Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/3556DD42CE9911EF9FE56663762E951A.roa
File: 3556DD42CE9911EF9FE56663762E951A.roa (raw, json)
Hash identifier: Ol11DjQSl3p56s4XJKsjZD3YKwimb5B8v9J9/QqMuEs=
Subject key identifier: E1:D9:7A:F3:41:E3:CE:29:8C:BE:12:6F:ED:0A:7D:78:13:12:42:6B
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 010410
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/3556DD42CE9911EF9FE56663762E951A.roa
Signing time: Thu 09 Jan 2025 14:51:29 +0000
ROA not before: Thu 09 Jan 2025 14:51:25 +0000
ROA not after: Thu 23 Jan 2025 14:51:25 +0000
asID: 5065
IP address blocks: 45.195.104.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 66576 (0x10410)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Jan 9 14:51:25 2025 GMT
Not After : Jan 23 14:51:25 2025 GMT
Subject: CN=677fe271-dc23
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:91:9f:8d:55:90:f3:26:74:df:fe:03:5e:82:
0a:fa:b4:1c:39:f1:09:c6:ab:08:e4:11:ec:a5:65:
b2:b3:a9:d2:b8:98:a8:6a:e8:a8:1f:96:ae:cf:51:
ee:b0:eb:cd:b0:94:9d:0f:bf:94:de:ba:1a:0e:70:
71:26:b9:1c:8f:b7:6b:ad:8b:95:36:43:c5:dd:7d:
34:40:f4:f8:e4:f8:9b:f4:53:71:2f:a6:a3:f1:31:
9c:85:c2:3d:96:de:89:a7:68:9e:88:8d:aa:91:9d:
fc:f3:78:34:c0:67:00:93:0a:e3:c9:6c:11:8d:ed:
40:a8:eb:a3:9e:f1:d6:75:dc:6a:fd:65:d7:ff:69:
1f:1d:c7:81:20:31:3a:64:59:da:5c:01:15:1e:c8:
a5:71:08:9e:db:f2:61:50:ef:f3:2e:6c:53:c4:02:
30:65:fd:cb:19:f3:a3:0e:f1:84:8d:44:6c:85:42:
af:50:02:80:20:c9:8c:3d:d6:86:0d:ed:7e:2b:2c:
08:38:ee:67:b1:55:8e:9e:33:47:aa:e4:81:1c:4d:
9a:2b:8a:0e:e6:e4:ed:57:9d:7f:18:bb:11:ce:da:
cc:af:02:73:d3:a5:7b:41:ab:c9:9c:7e:4d:5f:8a:
8f:ad:c0:1c:d4:f9:ab:3f:cb:6d:2e:1a:75:e9:70:
f4:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:D9:7A:F3:41:E3:CE:29:8C:BE:12:6F:ED:0A:7D:78:13:12:42:6B
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/3556DD42CE9911EF9FE56663762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.195.104.0/21
Signature Algorithm: sha256WithRSAEncryption
b3:56:b6:37:4f:2a:16:78:42:b4:ca:df:31:97:a3:6b:03:79:
c6:5d:f0:88:62:d3:41:65:79:1f:4e:d8:f9:0b:d1:14:24:98:
85:16:0e:d3:84:2d:a0:d2:8d:b1:fe:82:67:27:7b:0d:56:56:
a5:84:20:75:bf:b2:5a:55:df:c2:fc:1b:50:cc:95:69:1b:00:
10:cd:ef:b0:7f:69:45:23:37:1e:98:5a:da:9c:12:df:55:88:
e3:79:20:2c:d0:cf:aa:c4:7b:15:b6:62:f1:e8:e4:e4:9d:8b:
7d:ad:01:f7:b4:83:1b:ff:df:85:87:c7:0a:34:60:0c:bf:80:
19:bf:23:33:fd:e1:13:51:0d:77:a8:d2:f7:fe:cc:9b:40:d5:
46:d6:ea:40:1f:84:5a:5c:4f:36:ea:d4:ff:dc:2a:12:5b:5e:
9e:54:71:ad:44:a7:d6:18:20:e0:c8:38:2f:c9:ba:2f:df:68:
c7:08:65:be:22:0d:f1:c3:96:eb:96:17:f6:90:41:ba:14:d7:
56:76:2a:5c:6d:dc:df:18:00:94:85:f3:30:b4:1e:00:d0:e1:
ba:41:7e:03:d3:a9:87:93:d2:b2:68:02:20:fd:ff:0d:c4:c1:
cc:3a:c1:61:13:e0:e2:fb:75:a0:17:62:b5:20:39:b5:ff:9b:
18:75:7d:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 09:43:36 2025 by rpki-client