Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/35D1B920B78A11EF94E55964762E951A.roa
File: 35D1B920B78A11EF94E55964762E951A.roa (raw, json)
Hash identifier: PdcKmUpjcsXXJA6BWz3DS2dCMwaG72ryWaWvTar2Ha0=
Subject key identifier: 9A:BA:3C:52:8B:EB:A3:67:A0:2A:A9:12:B1:6F:E7:B7:75:44:1E:4E
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: E27D
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/35D1B920B78A11EF94E55964762E951A.roa
Signing time: Wed 11 Dec 2024 06:36:11 +0000
ROA not before: Wed 11 Dec 2024 06:36:07 +0000
ROA not after: Thu 16 Jan 2025 06:36:07 +0000
asID: 6079
IP address blocks: 45.205.170.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 57981 (0xe27d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Dec 11 06:36:07 2024 GMT
Not After : Jan 16 06:36:07 2025 GMT
Subject: CN=675932db-fce4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ee:30:53:33:7e:ad:9a:8a:86:f0:3d:5a:b2:17:
f7:92:48:01:38:65:7f:12:6f:8a:90:66:54:c2:30:
14:cd:b3:1e:af:76:69:fe:23:fc:8f:9a:24:5d:82:
1f:f4:b8:97:43:f0:3d:47:ef:30:7f:49:05:9f:b2:
bb:45:0c:22:ae:ab:6f:d8:97:7c:8a:60:b6:8b:d2:
b6:fc:23:d3:13:2f:8d:19:3f:8b:d3:f0:fe:3c:a6:
1a:d5:d7:cb:1e:73:9e:30:8a:64:02:b7:6c:93:62:
05:69:23:9b:ac:e0:0b:0d:1f:63:68:d0:96:0b:60:
a4:45:b2:8a:af:48:dc:4d:d5:6c:8e:75:11:68:a1:
d8:83:7c:a9:97:77:6d:09:97:4f:c3:cc:c2:48:3d:
8a:15:28:4e:fb:02:ce:50:a2:9d:b6:c9:94:b5:db:
11:7e:43:9b:5a:d1:9f:c3:3d:89:fd:35:fe:37:66:
5a:4f:1a:07:21:3e:57:dc:79:d0:b5:0f:20:17:df:
39:7c:4b:8c:6a:57:b8:8f:c3:9c:da:35:4f:23:e4:
61:e7:54:68:f2:7c:a1:02:19:a8:1f:94:17:cb:f7:
fa:b8:5d:95:7d:04:42:3a:7b:d6:85:0e:1b:f2:24:
75:6e:33:a3:13:79:86:ab:e9:72:b4:dc:f9:af:3f:
59:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:BA:3C:52:8B:EB:A3:67:A0:2A:A9:12:B1:6F:E7:B7:75:44:1E:4E
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/35D1B920B78A11EF94E55964762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.205.170.0/23
Signature Algorithm: sha256WithRSAEncryption
b4:48:a2:a9:e9:d2:3c:91:79:ef:8b:1e:51:56:58:04:64:38:
75:9d:41:4a:30:84:4a:ea:75:2f:c4:47:2c:c9:b0:5e:3f:54:
cc:0b:7f:13:e8:60:94:3c:1b:8e:24:8c:47:f8:d2:7a:5d:28:
6a:63:1b:f9:e0:53:69:43:68:13:95:a4:68:a2:08:f6:1f:20:
54:b4:83:c7:1c:af:70:98:4d:19:f0:32:81:e4:b2:f4:24:f6:
ca:32:42:5f:28:8b:73:2d:e1:f8:05:d9:2a:b7:b4:4e:25:b6:
5a:a0:90:4f:7c:a9:e0:b4:85:05:66:f7:c8:fa:d6:cf:7e:86:
a8:80:a3:ac:87:e7:c6:05:92:ac:20:cd:d7:f1:c7:2d:4a:69:
38:1f:bc:f3:d9:9b:3a:ce:61:c0:e5:44:32:44:0b:03:52:40:
08:16:c9:85:e9:44:4b:85:2c:5d:73:8c:cc:c6:ab:9c:3b:55:
7e:33:bf:66:ea:3c:68:87:c2:de:9a:72:16:5d:51:ce:17:a2:
6f:10:0f:fd:04:22:34:05:ca:dc:ad:4c:54:77:33:d8:9f:4e:
0f:b2:88:fa:36:6b:f8:ac:e9:94:f5:f5:bb:19:44:65:31:35:
1d:55:4c:cd:c6:cb:d2:78:a9:34:a5:4d:93:a4:9a:d0:c3:91:
2b:2d:fa:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 09:55:46 2025 by rpki-client