Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/4281A2F2BEB511EFBF503072762E951A.roa
File: 4281A2F2BEB511EFBF503072762E951A.roa (raw, json)
Hash identifier: 00iUNuIHKOXm8amETrECnXm6k6NB1QcnwQiUdzEPlMs=
Subject key identifier: 03:8E:FB:60:3B:0D:3F:33:58:A8:37:55:75:41:3E:BB:5B:BC:C7:8F
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: E765
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/4281A2F2BEB511EFBF503072762E951A.roa
Signing time: Fri 20 Dec 2024 09:31:59 +0000
ROA not before: Fri 20 Dec 2024 09:31:55 +0000
ROA not after: Thu 23 Jan 2025 09:31:55 +0000
asID: 140869
IP address blocks: 45.203.220.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 59237 (0xe765)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Dec 20 09:31:55 2024 GMT
Not After : Jan 23 09:31:55 2025 GMT
Subject: CN=6765398f-8421
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:cc:50:a7:65:da:94:87:f8:db:4b:77:a0:13:
fc:64:ef:8a:68:36:00:b0:cd:73:af:29:f2:78:77:
56:2c:57:96:1b:e9:04:a0:26:49:ce:f3:ab:10:80:
7a:91:ba:95:e4:d8:c4:97:38:92:7e:b0:da:c1:14:
7b:2c:7c:36:c1:40:ba:e5:7a:6a:ce:fe:20:2f:8a:
74:19:e6:89:d4:a9:52:6c:1b:01:99:3c:79:c6:f0:
f8:8c:59:51:5d:b7:0b:94:e5:df:14:89:06:56:37:
ce:2c:a8:06:73:fd:93:66:06:16:11:6e:8a:d7:6f:
06:c6:6e:e1:56:73:53:0f:a4:82:5d:f9:dd:61:87:
1d:04:95:3a:23:09:d1:ae:f6:ee:57:02:2a:f1:58:
99:28:08:0b:9a:44:b3:ce:71:cc:ec:bb:0e:53:e8:
be:3f:98:1e:99:b2:cb:b5:1d:eb:1d:89:a2:e0:03:
0b:f5:18:82:4e:b2:52:22:60:ae:ea:c8:89:08:9f:
bc:30:b9:ad:9a:02:e6:aa:c7:86:ba:3f:bf:28:c4:
42:a5:62:b0:40:fa:eb:01:1f:b2:ee:df:83:a5:fe:
ed:74:70:1f:3f:28:ad:b9:65:a9:a9:5d:94:12:1f:
83:93:56:0a:5d:86:d1:70:39:36:61:76:bb:73:0e:
ea:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:8E:FB:60:3B:0D:3F:33:58:A8:37:55:75:41:3E:BB:5B:BC:C7:8F
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/4281A2F2BEB511EFBF503072762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.203.220.0/24
Signature Algorithm: sha256WithRSAEncryption
67:2e:cb:70:91:c6:a8:64:94:a5:bf:e0:e3:8f:2c:83:b2:39:
ae:87:7f:17:3d:fb:1d:aa:d2:49:01:d1:45:68:f7:d9:ee:dd:
ce:eb:04:31:65:0d:9e:ad:7b:80:0d:80:4c:7b:71:01:bb:fd:
65:3f:ea:aa:e3:bb:65:f5:2a:f6:d9:b2:8d:f5:a6:8c:28:45:
b1:cb:0d:53:1d:7e:07:92:37:5c:ba:15:46:7b:fe:66:f4:78:
5f:d4:50:b5:94:87:c0:d1:0e:7c:bf:95:b4:0c:f2:eb:fb:5f:
0d:89:58:b3:ac:ce:9f:c0:36:a4:b1:a7:c7:37:dc:d7:de:53:
15:7a:32:b3:84:12:27:c6:7b:dc:61:c5:80:77:23:8c:ec:55:
41:39:71:1c:b5:a0:ef:2c:09:6a:f7:77:1f:5c:7b:27:98:ad:
6f:b7:de:b1:83:d5:cc:7f:b9:bd:a9:b8:d4:52:6e:60:47:d9:
ef:57:b4:b3:ff:5a:07:ae:68:c8:a1:b5:cb:e2:99:78:bc:13:
fe:c3:49:f6:95:a2:bd:a0:a1:15:a3:70:9c:71:d8:ce:cc:39:
a8:f6:46:0c:af:e2:83:cd:1f:ed:52:0c:bb:0d:81:69:e1:c5:
1a:09:4b:91:eb:60:3a:31:33:46:bb:a6:da:ae:24:52:09:f7:
75:39:9e:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 09:36:47 2025 by rpki-client