Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/5D8608C6C47411EF9D3B665A762E951A.roa
File: 5D8608C6C47411EF9D3B665A762E951A.roa (raw, json)
Hash identifier: P6fKyJnBoDoZhcbEUVUf50kuz78uG98+sq/FucGCx7c=
Subject key identifier: 62:6A:6D:3A:CA:64:D0:F7:3E:40:24:4B:56:01:28:A9:14:4D:11:AB
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: F0D2
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/5D8608C6C47411EF9D3B665A762E951A.roa
Signing time: Fri 27 Dec 2024 17:02:34 +0000
ROA not before: Fri 27 Dec 2024 17:02:30 +0000
ROA not after: Sat 01 Feb 2025 17:02:30 +0000
asID: 203020
IP address blocks: 45.198.36.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 61650 (0xf0d2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Dec 27 17:02:30 2024 GMT
Not After : Feb 1 17:02:30 2025 GMT
Subject: CN=676edda9-7959
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:7d:5e:e0:9e:80:66:f1:a8:ad:70:05:71:a5:
a5:28:14:59:fa:27:0a:ba:f2:18:17:c7:11:6c:5c:
02:e8:08:f3:39:cf:c8:88:19:b4:86:2a:7c:cf:5e:
93:50:ff:7d:62:14:0e:1d:8b:27:58:6d:09:02:c2:
fb:64:40:d6:5d:57:c8:eb:c8:8d:11:af:dc:e8:93:
b7:96:9e:09:9e:88:53:97:22:19:fd:59:b7:d6:54:
28:8e:24:d5:e3:36:3a:45:ee:05:0e:05:4a:22:67:
59:50:54:17:20:40:b1:08:3d:e3:68:8a:85:dc:37:
9e:ef:ab:19:6c:4d:d7:46:65:e5:5e:39:45:b3:a2:
ce:74:bf:62:61:92:b3:d6:cf:cc:bf:ae:e9:97:c8:
e1:99:b0:e8:25:34:52:ec:5e:b6:3c:e4:a6:15:fc:
8d:90:03:61:5d:61:14:3c:08:03:cf:aa:b3:49:ba:
2c:a2:72:1c:bf:c4:f2:ec:fd:f6:7c:80:fc:db:17:
b7:bb:d5:56:38:7f:e0:9c:fd:fe:98:df:9d:55:ab:
a5:5a:a0:de:a4:dd:09:8a:3b:ca:41:08:37:ea:b7:
a3:6d:33:5b:8e:79:0d:83:5e:63:2a:de:71:0f:72:
75:06:55:c6:64:0e:35:81:26:2e:ac:4a:75:65:15:
af:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:6A:6D:3A:CA:64:D0:F7:3E:40:24:4B:56:01:28:A9:14:4D:11:AB
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/5D8608C6C47411EF9D3B665A762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.198.36.0/22
Signature Algorithm: sha256WithRSAEncryption
08:ca:08:14:31:62:c0:0f:ee:f6:8b:0f:1b:ec:df:41:16:01:
66:f6:01:41:d0:ab:65:99:85:5b:c3:95:74:40:24:5f:7b:3d:
fd:ac:2f:61:6e:df:6d:c9:0c:38:6c:3e:a5:b8:a7:3e:08:e4:
d3:09:49:9f:07:b0:0a:07:ce:0a:83:e1:f2:b2:fb:b4:55:35:
38:78:05:4f:7b:8b:c1:5a:19:b9:bd:fb:6a:ae:e5:dc:99:f9:
fb:d5:e0:f4:91:c9:3d:ba:99:c9:14:84:41:28:0c:14:9a:39:
be:20:62:d5:bd:04:f1:04:9c:f3:a8:a4:52:ff:79:43:f6:c8:
b2:66:22:a1:db:6c:a5:1b:09:54:46:64:6d:8c:e9:c5:54:0e:
72:2a:72:62:a1:8b:99:ef:e4:40:2e:a4:d6:b9:cc:54:b9:88:
c7:a7:dc:e5:5c:70:1f:9b:f0:4a:c9:f0:d1:11:58:f4:2c:fd:
19:fa:3d:eb:2c:e0:59:65:a7:bb:56:b9:fc:8a:18:78:d6:df:
2c:10:9f:d6:d3:30:8a:88:16:04:7d:93:a5:3f:42:e3:7d:19:
92:7b:7b:08:af:e8:25:94:db:4d:f8:d0:4a:cc:07:12:e2:44:
6f:46:74:14:14:31:fa:36:45:94:6f:70:60:a2:ce:2f:0b:bf:
5f:16:e9:e0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 09:44:04 2025 by rpki-client