Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/55C01636CE7E11EFAD4BCEB8762E951A.roa
File: 55C01636CE7E11EFAD4BCEB8762E951A.roa (raw, json)
Hash identifier: HJyC5gbBTpJV4u+UQQM0r3Lmah/vOvhFrmgPvO1boeQ=
Subject key identifier: 72:B7:B8:FE:C9:9E:9D:4B:F8:12:FC:61:F1:F0:26:45:FE:C9:07:1E
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 010378
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/55C01636CE7E11EFAD4BCEB8762E951A.roa
Signing time: Thu 09 Jan 2025 11:39:07 +0000
ROA not before: Thu 09 Jan 2025 11:39:03 +0000
ROA not after: Sat 01 Feb 2025 11:39:03 +0000
asID: 17561
IP address blocks: 45.203.2.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 66424 (0x10378)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Jan 9 11:39:03 2025 GMT
Not After : Feb 1 11:39:03 2025 GMT
Subject: CN=677fb55b-1ca9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:a1:81:60:0e:08:2b:fe:cc:38:2a:b4:61:a3:
9d:13:c6:32:c8:ed:b2:8f:f4:e9:4d:8a:a2:02:6d:
ed:ad:bb:5e:3f:70:94:0e:a0:4f:d4:56:37:c4:d9:
f2:5d:d9:4e:cb:03:92:f4:36:7a:4c:10:b2:96:ce:
eb:86:a9:08:c5:30:30:4f:3d:ea:d6:5d:60:ed:94:
51:6d:42:66:45:16:63:25:8e:c1:d2:a5:ca:1b:d3:
f5:68:05:08:7c:af:61:e6:67:7b:65:93:f8:16:d3:
d9:54:1c:35:c2:d0:2e:aa:41:3c:3e:02:3c:b2:8b:
a8:d1:16:c8:a4:70:4d:5e:a4:5b:c9:87:c4:9a:c9:
e3:46:80:01:a1:f6:3c:2c:15:b8:4b:99:5a:d5:0a:
f5:47:1f:83:76:91:56:99:f3:04:e0:9b:2d:03:71:
67:b9:2d:2d:29:d3:24:12:a0:64:0d:d2:35:f6:6c:
21:c8:c3:46:be:f0:e0:a5:dd:36:30:75:6c:72:f0:
22:82:5b:97:0e:4f:41:54:b0:6a:28:22:09:bd:67:
6f:f7:7f:99:87:6f:d9:4d:ba:64:69:9a:18:7b:32:
f6:fc:ff:8b:87:6a:4a:60:ff:6b:e3:fc:89:7a:d2:
7c:22:dd:8c:14:8f:d5:22:c3:c3:27:4b:a3:9b:da:
a1:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:B7:B8:FE:C9:9E:9D:4B:F8:12:FC:61:F1:F0:26:45:FE:C9:07:1E
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/55C01636CE7E11EFAD4BCEB8762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.203.2.0/24
Signature Algorithm: sha256WithRSAEncryption
0c:8a:a3:25:20:53:6d:81:27:26:68:8f:d9:9e:73:6e:ce:d4:
4f:54:79:0a:72:fc:09:8a:97:6a:45:24:7e:35:d4:48:42:e7:
e2:24:f6:c1:dd:71:51:57:cd:1d:c3:8f:fc:71:64:c0:99:14:
eb:51:ef:a7:39:92:e5:3f:36:ba:9b:3d:a4:b0:8e:2e:1d:06:
7a:f6:eb:52:24:9c:74:c6:2c:68:a4:70:07:98:b2:b5:e9:87:
5d:ed:34:6b:47:61:cf:18:fc:60:72:da:52:45:85:12:d5:34:
6e:52:1e:66:50:68:43:20:09:87:6c:54:70:eb:0f:a3:82:83:
44:4c:46:4a:d9:2b:e0:3a:74:1d:ae:ec:79:cc:9c:53:a0:00:
ca:7f:c0:7b:38:c5:9a:ff:17:fd:15:fb:47:e7:9b:2e:01:53:
07:90:9c:85:20:05:15:6b:a1:6a:bd:94:e1:61:7d:b4:8d:23:
29:33:b6:f8:bb:b4:37:c4:8d:ed:11:2f:89:de:2a:a4:0d:21:
5c:90:94:f3:32:fc:bd:0e:10:04:eb:56:d4:d5:8d:eb:c5:fd:
08:a0:d8:56:b2:b9:d6:24:7f:54:50:a9:58:f6:53:bd:4c:0b:
b9:6d:39:9f:36:89:a4:d8:e4:c0:af:aa:f1:d7:e4:e2:27:d1:
31:6a:7d:f8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 09:41:02 2025 by rpki-client