Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/373F9042B78B11EFA910946A762E951A.roa
File: 373F9042B78B11EFA910946A762E951A.roa (raw, json)
Hash identifier: Q9RnXQBJLdtr4tIvQrZYSPBwB2i3rZ7AcPr5kGDiBas=
Subject key identifier: 98:AC:F8:12:3D:54:B4:A9:B5:C9:6A:38:72:BC:46:A0:73:81:20:89
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: E289
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/373F9042B78B11EFA910946A762E951A.roa
Signing time: Wed 11 Dec 2024 06:43:23 +0000
ROA not before: Wed 11 Dec 2024 06:43:19 +0000
ROA not after: Thu 16 Jan 2025 06:43:19 +0000
asID: 6079
IP address blocks: 45.205.86.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 57993 (0xe289)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Dec 11 06:43:19 2024 GMT
Not After : Jan 16 06:43:19 2025 GMT
Subject: CN=6759348b-99c3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:1d:a2:10:16:e1:2d:13:21:37:4c:72:37:db:
09:95:68:8d:f7:44:a0:da:8f:af:69:a6:52:2e:88:
82:ff:af:c0:2a:f2:b2:f1:36:ec:18:7f:ff:d5:f1:
e7:bc:98:50:fb:de:8b:a2:69:87:7e:46:18:b8:e7:
23:23:cd:b6:f9:7d:ed:40:bf:91:1f:0f:a1:f9:d9:
72:b5:9b:66:81:7a:b8:9d:5c:39:52:1f:c1:b0:bc:
1e:36:28:93:cc:77:ee:b7:e1:40:98:75:fc:ae:87:
58:0c:ad:ca:e4:3d:9b:6f:c1:dd:44:02:ba:88:ce:
02:6e:07:3b:15:dd:e7:61:6c:34:0d:5f:ac:e8:34:
66:ec:c9:3d:86:47:a2:cc:e6:8d:a1:00:a1:f3:cb:
3a:9b:db:98:28:95:d4:29:a0:07:94:68:7c:cf:9a:
ed:ca:21:cb:95:91:e5:ee:fa:33:d1:aa:ce:19:1c:
d3:c9:eb:98:da:c9:20:d5:34:55:cc:76:05:fe:00:
7f:a7:da:cc:45:57:58:d6:25:9f:10:1d:21:35:ce:
e3:c4:18:11:7e:90:23:ef:c6:2d:cb:54:c4:70:02:
54:00:aa:73:54:76:d5:54:d3:bb:72:e0:8d:01:23:
56:1c:65:73:82:da:0c:4c:12:00:0c:5e:3c:b0:65:
47:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:AC:F8:12:3D:54:B4:A9:B5:C9:6A:38:72:BC:46:A0:73:81:20:89
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/373F9042B78B11EFA910946A762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.205.86.0/23
Signature Algorithm: sha256WithRSAEncryption
1a:70:be:04:b9:24:a7:7e:08:bd:5b:5e:cc:fd:dc:66:5e:a2:
f7:4e:b5:67:78:bd:93:3d:bc:ff:15:64:d1:9d:1b:b2:25:48:
81:b1:ce:17:2e:22:47:20:14:1d:a9:ec:f9:c9:74:34:2e:d0:
9c:8d:90:b1:74:1f:80:9f:93:e1:d8:80:44:6d:a2:14:29:98:
5a:8c:ea:5e:a0:63:3e:07:63:2a:b7:6f:8c:26:42:5a:9c:d6:
d5:4e:1d:bf:3d:1f:5a:64:6b:37:32:db:88:04:cd:73:62:28:
bd:8e:ba:41:8f:5a:b8:f3:5a:16:63:85:ca:3f:f1:dc:0e:61:
91:a7:8c:72:76:cd:38:70:b6:1b:aa:51:5f:f7:da:2b:27:06:
fc:ae:56:c8:c9:e4:f0:a0:07:c5:9b:f9:26:27:d7:c5:38:c1:
a1:51:96:bb:08:40:e2:38:12:ff:31:5c:b1:5b:c7:a0:00:de:
24:39:8e:34:d7:5b:c3:51:44:3e:68:6a:e9:aa:be:77:3b:af:
fa:6e:8a:b3:20:50:5d:47:cf:07:7c:e8:46:89:6b:19:1c:ff:
c0:1c:f7:09:53:33:ad:94:d6:a9:f1:ad:99:64:23:a0:5c:0d:
17:96:59:b0:07:de:3c:a2:65:82:d0:1d:e3:59:3b:25:a2:07:
cd:c9:d4:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 09:45:00 2025 by rpki-client