Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/6B8FEDA6CABE11EF899AC851762E951A.roa
File: 6B8FEDA6CABE11EF899AC851762E951A.roa (raw, json)
Hash identifier: F6Ikd0vV7F3/V894tEi/qcJdSWaQdOXRJpyclq9T0x8=
Subject key identifier: 00:8B:46:53:0F:90:F2:19:00:59:70:D4:6D:29:E0:3E:C2:DC:73:71
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: F70C
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/6B8FEDA6CABE11EF899AC851762E951A.roa
Signing time: Sat 04 Jan 2025 17:07:47 +0000
ROA not before: Sun 05 Jan 2025 17:07:43 +0000
ROA not after: Thu 16 Jan 2025 17:07:43 +0000
asID: 5065
IP address blocks: 45.195.104.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 63244 (0xf70c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Jan 5 17:07:43 2025 GMT
Not After : Jan 16 17:07:43 2025 GMT
Subject: CN=67796ae3-c944
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:37:0c:a8:31:36:c8:42:46:6d:a8:4b:da:ae:
69:95:ba:b5:9e:e8:82:6c:20:ee:7f:e1:3c:c2:7f:
29:f0:12:95:1d:b5:98:08:54:b3:45:6a:b1:95:6e:
26:fa:6b:7f:ba:93:df:66:74:d0:6b:06:62:cf:72:
7b:0e:08:fd:4a:2e:e3:4d:ab:85:7e:05:b4:05:74:
e8:08:59:ee:02:e9:a0:5b:34:38:b6:d0:50:fd:42:
1f:76:db:75:c0:a6:41:ab:bb:bc:9d:42:3a:4f:14:
58:62:47:69:60:2e:8c:cc:85:00:ec:07:cb:b3:22:
97:e5:8d:2a:ed:af:e9:85:8b:a8:05:63:d9:84:a6:
29:ff:1a:9f:d2:3c:7c:a7:71:cd:2e:c0:2a:c4:00:
50:23:52:cf:0b:ca:79:7c:c2:9e:bd:06:bb:7f:c7:
59:61:f9:99:65:95:48:00:66:1c:70:77:23:0f:d6:
ec:42:d5:f7:12:65:30:c7:10:1d:55:5d:70:b2:17:
ed:14:58:b9:a7:f6:49:32:88:b1:a0:4a:1c:ed:e7:
cb:1f:45:83:2f:ce:8b:67:93:4e:33:f6:15:2b:f9:
62:07:37:43:e4:1d:c3:19:0d:f8:c2:d4:fd:87:a8:
61:10:18:3d:be:89:ba:60:c3:af:91:9e:79:9f:bb:
75:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:8B:46:53:0F:90:F2:19:00:59:70:D4:6D:29:E0:3E:C2:DC:73:71
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/6B8FEDA6CABE11EF899AC851762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.195.104.0/21
Signature Algorithm: sha256WithRSAEncryption
66:4f:a5:55:28:db:54:a9:9c:3b:96:20:3f:97:15:65:0b:33:
23:6e:aa:c9:87:d2:85:35:d2:ea:d2:74:bd:73:0a:46:09:15:
b6:f7:73:b4:3a:23:db:4b:d6:04:df:f2:63:62:25:ef:08:d5:
56:de:77:0d:86:2d:d4:e6:05:5c:50:c1:64:50:bc:9c:c2:0a:
66:75:ed:e0:c9:84:bb:18:8c:34:05:23:18:bf:e5:4c:2c:00:
5f:24:be:af:2b:e7:99:87:e8:4f:ae:52:86:ce:a5:19:ee:56:
a2:1e:28:74:27:ad:af:c5:ce:70:ab:77:98:cf:f7:85:bd:70:
3b:0a:1f:79:94:56:42:73:41:bf:3f:a0:7a:c4:06:34:d5:1d:
81:63:bc:ff:27:ed:2d:88:e0:2c:e4:67:a3:0a:fc:93:13:4e:
6d:fa:fc:6a:a3:c5:45:fb:fc:7a:36:1e:86:18:39:3c:19:76:
58:5d:7c:fb:4e:a9:0d:6b:a4:b0:28:8e:c4:37:50:00:e8:21:
be:fd:8d:ff:d6:3e:88:a6:9a:1b:df:5a:9c:be:ef:f2:ba:61:
9d:cd:5a:dc:66:87:b1:81:a4:e4:76:8e:f0:c1:37:f5:8d:be:
d8:d7:43:de:79:20:57:1d:cc:4a:e7:36:1c:6a:41:ea:99:70:
f4:53:df:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 09:39:17 2025 by rpki-client