Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/7BB97844BF9E11EFBAA4FBA7762E951A.roa
File: 7BB97844BF9E11EFBAA4FBA7762E951A.roa (raw, json)
Hash identifier: 7cV3qjBRLtZTLyhWa9qqbG8JAb9uzzV40g/dTFh/z2c=
Subject key identifier: 52:14:53:BA:83:15:5D:DE:BB:57:BB:C7:D8:FD:D7:F6:AE:27:36:F4
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: E7C2
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/7BB97844BF9E11EFBAA4FBA7762E951A.roa
Signing time: Sat 21 Dec 2024 13:21:27 +0000
ROA not before: Sat 21 Dec 2024 13:21:24 +0000
ROA not after: Fri 31 Jan 2025 13:21:24 +0000
asID: 216183
IP address blocks: 45.204.138.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 59330 (0xe7c2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Dec 21 13:21:24 2024 GMT
Not After : Jan 31 13:21:24 2025 GMT
Subject: CN=6766c0d7-4828
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:f3:c4:f0:90:84:49:26:cb:69:27:50:4f:9a:
4e:8f:3f:65:30:9a:a0:29:9e:bc:e0:fd:70:82:d7:
cb:7f:49:cd:ee:c8:bf:78:f0:2b:36:ed:46:b4:78:
0f:69:2d:24:3e:35:56:72:31:69:4c:c9:fb:a3:96:
74:45:2a:2f:fb:7f:55:56:46:9e:a2:73:18:2d:bd:
b7:2a:d2:8f:e7:9c:3f:a0:b5:25:0a:8e:56:98:ef:
2c:00:c1:25:ae:9d:23:c2:05:a1:a3:70:a6:63:26:
16:16:fb:ff:53:32:40:bb:4c:15:06:a8:00:f6:f0:
2a:8a:20:5f:bc:ed:9d:7d:c5:51:c1:69:5a:de:1d:
28:71:35:99:3b:fa:b6:b8:5f:bc:bb:58:19:4e:de:
08:17:71:a1:7b:c3:cd:ae:cc:07:aa:56:f8:dc:9b:
58:41:29:f6:ae:c9:61:ac:9c:8e:2c:14:2a:33:78:
c8:f4:16:f4:95:a4:c3:9c:94:18:c9:68:a8:60:cc:
58:b4:16:4d:17:e9:72:d7:4a:68:1c:13:11:bf:9f:
54:07:11:26:55:0a:a5:03:8d:56:8a:2c:00:55:d9:
ee:2a:6e:8d:13:8a:6e:ac:b7:24:1a:c7:e4:90:2c:
3b:19:b5:87:ad:49:a1:10:4d:45:0d:e2:02:db:04:
b9:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:14:53:BA:83:15:5D:DE:BB:57:BB:C7:D8:FD:D7:F6:AE:27:36:F4
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/7BB97844BF9E11EFBAA4FBA7762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.204.138.0/23
Signature Algorithm: sha256WithRSAEncryption
80:dc:45:09:cc:d4:38:27:78:f1:1f:64:00:4b:69:7c:f0:ed:
37:32:02:a9:ea:8c:c7:2c:ff:ef:34:17:fe:6e:01:d8:ad:90:
f7:f6:63:26:62:d7:4c:fa:f0:cc:5a:41:fb:2d:d8:5d:db:ff:
d9:f1:31:2e:5d:4d:84:ee:0e:fd:65:78:72:94:5c:45:1a:9d:
e3:3d:b6:31:08:10:13:b7:0f:59:ab:aa:6e:a7:a6:6a:62:fb:
fd:62:d2:6a:84:dc:ea:3c:7d:0a:1a:5c:34:31:ca:5d:ef:03:
3e:54:52:80:b0:cb:ca:1d:48:28:ca:ea:a0:53:1f:ad:2a:de:
66:48:bd:72:8f:23:e7:3b:15:c4:38:00:ab:ef:0b:ad:9e:f9:
98:5c:f4:1a:90:da:47:23:56:3e:7c:3f:f5:98:93:7a:fc:44:
b7:08:22:c1:a4:3d:28:32:ef:df:7b:1c:38:c7:ea:f8:39:7f:
9e:08:2d:65:25:ae:80:fa:6e:31:d5:23:b3:b4:9f:e1:6d:6b:
cf:ee:05:9d:2f:da:c3:2e:ac:3c:61:03:f4:41:66:12:57:26:
ff:d9:00:66:6e:9f:7c:8e:d7:0c:c1:a1:1b:fb:cb:4a:41:05:
81:89:71:3b:b8:53:2e:b8:45:4c:8b:4b:eb:60:bf:ec:b4:b3:
3a:83:68:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 10:01:10 2025 by rpki-client