Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/8AFFD746B92A11EF8297CC9B762E951A.roa
File: 8AFFD746B92A11EF8297CC9B762E951A.roa (raw, json)
Hash identifier: bSs2PB212rJ464d2aGtwnlsukzxpvDYh3b9cKVVg/nk=
Subject key identifier: A7:F7:34:C9:B6:45:25:84:0B:FC:A8:FE:91:D4:09:9A:93:16:1A:30
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: E33F
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/8AFFD746B92A11EF8297CC9B762E951A.roa
Signing time: Fri 13 Dec 2024 08:16:24 +0000
ROA not before: Fri 13 Dec 2024 08:16:21 +0000
ROA not after: Sat 25 Jan 2025 08:16:21 +0000
asID: 202656
IP address blocks: 45.199.224.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 58175 (0xe33f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Dec 13 08:16:21 2024 GMT
Not After : Jan 25 08:16:21 2025 GMT
Subject: CN=675bed58-6f72
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:82:8a:16:93:1b:8d:0b:a5:a2:3c:35:f2:f0:
c3:00:5d:04:9e:40:d5:4a:fc:5b:6a:89:7e:da:8a:
93:80:4c:fc:f6:d6:f4:e9:b9:38:c6:73:61:1a:9e:
ad:d8:4c:4c:da:74:7f:01:6e:fb:4c:b6:16:dd:54:
e5:ef:52:93:2f:53:dd:d0:de:c2:8d:b6:87:67:b3:
de:9c:89:41:a2:f4:9e:f7:b7:10:c6:c3:97:a7:34:
63:ba:ab:42:ce:cf:93:e3:e2:20:0e:b6:bf:95:66:
99:bf:1a:18:27:43:66:83:1c:c3:a9:c6:93:17:90:
8f:3d:f1:35:d1:96:e3:c6:68:62:e3:4b:57:a4:14:
ea:7c:6c:a7:85:90:d0:e5:90:e0:2a:ad:3e:c6:cf:
24:08:fc:c1:12:c6:5e:71:33:bd:a2:c9:3a:8b:62:
58:a5:d5:16:5a:43:3c:85:cc:c3:4c:6f:f7:b8:88:
84:fb:a0:5f:a7:63:72:87:10:18:0b:76:e4:c9:c0:
7c:3a:d2:40:32:93:dc:42:a9:46:9b:db:f0:8e:da:
3f:9b:45:60:41:4f:4b:56:70:e9:0b:6a:11:bd:87:
1d:0f:c1:d0:ac:13:2e:0d:1c:19:b7:8c:f2:47:fc:
91:5e:20:4b:7b:70:00:c1:76:d4:f8:ed:3a:fa:1f:
25:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:F7:34:C9:B6:45:25:84:0B:FC:A8:FE:91:D4:09:9A:93:16:1A:30
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/8AFFD746B92A11EF8297CC9B762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.199.224.0/23
Signature Algorithm: sha256WithRSAEncryption
82:84:1a:b1:00:16:83:fc:67:ef:76:98:0f:cf:e6:a1:bc:0b:
88:f7:3f:05:f0:60:0f:64:c3:65:63:fd:10:c4:1e:7e:ae:d1:
f0:30:51:b9:44:7e:4b:8c:64:d1:41:c3:51:22:09:dc:ca:d8:
b1:62:d6:5b:2c:36:5c:00:b8:47:94:4e:92:13:c1:12:ea:0c:
15:58:7c:af:51:f0:92:89:e0:16:30:bd:42:77:12:a7:e4:58:
2d:c7:4d:79:93:03:5a:3c:59:bd:02:68:45:b5:88:99:b7:ed:
46:ac:be:75:f0:36:c3:76:88:f0:61:6a:33:b7:cf:77:02:5c:
98:95:f6:8f:99:29:1a:3a:a6:40:05:f5:1e:2a:09:c1:90:d4:
87:99:e2:d1:ba:78:73:b8:94:d5:d1:da:b1:af:4b:53:b8:46:
b0:e9:46:05:ec:7e:b4:61:7b:fc:1c:b7:9c:76:42:ae:6a:36:
4f:a7:d4:3e:e4:1f:f1:16:6a:d9:7d:46:3a:74:d2:ce:39:a2:
69:a8:5a:91:2a:f3:93:21:25:c8:17:c8:12:a7:5e:90:0e:9f:
76:33:da:a2:a6:90:bb:83:13:64:d6:95:c5:dc:93:4b:35:23:
1d:55:3c:d3:9e:24:43:dc:98:32:f0:9f:ab:ca:45:9c:8e:42:
bf:b1:b9:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 09:59:42 2025 by rpki-client