Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/758A687CBEA211EF826A147C762E951A.roa
File: 758A687CBEA211EF826A147C762E951A.roa (raw, json)
Hash identifier: 4mV+ujJsnkBz40QNf59bN6eQnsenUTjX0YzS0fqW9wk=
Subject key identifier: CE:FB:2A:59:6C:B2:6C:C7:9F:27:EB:CC:4C:68:00:27:93:59:CB:75
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: E710
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/758A687CBEA211EF826A147C762E951A.roa
Signing time: Fri 20 Dec 2024 07:17:24 +0000
ROA not before: Fri 20 Dec 2024 07:17:20 +0000
ROA not after: Fri 24 Jan 2025 07:17:20 +0000
asID: 7029
IP address blocks: 45.194.40.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 59152 (0xe710)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Dec 20 07:17:20 2024 GMT
Not After : Jan 24 07:17:20 2025 GMT
Subject: CN=67651a04-a666
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:e7:61:5c:52:0a:17:d2:17:50:60:bd:a1:48:
42:1f:18:96:7a:f0:b4:f0:a5:50:fa:ea:51:09:fc:
0e:2c:46:6a:be:0e:a9:52:fe:6b:67:98:d2:25:9d:
84:cc:13:35:bb:d2:23:4d:72:43:db:29:31:80:49:
3b:37:e4:94:23:cb:4d:29:46:1d:f7:62:f8:3b:46:
f4:68:04:b4:92:7f:76:3f:38:c6:2d:71:92:77:e5:
f0:f0:dc:0f:aa:77:97:07:4e:82:df:22:32:8e:9b:
fc:b6:0f:fb:fc:02:40:d5:5e:dd:6f:a3:31:9a:10:
1e:8f:20:99:27:b5:6d:8e:a3:47:b0:08:d2:99:4b:
2a:be:55:eb:a6:87:d4:f3:5a:f4:55:fb:b7:92:f3:
48:f2:b7:86:6c:8e:47:29:1c:d6:83:5e:3f:6f:af:
ca:02:71:80:4c:e8:e3:f0:c8:3f:8b:d0:2e:90:55:
ad:e6:77:3e:df:02:21:27:cc:2d:59:c7:11:d6:93:
d1:21:7b:1a:b6:f0:2b:02:04:3f:d7:e5:19:38:15:
d5:41:8e:0a:29:89:e4:57:52:ec:06:f4:a9:a8:50:
8d:79:7d:af:e3:0a:59:6b:68:e7:97:60:10:7a:3d:
19:a1:09:41:c6:88:fd:85:44:94:f0:fd:3a:c4:af:
84:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:FB:2A:59:6C:B2:6C:C7:9F:27:EB:CC:4C:68:00:27:93:59:CB:75
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/758A687CBEA211EF826A147C762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.194.40.0/24
Signature Algorithm: sha256WithRSAEncryption
0a:c1:20:73:09:79:10:67:aa:9c:16:81:65:ed:8f:01:8d:41:
76:dc:4f:29:72:b8:7c:79:6e:6e:77:83:6c:54:cd:7e:d4:6b:
ca:6f:00:30:62:49:2e:67:01:9a:d6:49:0e:11:41:ab:a0:5a:
08:58:3e:48:84:64:e4:a4:33:c5:1f:49:d3:3e:93:b7:c2:66:
3b:df:b5:21:eb:0f:30:76:63:c6:79:c4:d5:68:84:85:ec:a9:
2f:1c:55:42:a9:4f:8a:10:bb:d2:83:17:25:c1:58:76:c0:ec:
f6:50:9b:33:c8:eb:ae:15:68:f1:e4:3e:71:8b:a6:42:cc:5d:
36:58:38:e3:da:0f:06:4e:8e:21:8b:76:87:af:4f:2a:4e:53:
cf:94:f8:dd:30:93:18:d1:32:5c:02:ee:1f:28:c1:f1:92:dc:
bb:49:10:92:f3:a5:09:47:b2:f7:55:eb:95:ec:ea:8e:8d:8a:
c7:e1:62:4e:9a:6c:0c:e0:d2:43:7d:1d:79:eb:8e:f9:61:33:
b7:c9:05:e1:1a:aa:bb:ba:a9:36:6e:e7:8d:c8:cb:61:3d:14:
b5:0b:8f:e2:4c:63:05:07:a4:17:69:37:00:bf:95:da:89:b5:
d9:0e:41:6e:d8:4e:d8:9c:b2:ce:f9:0e:e9:12:c6:17:dc:1b:
3f:e1:41:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 09:45:46 2025 by rpki-client