Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/674A59E6C29611EFA849AC80762E951A.roa
File: 674A59E6C29611EFA849AC80762E951A.roa (raw, json)
Hash identifier: rO+dxGhLYCfaaka3c1CBfIHV3MPBoLVLqIGF6rA+0kY=
Subject key identifier: AF:0B:C2:3A:BC:8C:59:D4:37:95:C3:D9:3E:00:B6:9F:86:D8:76:5C
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: E9BD
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/674A59E6C29611EFA849AC80762E951A.roa
Signing time: Wed 25 Dec 2024 08:01:11 +0000
ROA not before: Wed 25 Dec 2024 08:01:07 +0000
ROA not after: Fri 31 Jan 2025 08:01:07 +0000
asID: 147176
IP address blocks: 45.201.9.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 59837 (0xe9bd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Dec 25 08:01:07 2024 GMT
Not After : Jan 31 08:01:07 2025 GMT
Subject: CN=676bbbc6-de46
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:e3:6b:fb:ab:23:f2:f4:e1:b3:7d:b5:73:c8:
06:fd:e5:9f:8b:c7:98:b6:40:65:32:a8:49:18:91:
6f:48:ee:c7:25:cd:ff:d3:61:b0:6f:34:f2:3e:fa:
91:c3:56:b4:15:8b:c9:1b:1e:b6:dc:86:62:00:bb:
9f:ad:3b:b1:9f:5b:2a:2e:ac:67:d3:b2:b9:b5:15:
df:79:53:6d:44:31:5a:10:f3:23:35:17:34:f5:0b:
80:8e:00:c4:15:2e:1d:5b:df:9b:85:4a:5c:57:63:
d1:c0:ce:ad:01:ad:03:85:91:97:3e:90:96:0e:72:
8b:45:4c:09:c4:b5:c5:86:ba:a1:54:bc:8a:40:2f:
af:33:03:fb:aa:a3:e1:50:10:dc:61:e0:be:66:37:
fd:ac:20:5f:b0:f7:42:1e:74:01:8d:67:56:81:ed:
ad:3a:05:42:39:70:58:61:4b:a7:25:6f:48:94:46:
ad:9f:8a:39:07:74:ee:87:0c:ed:e4:bd:0c:60:81:
83:64:4e:32:ee:47:fe:c2:fd:64:5b:93:44:f7:bf:
b1:d6:70:ac:40:1c:1d:8a:f8:ff:d0:2e:d2:00:29:
61:c3:9d:1c:fd:0c:6a:27:17:1a:c8:fd:cf:e0:a2:
c4:1a:92:18:74:b4:30:84:98:50:a2:64:0d:53:ac:
1d:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:0B:C2:3A:BC:8C:59:D4:37:95:C3:D9:3E:00:B6:9F:86:D8:76:5C
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/674A59E6C29611EFA849AC80762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.201.9.0/24
Signature Algorithm: sha256WithRSAEncryption
6b:6f:e1:a7:ee:15:40:ee:84:b1:1d:34:71:bb:c4:a5:58:b3:
ef:4b:d0:d0:d8:28:26:6c:bd:45:cb:08:e1:85:e3:24:a0:c8:
0f:e4:a9:72:3b:f3:1f:6d:b9:58:ef:2c:bc:5c:60:5e:0d:c2:
b9:74:ce:0e:97:de:fc:d5:a0:28:6a:78:c6:8a:1c:fe:87:87:
32:56:41:eb:af:f9:89:d4:e7:92:10:19:59:45:7d:3f:05:e6:
dc:07:8c:20:33:65:fb:3b:03:a5:29:b5:ac:a2:af:f8:96:a4:
ac:27:ad:3e:92:d0:6e:9c:60:37:19:19:75:77:bc:5c:87:e9:
98:63:1c:82:9b:e5:a2:8e:e1:10:e9:eb:c9:8e:a1:61:35:d5:
73:6d:a6:ff:1f:a0:60:10:28:a0:84:5c:64:f2:4b:d4:3e:b1:
e4:18:67:e6:39:b0:af:49:4e:e5:36:30:4a:e9:4d:c6:01:f1:
84:5a:c3:e5:0f:f0:ef:06:5d:70:cd:de:c0:60:2d:ee:90:22:
e6:4c:fd:30:8f:53:ec:16:a1:c2:66:9f:df:86:0d:89:1b:d1:
e5:e9:bd:16:7b:72:f1:6c:09:3e:23:5c:71:bc:b4:4c:e3:b4:
40:1f:51:b0:51:9b:2f:a9:28:4e:69:7e:89:e8:de:bf:ac:5c:
db:53:f7:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 09:48:48 2025 by rpki-client