Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/970674D8B92911EFAD102B95762E951A.roa
File: 970674D8B92911EFAD102B95762E951A.roa (raw, json)
Hash identifier: +Sfwg0qJFGBe/9vIuqjOgQ+4leL2Utkf66fUg5CBweU=
Subject key identifier: 83:C1:48:91:36:30:77:1A:83:B4:DD:6C:2F:4A:1E:57:D9:B8:2E:62
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: E333
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/970674D8B92911EFAD102B95762E951A.roa
Signing time: Fri 13 Dec 2024 08:09:35 +0000
ROA not before: Fri 13 Dec 2024 08:09:31 +0000
ROA not after: Sat 25 Jan 2025 08:09:31 +0000
asID: 202656
IP address blocks: 45.200.176.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 58163 (0xe333)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Dec 13 08:09:31 2024 GMT
Not After : Jan 25 08:09:31 2025 GMT
Subject: CN=675bebbf-1212
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:ca:75:26:2f:3c:07:f3:0a:f7:73:81:71:c1:
67:bf:2a:ee:73:3f:d2:54:3b:0a:b8:46:c2:0a:bb:
89:e6:d3:f4:de:69:2c:21:20:d1:78:b0:98:c0:5b:
94:12:26:0b:9c:97:34:ef:9b:64:c7:68:1c:25:9c:
52:53:aa:00:ec:34:bf:77:6b:fd:03:2b:3f:ff:83:
68:03:33:cc:aa:d1:b1:46:51:85:77:b1:37:25:f8:
4b:ca:d2:bc:ae:67:93:f9:53:1a:36:46:e5:da:1d:
e1:1f:9f:bb:5f:22:16:2e:16:83:f6:46:8a:45:45:
65:d0:41:4a:98:e1:26:31:79:39:80:73:03:93:5d:
85:35:3e:9f:ef:cb:ee:c9:1e:5c:ee:72:49:a4:b6:
90:01:cf:7f:0c:62:43:0f:97:de:6f:0e:01:7e:e3:
9d:82:3b:bd:6e:61:83:04:a5:fb:b6:1f:16:e4:6a:
19:77:ea:83:72:ea:29:e6:f9:0e:12:80:a8:fa:52:
fc:a0:fa:16:e9:0a:e8:3f:fb:5f:ff:1e:b4:c8:85:
0a:54:cf:6b:ef:2e:53:97:4f:cc:fe:ff:dd:1e:db:
56:27:d0:c3:e4:33:59:99:07:f8:3a:18:be:a4:5d:
1d:e2:6e:34:6e:98:96:f9:fa:09:12:32:74:3e:9e:
70:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:C1:48:91:36:30:77:1A:83:B4:DD:6C:2F:4A:1E:57:D9:B8:2E:62
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/970674D8B92911EFAD102B95762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.200.176.0/23
Signature Algorithm: sha256WithRSAEncryption
7f:ba:f9:4f:5a:a4:33:76:fc:80:a6:71:b7:94:f8:d6:00:d3:
31:fe:f0:c3:c5:c6:7c:7e:ac:de:b9:d2:f6:fc:b0:7c:25:a0:
5f:ec:fa:13:60:a1:04:4f:52:d2:51:47:42:15:fb:6d:03:42:
0f:7f:3c:ba:17:cf:b6:19:bb:08:a7:de:db:87:ee:05:3d:d4:
6b:35:4d:30:26:8e:b3:66:6d:48:f2:1d:6e:b6:fb:7f:75:af:
0a:9e:61:9e:85:83:cc:33:26:f3:70:0c:48:4c:a1:3e:f8:40:
c1:b9:4d:7c:68:ec:dc:44:3d:8b:fb:d9:8f:99:b2:16:82:37:
23:2f:85:0e:96:02:97:ce:c8:8f:05:bb:55:92:f1:8f:30:59:
86:fa:d8:83:48:48:b3:6f:96:a3:58:a3:91:35:af:f9:45:d8:
d6:80:f9:4f:44:18:2f:43:34:d4:a7:9d:01:0d:f7:92:ee:bc:
2c:8e:d8:35:81:e5:7a:99:cd:a3:21:36:7b:20:8d:62:73:b5:
5a:1a:c3:1c:f1:93:97:59:0e:26:83:35:d4:bc:e2:05:5f:5f:
d4:21:bf:16:76:a7:19:29:3c:41:fe:8b:dd:c4:5a:b4:4e:28:
be:00:6c:ff:37:da:d3:55:73:2f:94:0b:c2:56:70:7e:6e:d5:
ea:14:c3:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 09:52:33 2025 by rpki-client