Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/89B5B4B2CE8511EFA2555A68762E951A.roa
File: 89B5B4B2CE8511EFA2555A68762E951A.roa (raw, json)
Hash identifier: clD4e1I3qfoVMMg3gRMgMMscMrI1iu2jteRyZoMV1kk=
Subject key identifier: 3F:3C:B8:D9:48:7B:BB:F4:89:D2:E0:5D:E5:35:66:4E:C8:55:71:23
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 0103C8
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/89B5B4B2CE8511EFA2555A68762E951A.roa
Signing time: Thu 09 Jan 2025 12:30:41 +0000
ROA not before: Thu 09 Jan 2025 12:30:37 +0000
ROA not after: Sat 01 Feb 2025 12:30:37 +0000
asID: 17561
IP address blocks: 45.203.30.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 66504 (0x103c8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Jan 9 12:30:37 2025 GMT
Not After : Feb 1 12:30:37 2025 GMT
Subject: CN=677fc171-814f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:90:2f:84:dc:c3:a0:2b:67:16:80:1d:28:93:
ac:68:17:0e:ab:54:45:15:0b:f4:7e:36:69:e8:a8:
04:91:eb:55:1c:5d:c5:5e:dd:0c:25:f4:99:22:10:
b6:91:54:30:9a:58:98:e4:50:a7:bd:51:92:ad:f2:
40:0e:7a:25:92:78:e5:aa:78:d1:8b:ff:7a:18:58:
a3:a3:26:82:e8:de:3d:a2:93:90:f3:0d:49:d1:58:
aa:11:69:5e:9e:57:44:a8:04:37:ce:68:80:7f:e3:
07:72:39:bf:85:01:8b:4c:9f:ae:e7:b3:b2:cc:26:
3c:a3:11:6a:38:71:12:0e:ec:c7:41:35:43:85:8f:
b9:72:b0:68:8b:ee:b0:bf:60:59:55:29:b2:8a:50:
89:15:38:57:84:a0:f1:e6:68:fd:de:f4:55:a6:6e:
49:b9:1b:11:21:ec:54:51:ae:11:15:47:2d:7c:fa:
f3:bd:d3:53:46:42:04:38:e5:8e:9f:d5:a9:b6:e3:
4e:3a:cb:7a:db:e0:52:4f:3c:32:22:16:92:63:3c:
f1:99:bf:7a:4a:de:80:45:28:ea:a6:97:77:a3:5c:
10:e9:0a:25:bb:ab:55:a4:aa:ff:f5:0b:5c:c3:38:
d1:9f:b5:f3:d7:01:6d:64:0e:2e:b5:eb:c3:50:0a:
10:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:3C:B8:D9:48:7B:BB:F4:89:D2:E0:5D:E5:35:66:4E:C8:55:71:23
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/89B5B4B2CE8511EFA2555A68762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.203.30.0/24
Signature Algorithm: sha256WithRSAEncryption
8d:7b:d3:72:d4:d4:c5:1d:d2:5a:f6:7d:c0:f6:e8:ff:53:f5:
3d:61:ae:66:62:f4:25:dd:c2:0a:b9:e8:cf:3c:aa:71:a1:f5:
17:fc:c5:a7:df:8f:8b:99:c3:e2:c9:25:2a:18:1e:a6:83:92:
81:ed:2b:fe:53:03:9d:e3:03:d5:e1:f0:ca:82:ec:31:bb:ec:
20:cf:4f:9e:f0:e1:aa:98:68:9a:97:1a:d6:4c:1f:6f:d4:2c:
50:be:5c:cc:e0:71:b0:83:8a:d7:11:9e:1e:a1:77:8c:f2:31:
26:51:98:e6:4f:30:93:bd:cc:f7:48:33:80:43:1c:98:2a:c6:
e3:59:8c:fd:cd:a8:c1:5e:e4:d9:85:07:e9:b5:fa:1d:2c:21:
79:21:0c:22:a6:de:87:49:63:64:bb:7f:2f:1a:66:d7:f2:c7:
9d:f5:7d:de:8a:15:92:a6:b9:f2:9d:0f:9b:57:a8:b6:40:be:
6a:da:c0:97:22:85:b0:5e:d8:6a:8d:cc:43:a0:b5:8a:14:05:
c1:f2:d0:88:8b:6e:82:70:7a:dc:89:7f:ce:a0:6e:28:11:26:
52:08:14:43:7b:e1:d4:10:b8:02:0c:1b:eb:93:54:52:de:44:
d8:6c:9c:4d:66:b4:5d:d9:83:aa:a7:69:d9:3b:ce:74:71:cf:
97:82:b2:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 09:41:52 2025 by rpki-client