Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/56EC0C00CE9111EFA99B5CB2762E951A.roa
File: 56EC0C00CE9111EFA99B5CB2762E951A.roa (raw, json)
Hash identifier: uL+ac7rQ5q6TMhe1C2lsaySAPBk9vI14KDOK7+xam9g=
Subject key identifier: C4:5A:71:F7:FE:4D:12:26:AA:34:E7:30:F1:53:D4:93:70:E1:A7:8A
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 0103F0
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/56EC0C00CE9111EFA99B5CB2762E951A.roa
Signing time: Thu 09 Jan 2025 13:55:09 +0000
ROA not before: Thu 09 Jan 2025 13:55:06 +0000
ROA not after: Wed 22 Jan 2025 13:55:06 +0000
asID: 39600
IP address blocks: 45.197.200.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 66544 (0x103f0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Jan 9 13:55:06 2025 GMT
Not After : Jan 22 13:55:06 2025 GMT
Subject: CN=677fd53d-2304
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:27:2e:ab:25:0b:ab:45:ce:a2:ed:f9:4c:42:
7d:9f:a0:04:10:25:29:62:0d:f8:3e:96:ad:a9:8b:
d8:d5:57:23:64:c2:19:0f:f8:86:d4:19:50:d7:65:
3d:65:49:3c:17:53:9c:59:86:be:12:82:df:03:66:
08:06:47:ec:6b:a9:95:3d:b7:ca:bd:f8:12:c6:c9:
00:9b:b1:2d:a0:36:f4:2e:50:e9:b6:15:86:8c:6c:
78:9f:be:13:79:ea:40:57:82:f3:f0:a9:0d:f0:00:
92:bb:e5:4e:0f:0b:00:81:c3:aa:b0:9c:01:2b:78:
c8:9a:f0:ee:32:2c:13:bf:84:fd:08:a6:c3:db:d2:
6b:ba:19:4f:99:0e:21:fb:bc:6a:48:36:c0:02:52:
47:bf:db:55:80:f8:36:89:c0:be:1f:88:75:ed:c5:
11:9f:00:23:dd:33:d9:54:7e:e3:35:5a:24:d4:b1:
05:fe:8d:1f:e5:fb:4c:e1:af:a0:fa:5c:88:15:ff:
87:d4:7f:01:0f:32:f7:3c:ba:96:a5:70:b9:52:34:
2f:8f:5f:ea:1a:e9:e2:c6:1a:dd:38:a8:77:54:72:
50:1f:5e:1c:71:19:76:c6:1e:d1:8b:3b:4f:1d:96:
fa:9d:27:b9:6e:83:07:89:10:6f:d4:58:e6:f2:4b:
4c:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:5A:71:F7:FE:4D:12:26:AA:34:E7:30:F1:53:D4:93:70:E1:A7:8A
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/56EC0C00CE9111EFA99B5CB2762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.197.200.0/22
Signature Algorithm: sha256WithRSAEncryption
18:1f:ce:8c:14:b8:f4:39:11:b8:78:33:51:d2:ba:7d:40:1c:
85:b2:40:78:f4:c7:7c:c4:db:bf:a4:38:81:11:ba:75:42:0b:
52:73:b2:51:6f:7b:4f:75:22:ce:1d:e9:ef:99:75:41:8c:76:
f2:c4:6f:71:90:00:d8:cb:d0:55:39:27:bf:b9:ee:08:0d:0c:
f0:35:e0:26:1a:52:ac:ae:b2:8e:9a:51:d7:84:f0:83:9a:58:
cc:dc:82:ec:f6:be:d1:13:1c:b7:ab:6c:e3:2a:3c:9e:c7:f5:
3e:26:49:e0:5a:d9:51:1c:bc:c8:95:31:10:3d:1a:0c:f8:c1:
fa:e2:2c:de:68:e0:2a:82:dd:bb:b8:72:75:d7:69:07:fb:43:
26:e4:6d:89:b4:60:65:87:77:6f:ac:e9:e2:59:40:fe:d7:f7:
b7:7c:2f:44:8f:02:7a:54:ce:0b:da:fb:e4:4a:7a:e2:16:47:
e7:ce:84:5c:66:25:62:7a:e3:49:0a:f4:50:47:7c:47:80:94:
e6:b1:cf:b4:94:86:99:14:7f:50:b5:22:29:23:e6:0c:93:d9:
5c:62:73:12:ad:66:3b:ac:92:e2:3c:b5:18:c9:23:62:43:83:
4a:85:8d:c4:54:f6:1b:cc:77:d8:af:a1:c7:bd:0d:66:37:7a:
b9:4b:05:2e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 09:38:58 2025 by rpki-client