Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/5AC6BD4CD00E11EF9DB4EDA7762E951A.roa
File: 5AC6BD4CD00E11EF9DB4EDA7762E951A.roa (raw, json)
Hash identifier: IrRySVilgALSCD/pB4hgceh/ICvmIzyDA9dHbjPgXsE=
Subject key identifier: 5B:62:7C:91:F1:5C:50:BE:EB:12:8B:DA:3F:89:41:D8:24:D1:C8:67
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 0105D2
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/5AC6BD4CD00E11EF9DB4EDA7762E951A.roa
Signing time: Sat 11 Jan 2025 11:22:34 +0000
ROA not before: Sat 11 Jan 2025 11:22:30 +0000
ROA not after: Sat 25 Jan 2025 11:22:30 +0000
asID: 141883
IP address blocks: 45.204.0.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 67026 (0x105d2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Jan 11 11:22:30 2025 GMT
Not After : Jan 25 11:22:30 2025 GMT
Subject: CN=6782547a-a059
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:be:3a:54:2a:7f:d5:cd:2a:c8:c2:88:5f:c6:
fd:f9:6c:64:54:fa:8d:2d:7b:9f:c2:ca:6a:bc:e0:
cc:34:a5:86:6f:ca:0a:cc:30:4b:1d:4c:93:62:ad:
52:28:a2:93:ca:25:c1:4f:21:c7:2b:39:9b:43:3a:
29:d0:63:ca:86:bc:f0:c2:f6:82:7a:4d:99:c0:c1:
6a:fc:75:b5:45:df:47:d1:db:4e:8f:27:19:85:35:
4d:7a:e9:c0:53:2d:76:c3:e2:09:57:c4:89:c9:3f:
92:36:49:31:77:44:da:e1:9f:a5:49:25:e4:09:f8:
71:68:e8:ae:df:b2:97:ac:0e:c5:b1:3d:7c:31:6e:
af:6f:b5:56:b6:23:95:aa:d0:5b:cf:4f:a3:22:30:
2b:55:52:5b:64:cc:21:11:48:fa:46:fb:07:c5:db:
84:44:01:ba:1e:a5:e1:cf:ea:ca:e1:89:ed:12:0b:
4f:2d:f7:ab:06:99:87:c1:f6:4b:c4:ea:f0:32:46:
4a:6d:e4:66:12:a1:d4:df:a3:2e:c9:2b:d3:67:fa:
ae:e4:ad:40:b4:0f:87:ed:1f:f6:b8:14:a5:90:4d:
67:4f:41:66:ec:e5:78:d4:93:5e:0e:60:db:d7:d5:
f6:be:88:4e:0b:bf:60:70:87:42:cd:a9:2a:e7:17:
b1:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:62:7C:91:F1:5C:50:BE:EB:12:8B:DA:3F:89:41:D8:24:D1:C8:67
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/5AC6BD4CD00E11EF9DB4EDA7762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.204.0.0/24
Signature Algorithm: sha256WithRSAEncryption
79:38:6c:54:c1:c6:1b:e0:19:c0:c7:b0:1e:9a:cf:44:74:dc:
4d:c7:08:71:c2:b5:0e:2f:d1:7b:2b:29:91:d5:33:56:32:d2:
84:78:a5:8d:7c:01:e1:f0:a4:1a:1d:74:e7:06:35:a4:36:cb:
7f:b1:f2:82:a9:a1:2d:df:d0:66:c3:59:db:24:db:f2:d5:bf:
40:c7:5f:d6:bb:a5:b9:8d:dd:ef:f0:d2:14:11:f5:b9:8b:c4:
f3:3a:6f:28:74:d5:8a:fe:3a:a7:86:a9:ad:96:a0:55:1d:90:
07:22:aa:1c:b4:8d:a8:f7:dc:50:5d:bc:05:e7:81:b1:f0:05:
1f:c5:6a:4f:e3:0d:57:f0:cb:ac:d3:a2:3a:28:92:f8:41:e7:
84:3c:a9:23:b0:75:2f:3b:d9:7e:6d:d4:64:d7:6a:03:21:f3:
43:cc:3e:95:c3:8d:23:76:8a:e8:af:3a:06:e9:c8:58:f2:04:
60:f9:9e:e9:24:7d:d2:cd:27:7b:3c:16:66:6f:58:04:d0:12:
dc:91:e7:89:4d:e8:47:67:cd:f8:e7:dc:1a:fc:be:43:c2:44:
0f:94:35:bd:30:04:d6:2e:35:b7:10:b5:31:d8:bf:5d:57:b8:
da:6d:79:e4:20:9d:31:47:ee:be:24:06:4c:6e:55:4a:0b:f7:
c7:3c:5d:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 09:59:13 2025 by rpki-client