Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/52EEE7CCD30E11EF9606B0A4762E951A.roa
File: 52EEE7CCD30E11EF9606B0A4762E951A.roa (raw, json)
Hash identifier: Fj9+9Ea8pq1Wornjr69rswe1AASMVfeK81RB3EbwyuE=
Subject key identifier: E7:4F:3B:FF:CD:CD:F6:9C:45:1B:87:A2:5C:45:C7:AC:57:01:C2:C2
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01083B
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/52EEE7CCD30E11EF9606B0A4762E951A.roa
Signing time: Wed 15 Jan 2025 06:59:55 +0000
ROA not before: Wed 15 Jan 2025 06:59:51 +0000
ROA not after: Mon 27 Jan 2025 06:59:51 +0000
asID: 142032
IP address blocks: 45.205.16.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 67643 (0x1083b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Jan 15 06:59:51 2025 GMT
Not After : Jan 27 06:59:51 2025 GMT
Subject: CN=67875cea-d50b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:2b:e4:ea:bb:13:62:21:a0:8f:c5:3a:c9:1e:
17:9e:a1:15:b4:bd:78:5d:12:98:27:2e:4d:ae:eb:
06:22:d1:54:04:ea:5d:33:b4:87:a6:87:5d:77:a8:
bd:f5:99:a5:24:c6:56:8a:42:7d:6d:bf:ca:ff:50:
ac:a0:21:41:c6:54:d3:aa:cc:62:9c:a3:fa:6a:de:
ff:c9:4a:04:04:99:e9:43:d3:6a:95:92:9c:7b:75:
7d:30:ef:d0:9a:89:e7:8f:2f:80:53:6d:cd:b4:27:
fa:03:39:bc:4c:8d:44:04:3c:41:dd:de:47:66:9c:
49:e3:26:06:aa:0c:01:18:f8:07:d5:2a:33:b2:39:
33:47:91:56:f4:30:53:f7:c5:5a:49:34:b2:18:cb:
23:03:3d:2f:d6:8e:6d:bd:15:e7:42:71:ad:34:81:
99:a8:df:5d:79:ee:a9:53:1e:4d:04:76:94:c3:1e:
2a:39:2f:09:d7:93:6f:c4:90:97:a9:af:4a:28:6d:
30:cf:e2:c7:7d:b2:59:f1:32:3a:c6:79:76:26:19:
45:53:70:5a:b0:7b:0e:af:a2:ae:fa:d9:d5:0b:5c:
cc:55:96:d4:f9:05:b1:80:a9:d2:01:86:3c:b5:c7:
2f:f1:33:13:ef:f7:15:1a:e7:2a:dc:7f:0d:66:98:
53:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:4F:3B:FF:CD:CD:F6:9C:45:1B:87:A2:5C:45:C7:AC:57:01:C2:C2
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/52EEE7CCD30E11EF9606B0A4762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.205.16.0/20
Signature Algorithm: sha256WithRSAEncryption
7e:64:61:61:24:ae:d3:e5:41:77:80:11:5d:08:ef:79:8e:a3:
a0:3d:65:b7:a1:86:e1:5f:fc:12:01:3b:c8:5f:9f:a0:eb:8e:
3f:09:72:2d:b9:d7:89:8e:4d:a4:65:c9:4a:55:59:9d:27:2b:
e3:6f:d6:92:15:9d:f9:ad:b8:f6:6c:92:e0:c3:91:ab:b9:77:
50:7c:7b:11:34:b9:01:a2:ca:5a:bc:4d:e8:e1:e6:21:36:0b:
01:ba:6f:53:d3:d5:01:45:26:6f:7d:d7:b1:c0:8e:1f:6f:c2:
38:76:5e:43:e9:46:aa:55:a1:fe:6e:5c:c4:f0:27:bf:d5:77:
3c:8e:fd:65:f8:d7:1b:c7:aa:8e:ee:77:f0:0b:22:02:9d:4b:
ca:37:e2:27:61:6b:31:3f:9f:42:b8:83:db:b2:d7:27:ce:85:
d8:09:f6:5b:27:90:c7:59:28:37:01:34:bb:70:71:cd:47:b3:
b5:a0:18:5f:b6:e9:32:f5:03:d2:9e:ea:75:9f:a2:0d:70:d0:
9a:c1:f3:5e:ac:49:10:70:22:b1:03:62:00:58:fc:fa:7c:e8:
eb:c2:be:10:15:f9:59:f4:ad:0d:e5:13:54:0b:c0:44:34:7b:
73:0a:ea:0d:6b:9f:c0:2e:e9:e6:72:7a:81:9d:48:4c:d8:7c:
b2:d0:fa:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 09:44:40 2025 by rpki-client