Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/44FA4C52D24F11EF88AC8961762E951A.roa
File: 44FA4C52D24F11EF88AC8961762E951A.roa (raw, json)
Hash identifier: kKAcq8V9iqYQ2tKuvNdKunPYnYi0F2Mpi7OxH57KUHM=
Subject key identifier: F6:8B:DE:AA:A6:E6:28:4F:57:F1:9A:A8:63:EB:27:53:66:F6:C6:FA
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 0106FC
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/44FA4C52D24F11EF88AC8961762E951A.roa
Signing time: Tue 14 Jan 2025 08:12:17 +0000
ROA not before: Tue 14 Jan 2025 08:12:14 +0000
ROA not after: Wed 22 Jan 2025 08:12:14 +0000
asID: 40065
IP address blocks: 45.205.2.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 67324 (0x106fc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Jan 14 08:12:14 2025 GMT
Not After : Jan 22 08:12:14 2025 GMT
Subject: CN=67861c61-cf47
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:75:40:16:b7:93:8f:b7:df:13:69:02:d7:d2:
32:b7:72:23:20:9c:e9:de:20:c1:26:ef:99:43:a2:
9f:0f:51:88:a5:e3:dd:8f:1d:ef:ca:61:b0:d4:03:
3d:99:15:94:7d:75:b9:a9:a3:f5:c3:b6:11:ef:e2:
46:6b:06:df:6f:12:cb:5e:fd:78:0e:24:e5:24:67:
55:3f:66:f4:04:d7:41:64:3d:f5:c4:75:bb:61:96:
f0:c0:09:62:4a:bf:72:8a:e4:ca:a5:90:3b:07:67:
26:14:01:3c:c4:bd:f7:9c:05:64:40:55:75:2a:a9:
da:d7:26:4e:14:c9:97:f9:bc:ab:51:a4:50:a1:fd:
7c:53:19:08:74:5c:99:2b:e4:3e:c5:81:85:5a:fb:
6e:a4:bf:8f:bc:4c:93:e0:a2:59:fd:5f:55:c5:bb:
35:ae:e2:c9:a2:71:52:15:b5:d9:79:50:19:e4:05:
a4:58:37:6a:e2:3e:47:ac:c4:1a:ab:0a:4b:58:57:
a2:c3:b1:d5:f1:9f:91:6c:0c:49:c3:65:c6:2c:13:
28:cf:4a:e5:85:a8:7f:b9:fc:83:78:eb:3f:6d:5f:
88:05:2f:45:bf:ee:09:e8:25:4b:ff:f5:a6:9a:9f:
fa:eb:16:92:f0:da:58:4c:67:2e:ee:18:2b:62:de:
d9:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:8B:DE:AA:A6:E6:28:4F:57:F1:9A:A8:63:EB:27:53:66:F6:C6:FA
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/44FA4C52D24F11EF88AC8961762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.205.2.0/23
Signature Algorithm: sha256WithRSAEncryption
b6:ac:eb:a1:b7:d4:59:94:c7:fd:65:ac:c3:e4:2b:59:e2:45:
87:7a:27:d7:da:4a:02:e7:8c:6b:15:a2:01:5f:2d:16:36:71:
58:85:9b:96:80:d3:92:91:6b:88:2c:65:62:13:49:f4:a8:28:
8f:51:1c:c7:9d:3f:20:66:58:1e:00:b4:6d:a1:df:84:36:34:
72:9d:78:5b:7a:15:31:13:e4:bd:f6:fd:c0:2d:8b:fc:ff:69:
c7:24:39:be:ae:79:a2:9a:9a:a0:6b:35:2b:46:04:94:b0:db:
90:e9:b4:56:13:45:f8:26:6a:64:52:59:a0:ea:5a:b2:27:e6:
ee:27:1e:d9:22:00:3b:f0:ea:2f:28:03:df:0c:32:b3:b9:5f:
a1:51:92:7f:dd:a3:95:3c:d2:b0:56:50:5c:d9:2d:fb:76:e3:
50:e2:dc:30:6c:33:82:18:70:5f:64:3e:a8:ee:4d:b4:cf:61:
05:67:fc:67:06:9d:59:c7:45:ce:c5:3b:a3:4d:97:cb:9f:82:
bf:c8:60:93:ec:d6:d1:ed:a6:f5:0c:3a:bc:b6:14:4f:d9:20:
50:28:8f:3d:97:df:4d:d2:cc:d9:c9:42:0e:1b:9b:e8:08:2d:
1c:7d:2e:ff:9d:d5:0c:d4:8e:77:12:dc:2d:3d:9b:ba:38:44:
7a:24:ba:8a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 09:58:51 2025 by rpki-client