Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/7B6E8ABCC46E11EF98BED1B5762E951A.roa
File: 7B6E8ABCC46E11EF98BED1B5762E951A.roa (raw, json)
Hash identifier: 8RiUO9By7SSxL2Cg3tmMAV3Ljzjradg0mLxNBPWkFko=
Subject key identifier: 64:3F:DC:AB:BE:F1:F2:99:7D:65:D4:18:EE:09:B2:88:DC:32:1B:98
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: F0AA
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/7B6E8ABCC46E11EF98BED1B5762E951A.roa
Signing time: Fri 27 Dec 2024 16:20:27 +0000
ROA not before: Fri 27 Dec 2024 16:20:23 +0000
ROA not after: Tue 21 Jan 2025 16:20:23 +0000
asID: 397086
IP address blocks: 45.203.21.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 61610 (0xf0aa)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Dec 27 16:20:23 2024 GMT
Not After : Jan 21 16:20:23 2025 GMT
Subject: CN=676ed3cb-3972
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:64:30:dd:ed:13:55:6f:4d:9b:54:60:f1:fa:
78:35:9f:78:65:f5:3c:89:ef:b3:1f:ec:b5:a2:7f:
8b:c8:d5:87:9a:65:8c:c8:25:9f:ca:45:98:e8:a7:
dd:ee:2c:1e:cc:e5:23:f5:99:dd:f6:86:67:f7:41:
1d:6a:7f:29:cf:32:3b:2f:75:7b:ce:b1:37:23:71:
7f:98:fe:73:70:18:42:bc:99:e7:fc:5d:80:ad:23:
65:84:69:15:ff:e6:86:25:66:6f:47:55:0a:30:e3:
24:d5:92:43:c9:ff:b8:c4:f0:43:1e:81:e1:35:a8:
2b:97:06:a5:53:6f:e7:20:0b:c7:02:ca:8e:b5:6f:
d9:30:f2:a9:21:e4:ac:d8:08:92:6f:17:fe:5b:0e:
eb:e9:81:03:83:29:03:aa:a1:20:9e:fd:8b:2b:89:
76:78:16:f5:6b:9b:a4:21:9c:37:fe:25:c2:4c:e5:
50:d9:9b:38:b0:0d:5d:20:31:7c:86:5d:00:89:99:
8c:4c:2f:0b:72:c8:89:c5:9d:aa:98:c3:37:cb:da:
20:c2:98:f8:2d:78:36:95:94:ec:4d:6c:ae:5c:9f:
95:df:d4:05:18:c6:d1:fb:fa:a3:2f:13:7c:74:98:
0a:2d:0c:a3:8a:51:83:f4:6d:4b:41:d2:1c:9c:c4:
db:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:3F:DC:AB:BE:F1:F2:99:7D:65:D4:18:EE:09:B2:88:DC:32:1B:98
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/7B6E8ABCC46E11EF98BED1B5762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.203.21.0/24
Signature Algorithm: sha256WithRSAEncryption
80:32:5c:45:c8:37:01:09:cd:37:65:6b:dc:65:86:f5:9e:1e:
28:b0:bf:1f:b9:78:63:f3:b6:08:8e:fe:be:aa:56:22:24:e6:
b7:17:fe:51:e2:fa:13:24:c6:95:17:e1:f8:ba:eb:2d:fc:74:
2a:d7:ff:8c:3e:65:49:3a:e2:e6:91:83:71:f1:8c:c0:9f:a3:
83:58:93:0d:9a:c0:9a:d5:79:d8:ce:85:65:bb:9a:10:6b:c2:
27:94:a4:89:ef:b3:6e:4d:91:29:b6:98:a5:de:1d:2a:6b:75:
b4:84:e2:96:4b:82:df:a9:c2:ce:bb:09:b4:68:ba:ea:96:00:
63:31:c5:61:c7:53:d7:58:92:e9:f1:a6:bb:36:c9:c5:3c:53:
46:63:9f:24:37:9f:ba:5e:ca:98:ba:e1:76:97:ac:37:a4:49:
72:b6:52:0d:78:97:02:d4:e6:f5:3d:80:b4:27:68:8f:60:70:
6d:2d:1a:3b:e0:06:31:2a:e7:ef:21:d4:cd:9d:26:bb:d3:6c:
aa:e3:5d:c1:a8:13:76:25:78:45:bf:5f:65:81:88:f1:6c:32:
8b:ee:cb:55:6e:78:16:1c:db:d7:c0:e0:19:00:20:a9:f8:f9:
28:9c:02:2f:a6:bb:29:b2:75:d7:8c:48:cf:3e:22:12:6d:15:
7c:04:a3:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 09:56:19 2025 by rpki-client