Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/447A0F8EC9B111EFBB4182B0762E951A.roa
File: 447A0F8EC9B111EFBB4182B0762E951A.roa (raw, json)
Hash identifier: uEuL6WrAplpN8/YCbsxXg1f6lZp9zijAtUQ3wl0WA7k=
Subject key identifier: 78:33:70:90:90:13:82:40:43:06:B4:8F:2E:14:9F:F0:32:93:62:34
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: F6B7
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/447A0F8EC9B111EFBB4182B0762E951A.roa
Signing time: Fri 03 Jan 2025 09:01:07 +0000
ROA not before: Fri 03 Jan 2025 09:01:03 +0000
ROA not after: Sat 18 Jan 2025 09:01:03 +0000
asID: 139646
IP address blocks: 45.200.16.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 63159 (0xf6b7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Jan 3 09:01:03 2025 GMT
Not After : Jan 18 09:01:03 2025 GMT
Subject: CN=6777a753-771f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:6d:b9:ef:e2:34:85:3a:0e:95:c6:77:bf:fb:
07:f0:a3:58:30:7b:c5:86:ae:ba:6b:4f:24:d9:a2:
43:b4:dc:f9:57:7d:94:95:9e:af:40:ef:f4:5b:ad:
5b:2f:d9:95:6d:ff:5b:58:cc:78:2e:bb:87:57:4d:
53:bd:ea:45:e0:28:c2:08:08:8d:b4:c6:02:02:ee:
25:3a:1c:a6:3f:ba:7e:b1:36:4d:0a:4b:00:1b:d5:
21:23:5c:ad:ce:0e:09:5d:4a:c0:a3:aa:c5:08:46:
5f:9f:e0:ec:99:b6:0c:4b:e2:5a:56:4a:1b:68:f7:
64:fd:02:3b:c9:8e:49:01:ba:1f:ef:a0:85:92:80:
5c:4a:ac:16:b8:24:ad:10:5e:c0:28:04:88:ce:c9:
8d:ee:6c:2f:f8:08:38:25:2d:19:8f:87:f5:cc:b6:
59:d0:45:d1:f2:59:89:ec:7d:a0:74:2a:f5:d5:ee:
bc:8d:07:d1:ed:c7:ca:f0:d5:6c:63:80:fe:2f:5b:
31:08:d3:ea:e6:bf:d3:2e:24:ff:b0:f4:04:a0:ef:
8d:24:e4:0a:b9:0a:6e:d2:96:29:7d:27:70:d7:fa:
8b:b4:bc:b6:fd:25:66:27:5c:57:36:90:04:15:a1:
d0:8c:d4:fd:84:b9:0e:85:8f:fc:dc:f5:32:be:fd:
20:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:33:70:90:90:13:82:40:43:06:B4:8F:2E:14:9F:F0:32:93:62:34
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/447A0F8EC9B111EFBB4182B0762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.200.16.0/23
Signature Algorithm: sha256WithRSAEncryption
62:b6:27:94:71:29:16:74:63:6b:9a:a5:8d:19:04:3c:3d:dd:
a0:fc:0e:8a:bc:57:40:57:fb:26:4b:2a:3d:d6:74:44:8f:32:
61:76:de:cf:67:2b:e0:bf:20:44:31:09:98:78:34:bb:84:ae:
0c:2e:56:42:ad:e0:28:6c:41:5c:7e:77:24:09:ce:79:cb:7f:
e4:f6:90:59:60:44:e8:fd:fb:c6:da:f7:30:fa:92:d4:e8:d2:
f3:e7:89:5c:65:b9:e7:42:17:ba:83:00:1d:0b:01:86:ee:e8:
41:1a:46:e5:94:46:93:d6:62:9a:8e:b2:91:ca:a2:e4:f9:60:
89:a5:32:1a:ce:77:32:ef:77:c1:52:06:a9:12:e0:cb:f8:5e:
d6:3d:c0:18:ca:b0:ef:04:39:d0:a1:68:03:16:8f:1b:4a:10:
69:ce:09:f1:8a:22:9a:52:64:12:e7:79:ca:e5:a6:ec:98:56:
4a:65:a4:11:37:f0:cf:ad:8d:f4:24:ce:00:b6:b2:51:a4:47:
df:9b:56:e2:aa:1e:20:f4:6d:1b:2e:11:91:b3:4e:7e:64:ca:
f8:d4:32:ae:95:01:70:fd:17:1b:1a:65:84:4d:31:d2:18:1a:
ee:c2:1c:c1:4e:b4:76:ce:0b:15:a7:6c:9d:6a:f3:c6:e1:9a:
90:cd:a8:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 09:42:59 2025 by rpki-client