Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/71C21952CE8711EFA7342973762E951A.roa
File: 71C21952CE8711EFA7342973762E951A.roa (raw, json)
Hash identifier: gdf4TgcmwepuurmxvQqMdLlGicxgD/k37FpK7K5Cnt0=
Subject key identifier: 87:EA:45:C1:75:4F:7F:9A:43:9F:F0:54:3A:F1:99:35:BE:F1:2E:B0
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 0103D4
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/71C21952CE8711EFA7342973762E951A.roa
Signing time: Thu 09 Jan 2025 12:44:20 +0000
ROA not before: Thu 09 Jan 2025 12:44:14 +0000
ROA not after: Tue 21 Jan 2025 12:44:14 +0000
asID: 137899
IP address blocks: 45.192.104.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 66516 (0x103d4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Jan 9 12:44:14 2025 GMT
Not After : Jan 21 12:44:14 2025 GMT
Subject: CN=677fc4a4-9167
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:ba:47:9c:60:77:3a:f4:60:2e:8e:1c:2e:3c:
34:e2:de:8d:a8:42:05:29:5b:6b:43:b6:4f:d6:77:
bb:07:92:0e:19:99:a3:90:c4:de:bb:8b:83:3c:4a:
39:19:af:ea:d2:a2:27:fd:01:db:da:d8:62:33:35:
49:4a:e0:12:ec:d7:64:b3:0a:38:94:15:40:31:ff:
f8:3d:20:a0:44:76:30:b1:cf:cf:a2:c7:36:bb:b6:
79:0d:4f:23:18:c5:5c:5a:d5:ef:20:25:cb:bc:ac:
5b:88:a5:3b:ba:4e:b5:a8:e5:d5:fd:43:79:08:06:
fb:52:94:2c:cc:e4:6b:42:97:d2:49:cc:74:0c:77:
2f:fb:8d:03:06:45:80:6f:71:68:06:e3:b8:cb:85:
38:12:e8:41:da:e5:1a:d2:86:6d:5b:c7:11:cf:4f:
29:39:cf:16:c7:90:5d:ff:a0:55:74:84:0b:27:07:
34:f6:6d:02:fd:52:ae:ef:77:df:a2:0c:13:62:04:
66:99:dd:37:16:64:d2:e1:4a:91:30:e7:3c:da:0e:
8c:a8:aa:b4:5d:97:7b:be:d0:cc:bc:d7:96:db:97:
d3:39:f0:da:78:7a:2a:d3:fc:20:69:22:b8:1a:b1:
07:9b:6d:58:b5:8e:a8:1f:bd:03:b7:ea:04:a0:1a:
46:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:EA:45:C1:75:4F:7F:9A:43:9F:F0:54:3A:F1:99:35:BE:F1:2E:B0
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/71C21952CE8711EFA7342973762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.192.104.0/21
Signature Algorithm: sha256WithRSAEncryption
35:23:a6:c6:6a:f4:83:16:53:0a:e6:ea:53:7f:a6:2b:4c:c2:
59:69:3f:24:3b:9b:a7:d8:78:39:75:89:72:f1:16:24:16:e4:
d2:80:4e:ff:de:05:74:ef:27:27:1d:95:a5:21:62:27:a4:99:
01:cb:de:90:a9:db:c1:c4:2b:38:fe:8d:3c:f5:f3:41:a7:1b:
48:d3:89:9d:6f:8e:20:9a:5b:cf:2a:43:90:63:27:67:9e:c9:
d7:66:a6:02:e0:33:e8:50:63:37:2d:17:d4:cf:8a:e5:c3:1d:
d8:be:50:ba:17:ba:6a:f3:89:8b:97:80:7d:84:62:fb:ab:1f:
d5:a2:1c:2f:f7:51:95:8c:08:8d:28:f9:0b:20:7c:cf:58:cf:
96:93:40:af:92:9f:63:a4:a5:2c:e0:c1:a2:5c:b9:19:34:25:
a3:70:e4:1e:b8:63:dc:b1:54:c2:0f:e9:fb:f5:3e:c5:43:c3:
aa:c6:99:2d:da:6a:31:ff:2a:6c:c6:bf:62:9a:ae:01:d7:f6:
18:67:f8:be:3c:27:01:6b:8e:65:b3:a7:37:72:be:04:48:8a:
a6:72:c0:24:70:9c:1b:22:f7:d5:5e:31:e8:8c:9d:60:62:79:
9a:96:b0:f2:0d:2d:6d:fd:80:04:b0:21:cf:52:c3:8f:f2:e0:
e5:68:00:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 09:37:54 2025 by rpki-client