Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/3CF421E6B85411EF9DAABA57762E951A.roa
File: 3CF421E6B85411EF9DAABA57762E951A.roa (raw, json)
Hash identifier: nygtYloORxoPaw3C8iDMxYfqqztmStYuWUCjb/cGqe4=
Subject key identifier: 6F:07:41:B9:D7:3E:2F:00:D6:57:98:69:C8:AD:4D:8C:FF:3D:68:6F
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: E29E
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/3CF421E6B85411EF9DAABA57762E951A.roa
Signing time: Thu 12 Dec 2024 06:42:21 +0000
ROA not before: Thu 12 Dec 2024 06:42:17 +0000
ROA not after: Fri 17 Jan 2025 06:42:17 +0000
asID: 6079
IP address blocks: 45.202.68.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 58014 (0xe29e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Dec 12 06:42:17 2024 GMT
Not After : Jan 17 06:42:17 2025 GMT
Subject: CN=675a85cd-ac8b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:84:70:42:a3:54:18:4f:12:21:de:8e:3f:34:
c2:12:1f:9d:59:5f:b2:bf:8e:7c:28:7e:70:0c:c8:
a3:48:43:2c:e8:68:78:1e:0b:6e:a7:21:a2:ed:8c:
2c:97:cb:76:04:46:57:4c:04:ed:c5:75:30:d8:09:
82:96:55:f8:89:a2:e4:42:c3:df:3f:92:bb:a2:a7:
f5:90:28:3a:4d:19:6d:e0:1b:63:6d:e5:de:39:38:
df:95:fb:a1:c5:b7:31:6d:dd:46:c2:ba:80:68:10:
e6:60:59:b2:e8:66:81:3d:f4:42:f1:30:66:c8:a0:
a7:84:ba:4a:7b:18:f7:c1:91:c2:47:da:49:20:2b:
21:9e:a3:d0:f9:88:9f:97:a4:0f:ea:db:7b:d6:5c:
0c:e2:9e:53:ee:d6:84:a8:b2:d3:6c:42:a1:45:28:
e6:57:0e:94:a5:a1:04:51:31:4a:d6:56:1a:f8:70:
ee:9a:86:19:34:c3:8f:e8:0d:6a:4c:ce:44:54:24:
04:b9:74:b9:fb:19:b5:3d:92:7a:f8:61:7f:60:fa:
4a:45:c4:1c:6b:03:d7:f3:14:66:5c:33:60:52:6c:
ab:4c:84:5a:35:14:6c:29:56:7d:7d:28:dc:67:76:
f6:b2:98:bb:19:f1:76:a2:b1:db:90:32:58:38:31:
ec:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:07:41:B9:D7:3E:2F:00:D6:57:98:69:C8:AD:4D:8C:FF:3D:68:6F
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/3CF421E6B85411EF9DAABA57762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.202.68.0/24
Signature Algorithm: sha256WithRSAEncryption
b1:4c:9c:72:3c:aa:2d:85:a6:5c:b5:80:64:59:10:9b:11:3b:
04:d8:6a:19:9a:d2:1d:ab:42:be:9a:9c:e2:fc:f8:3d:df:2b:
6e:28:72:50:78:36:6a:fc:d8:23:2e:04:27:54:5d:79:4c:02:
59:fa:6d:99:a1:38:7a:e4:81:58:06:e4:7b:02:ea:c3:b7:30:
b8:11:ff:5b:bd:42:2d:37:9a:75:27:ff:03:29:50:d1:c0:a9:
df:1d:4f:57:34:60:c6:d4:33:16:c9:94:94:7c:d6:8a:ce:d7:
40:a2:cd:7c:7a:ae:8e:0e:ee:c2:fc:e6:30:f2:75:15:ae:82:
eb:9e:74:59:11:46:73:6f:14:d3:0c:dd:b5:7a:c2:15:7d:9c:
91:26:58:bc:18:a3:7a:7a:a1:15:ea:84:57:fe:04:1b:a9:60:
d9:c5:be:31:03:8a:1b:53:95:48:58:cf:fd:5a:11:9f:a9:f2:
e0:fe:fe:f0:be:c7:87:19:6a:07:8e:13:d9:db:1c:b2:85:23:
09:09:79:46:c0:2f:35:b3:f5:66:9a:05:6f:ec:a5:a5:d3:b2:
2d:62:cb:30:5f:3b:6d:ec:80:74:20:0a:cd:b1:2b:74:e0:5a:
2c:94:32:e1:86:96:da:cb:f3:a7:63:c0:77:7d:f3:5e:43:da:
00:5b:01:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 09:54:37 2025 by rpki-client