Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/7BB16B86D00611EFBFE6FE76762E951A.roa
File: 7BB16B86D00611EFBFE6FE76762E951A.roa (raw, json)
Hash identifier: XrTBLlcLAEbe9rvbfZbyiTPxBCxPvlR6xPER+ByLmY4=
Subject key identifier: B8:B4:54:75:AE:45:69:15:4A:10:0E:29:17:4B:B7:E5:CF:5B:83:86
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 0105A6
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/7BB16B86D00611EFBFE6FE76762E951A.roa
Signing time: Sat 11 Jan 2025 10:26:14 +0000
ROA not before: Sat 11 Jan 2025 10:26:09 +0000
ROA not after: Sat 25 Jan 2025 10:26:09 +0000
asID: 54801
IP address blocks: 45.204.0.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 66982 (0x105a6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Jan 11 10:26:09 2025 GMT
Not After : Jan 25 10:26:09 2025 GMT
Subject: CN=67824745-9e79
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:24:b2:84:fe:b7:2e:ad:ec:f4:63:51:12:97:
87:31:a2:00:0c:47:46:0d:04:e1:c9:fa:2e:ac:08:
68:4a:3f:f7:cc:ab:65:29:8f:0c:1f:85:e3:b7:6b:
8e:a7:85:5a:27:99:35:1b:49:34:74:8d:92:d5:a7:
91:de:c7:cc:8f:46:89:db:27:ab:4b:3f:8d:f1:55:
42:27:20:bd:dc:e8:07:a3:2b:f6:6e:86:44:f5:e4:
88:5c:0e:4f:ee:90:4f:ae:0a:af:fe:66:1f:10:eb:
53:f6:22:cd:bc:ab:5a:2d:58:bc:be:f8:de:88:16:
53:b3:f9:d0:2d:9a:f3:de:e5:8f:d6:06:0d:73:92:
bf:d9:f4:b4:47:c3:3b:56:b0:e5:0f:61:91:2f:47:
b3:d8:18:c0:d2:52:9a:70:f9:6d:15:93:6a:37:3f:
78:bc:86:19:18:ee:c6:0c:0c:4b:6c:2c:2c:89:e4:
ae:51:5e:d9:41:20:c5:9d:65:c2:b3:3f:c2:0e:d9:
f6:25:7c:2e:2d:3d:38:e8:cf:27:5e:bd:60:29:7e:
b2:2c:68:ee:f8:1d:f3:74:d4:d4:09:c3:b3:bd:ea:
de:12:c3:1a:2d:a0:2f:5f:1d:0c:60:94:0f:63:23:
83:13:40:34:3a:b6:26:39:27:73:68:70:bd:01:bd:
23:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:B4:54:75:AE:45:69:15:4A:10:0E:29:17:4B:B7:E5:CF:5B:83:86
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/7BB16B86D00611EFBFE6FE76762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.204.0.0/24
Signature Algorithm: sha256WithRSAEncryption
a6:dc:fd:95:90:86:3e:f8:bf:81:de:e1:fb:a4:ef:e9:02:cb:
3c:28:09:8e:13:88:5a:61:a9:43:73:01:ce:8d:b2:65:f9:6f:
b6:cb:c5:c2:6d:d3:c8:20:8e:e2:da:bc:12:60:09:84:e8:de:
f1:ab:a8:23:8d:27:31:6a:5a:25:4b:a1:07:81:02:d9:c2:7d:
28:d4:e5:a2:f4:40:be:d3:32:36:97:d1:ec:44:f8:ee:51:3c:
19:e9:8f:e4:2e:8b:4a:57:93:f1:ab:1f:9f:e7:06:2f:bc:91:
27:32:8a:a0:ca:2f:66:cb:9c:4d:58:96:cd:6b:b3:6b:47:c0:
07:05:e0:15:df:2e:a2:12:02:ea:7b:b7:a9:c9:d5:c8:e7:6f:
13:53:51:6f:c2:c2:43:e5:da:77:a4:96:93:41:fd:6e:f0:f0:
19:ca:34:78:86:b7:71:12:28:f5:1e:80:a0:f1:88:f2:2a:8c:
e6:12:5b:70:29:3a:63:c3:62:f2:cd:92:14:b2:99:b7:4b:e5:
cb:77:55:e3:13:e7:e1:23:80:f6:6d:fd:bb:f1:d6:a9:69:7a:
90:ff:17:17:d7:67:15:17:b7:8f:88:69:d0:b7:25:10:61:4a:
40:8e:4b:d0:09:6c:98:ef:27:14:3e:c4:89:65:da:97:b9:2e:
08:78:91:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 09:54:37 2025 by rpki-client