Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/8B8A914EF60E11EFB4962FB4762E951A.roa
File: 8B8A914EF60E11EFB4962FB4762E951A.roa (raw, json)
Hash identifier: n79sichjNiwRuNsh+zPhDRoQ2smtBqEcDKhhaclWWDs=
Subject key identifier: CC:63:D4:86:A2:FF:9F:3A:5D:E2:0A:12:3C:A2:FF:57:78:2C:70:87
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 013F1F
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/8B8A914EF60E11EFB4962FB4762E951A.roa
Signing time: Fri 28 Feb 2025 19:59:40 +0000
ROA not before: Fri 28 Feb 2025 19:59:37 +0000
ROA not after: Sun 30 Mar 2025 19:59:37 +0000
asID: 138995
IP address blocks: 45.192.171.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 81695 (0x13f1f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Feb 28 19:59:37 2025 GMT
Not After : Mar 30 19:59:37 2025 GMT
Subject: CN=67c215ac-e1e3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:39:68:b1:6a:7b:ba:13:c1:c1:91:e1:b1:0b:
ae:20:68:9d:08:d0:52:97:30:c5:8f:b2:0b:13:17:
37:82:2c:41:e9:70:8d:a6:16:49:b9:c5:b0:8c:80:
eb:1a:f3:06:c9:5c:48:39:bd:e2:83:a2:9c:63:eb:
62:be:c1:87:18:55:9c:1f:a4:ec:80:fb:b3:9e:04:
7a:ba:18:82:b4:7a:2c:2e:cc:f1:ba:95:2e:af:41:
1b:89:58:2f:0b:04:36:54:89:c1:58:f8:23:aa:1b:
8b:dc:68:b1:a8:5c:94:b1:17:cb:1f:52:d0:17:6f:
a9:f7:ce:8e:80:a0:d1:bd:35:a6:e9:b0:b9:d4:92:
42:af:76:8b:d7:15:b3:3f:84:42:0b:c6:b8:49:af:
ba:5e:a9:63:42:1f:0f:5b:4b:93:c5:8c:80:f8:1e:
be:f9:83:17:24:e4:78:4d:ec:67:48:cd:52:db:6c:
84:80:09:04:18:13:aa:1d:4c:df:63:3d:e2:9d:53:
dc:b5:1b:62:45:b2:c0:af:4d:4f:3c:31:39:f6:14:
cc:b9:d1:4d:b2:36:f5:98:ad:c5:7e:2a:b5:e0:8f:
83:0a:96:28:1b:38:57:8a:93:93:38:57:20:04:5b:
60:f9:cd:9d:b5:54:65:5d:54:2a:e5:9c:19:6e:7e:
52:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:63:D4:86:A2:FF:9F:3A:5D:E2:0A:12:3C:A2:FF:57:78:2C:70:87
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/8B8A914EF60E11EFB4962FB4762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.192.171.0/24
Signature Algorithm: sha256WithRSAEncryption
09:0f:b1:2e:d9:e7:a9:2e:89:a4:7e:47:cd:97:86:9e:e4:9b:
b2:e3:53:b1:d4:de:c9:e3:94:c5:83:05:f8:90:4f:aa:c1:28:
34:13:10:d3:d6:c6:dc:ea:9e:15:a3:cd:21:ce:cb:30:b4:11:
48:ae:3b:90:78:af:42:84:e2:f1:95:a7:ce:eb:49:da:2a:02:
c2:15:25:af:f4:0c:f5:d2:53:67:52:86:56:85:59:fc:2f:50:
e0:60:65:f0:34:58:79:ab:a2:11:80:e6:67:e9:b6:74:2a:a9:
f0:ed:f9:f8:87:8a:b0:39:a5:23:6a:93:b2:85:92:40:a5:0e:
53:bf:fa:e7:d5:dd:b3:15:bd:3f:5c:71:ce:f1:ca:3f:9a:2e:
84:ef:4e:44:26:cc:bd:dd:16:57:18:7c:8a:3c:d0:69:d6:50:
5f:f4:de:fd:7a:e0:62:f0:39:b5:38:8b:4b:9e:4a:36:77:cd:
9a:23:5a:93:ed:85:77:c4:56:36:9b:1a:2e:e0:07:8c:ab:63:
41:b4:c6:e5:ba:ae:7c:35:ac:2c:1e:bc:ad:54:3f:77:62:b1:
80:fe:72:da:f0:13:71:a4:fb:5c:27:ab:63:e6:2f:d8:ac:f2:
a2:2b:b5:36:3d:28:df:6d:68:dc:44:2c:5f:ad:0c:ed:ed:2e:
e2:0c:a1:11
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 08:25:13 2025 by rpki-client