:24:2d:c6:55:7f:98:
b5:3f:5d:ec:0c:1a:fc:8e:58:e3:09:c8:dd:c7:07:
7a:24:11:58:17:d7:97:69:90:78:ab:7e:b8:9d:0e:
02:21:ca:2a:e8:12:16:2a:01:e1:b1:8c:58:4c:9b:
33:73:8c:78:0f:3c:26:ca:07:b7:e4:23:48:a6:8f:
37:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:11:BF:20:23:DA:2B:6E:84:44:E2:C1:33:44:3F:77:0B:7D:B5:A3
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/2F90DFC2CE6011EFA5EE1D7C762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.207.0.0/23
Signature Algorithm: sha256WithRSAEncryption
7c:86:b1:ec:d2:13:f2:d1:08:ec:e2:89:35:fd:4e:89:79:2b:
89:04:09:46:8a:40:36:cf:14:6f:1a:3c:e9:a8:e0:00:5f:5c:
d1:c0:41:b9:0c:77:25:39:73:47:43:a9:f5:c5:d4:32:9c:7b:
34:42:f2:dd:84:85:c7:19:45:9f:9c:83:2a:ae:b7:f2:f7:c2:
f5:67:49:7e:5a:ad:3f:78:b0:ff:75:c3:db:b4:5b:ac:75:8d:
48:b9:6d:47:e6:a7:ec:d7:37:d0:16:63:20:b5:c5:0d:7e:26:
af:a7:42:c8:ca:66:03:f7:6e:ca:79:80:62:1d:c9:75:b1:b5:
5a:31:2d:d9:58:72:44:77:08:57:9d:32:5b:48:1c:77:f7:e9:
91:3a:69:32:e6:bb:5d:f8:3c:cb:4c:98:f3:2a:3d:e9:b1:bf:
7b:d2:67:b3:f3:b1:23:47:aa:a1:0b:7a:09:cc:3a:0c:80:f9:
e9:b6:e7:c7:f8:a1:8b:d3:f4:4e:bd:52:3b:d6:3a:6d:e2:c5:
e4:6a:37:93:62:0c:d7:70:d8:b4:a8:19:c4:cd:db:42:75:ec:
02:b1:7b:56:8d:af:8b:41:02:76:08:75:81:60:5a:e4:da:9a:
9d:3e:54:92:67:c0:67:d2:32:62:6b:cd:9e:ad:05:d1:f7:e3:
ba:7d:0b:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 10:01:20 2025 by rpki-client