Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/5AB8C590B89E11EDBB143CE8F1222468.roa
File: 5AB8C590B89E11EDBB143CE8F1222468.roa (raw, json)
Hash identifier: al70bSOMtQlse5Tij1MWPcB9/5noqeAccyAHgzeb88E=
Subject key identifier: 9F:9E:6C:87:E4:C1:45:5F:D1:14:6D:17:90:15:9D:4E:F7:D6:8E:63
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 1CBC
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/5AB8C590B89E11EDBB143CE8F1222468.roa
Signing time: Thu 02 Mar 2023 02:02:59 +0000
ROA not before: Thu 02 Mar 2023 02:02:55 +0000
ROA not after: Sat 10 Feb 2024 02:02:55 +0000
asID: 133199
IP address blocks: 45.207.43.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7356 (0x1cbc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Mar 2 02:02:55 2023 GMT
Not After : Feb 10 02:02:55 2024 GMT
Subject: CN=640003d2-13cf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:4e:83:f3:28:0e:2f:1a:0b:bc:c4:d1:5e:ac:
18:7a:e7:34:d6:e8:76:84:04:f1:21:57:08:36:9f:
8f:5a:81:c0:65:c9:da:d1:d2:91:d8:0c:57:c1:16:
56:a5:98:c1:31:ab:64:88:1e:92:bd:38:dd:6e:ef:
cc:1a:5d:70:19:be:74:d9:a3:75:fb:c1:68:ac:b8:
a4:a0:c7:e7:ee:7d:69:2c:a5:4c:15:d2:4e:a4:e9:
1e:de:6b:e4:e8:93:7f:82:71:50:6b:57:44:0e:a0:
c3:d0:2b:07:e1:58:89:ab:2d:bc:b5:f1:58:5b:f9:
6c:34:54:54:2d:70:68:be:00:80:8a:cb:f3:bb:ec:
fe:dc:ce:90:18:d1:84:ba:2c:69:eb:78:71:79:90:
73:50:22:ad:ae:6c:29:ed:b1:5f:1a:47:cb:fa:46:
f6:f3:94:6e:ec:f8:f5:ca:76:f9:e4:2d:1e:3c:dd:
6a:7b:4a:7a:e8:92:4e:ee:65:52:fb:71:43:ec:77:
bb:0e:4b:54:9e:9f:60:03:3e:b6:6e:c0:78:71:84:
2e:82:e7:20:44:b7:b9:3f:d2:a2:e8:2b:d9:25:20:
ca:28:16:f4:38:4f:57:67:fd:d6:45:c8:9e:25:23:
e4:f5:61:b7:65:c2:51:7e:94:10:af:17:71:65:26:
4f:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:9E:6C:87:E4:C1:45:5F:D1:14:6D:17:90:15:9D:4E:F7:D6:8E:63
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/5AB8C590B89E11EDBB143CE8F1222468.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.207.43.0/24
Signature Algorithm: sha256WithRSAEncryption
82:1b:86:cf:ab:32:5b:64:e0:4d:66:b5:3f:62:b8:a8:61:5c:
75:2b:45:a3:e1:90:fb:dd:fa:18:13:a7:3b:cc:05:38:91:83:
08:d5:6a:22:5a:59:62:58:14:c9:ef:f3:f4:72:66:e4:b3:a1:
50:3a:b5:69:6c:76:ac:9e:55:ce:bf:00:b5:70:7b:8e:29:9f:
8e:3d:c4:a5:31:0a:c8:d0:64:c5:a3:5f:4f:d8:48:0b:27:cf:
42:88:e2:f2:d0:08:26:5b:5a:f2:e9:44:d2:68:49:ae:e1:f8:
89:4a:93:a8:01:40:19:ee:f0:80:4f:87:e6:ac:36:eb:dc:dc:
17:9f:96:7b:60:c4:c3:9e:9e:ac:b7:92:cb:1e:01:00:59:12:
15:ef:9d:3d:c7:40:f5:05:82:c7:c9:45:c0:1a:9c:19:35:c5:
be:46:0a:81:ce:48:d9:7e:13:9c:92:96:82:d9:7e:f5:23:ec:
ac:dc:82:2c:da:af:c1:2f:30:9e:aa:8f:46:a2:7c:f5:c0:dd:
9e:a4:8b:25:dd:73:10:2c:13:4c:73:6e:45:14:2c:6e:c3:aa:
d5:5c:9f:9a:dd:e5:55:7b:dc:f7:05:71:c0:67:7f:17:ab:b0:
f6:ee:e8:10:5d:1b:0d:b6:0e:3a:ff:28:03:f4:90:42:ce:34:
99:f1:b2:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 11 15:29:10 2025 by rpki-client