Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/99BD4394CE9811EFB558415F762E951A.roa
File: 99BD4394CE9811EFB558415F762E951A.roa (raw, json)
Hash identifier: WIJ2Sjv/tpLq58ky0bjHcUoLxZETdJ4uBNyrhoK5FSg=
Subject key identifier: 5D:4A:8A:28:39:54:06:65:EE:E0:8E:99:BC:AA:0C:C2:11:8A:A6:1B
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01040C
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/99BD4394CE9811EFB558415F762E951A.roa
Signing time: Thu 09 Jan 2025 14:47:08 +0000
ROA not before: Thu 09 Jan 2025 14:47:04 +0000
ROA not after: Thu 23 Jan 2025 14:47:04 +0000
asID: 5065
IP address blocks: 45.200.152.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 66572 (0x1040c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Jan 9 14:47:04 2025 GMT
Not After : Jan 23 14:47:04 2025 GMT
Subject: CN=677fe16c-eda7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:35:bf:21:26:35:62:05:db:73:7d:66:83:9a:
f9:6d:b6:6c:f3:d9:4a:88:c0:d7:d6:ff:3e:bf:57:
e8:bf:15:1c:17:86:f4:df:00:35:1a:5f:d4:55:cb:
6f:a2:6f:c8:08:3e:29:ff:01:63:b0:13:a7:f6:60:
90:5b:76:88:5f:1c:33:2f:33:61:40:61:36:89:dd:
16:db:b3:db:32:d6:46:aa:60:41:5e:27:2f:ca:85:
4a:18:36:48:0b:4a:4f:30:7b:db:01:98:c8:96:2b:
17:40:cf:fd:48:0a:e5:b2:7b:fd:b5:65:80:47:8c:
ff:88:a7:73:0d:d6:c9:43:52:c5:6e:e4:ec:1e:79:
57:af:c7:0b:0b:d2:85:db:c6:b7:24:7f:a8:9d:1b:
a2:9e:79:59:52:e6:d9:f6:a6:55:2e:f7:77:5a:55:
f5:9f:03:18:4f:aa:49:e4:97:41:98:2b:24:83:2e:
ea:ef:af:81:82:99:63:c6:a1:1d:6e:7d:0e:cb:e0:
8a:f1:27:c2:9a:ab:7d:4f:d9:0a:fc:35:97:e3:ae:
75:2f:55:d3:cd:16:88:b0:fd:8f:f7:68:d6:2b:c2:
5d:bd:6b:1a:b7:46:bf:e0:36:0e:ed:dd:53:3a:db:
4c:51:03:1e:55:12:d0:68:0e:4d:c9:dd:6a:82:10:
01:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:4A:8A:28:39:54:06:65:EE:E0:8E:99:BC:AA:0C:C2:11:8A:A6:1B
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/99BD4394CE9811EFB558415F762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.200.152.0/21
Signature Algorithm: sha256WithRSAEncryption
12:c4:d3:fe:6c:d1:40:6c:80:e8:7c:4c:39:37:fa:0d:92:cf:
af:06:6e:b8:0f:69:97:a1:c8:2f:7a:1d:97:f1:09:5a:69:49:
a5:64:e4:b0:f6:4d:ff:45:12:2c:dc:02:62:70:e0:7f:a9:1b:
e0:50:4a:ef:10:c3:35:30:38:c1:76:6b:8d:f1:9f:69:a8:76:
3a:77:39:bf:59:4d:1e:a5:d9:23:18:4d:3b:cd:25:c9:74:62:
68:97:88:dc:6a:9a:1e:55:d5:81:cb:a6:cd:95:5c:f6:5a:3e:
6c:0a:26:5d:0c:a1:5d:e0:23:f2:fe:1c:da:c9:68:6a:77:bb:
79:64:33:d4:98:a7:2b:09:8c:41:25:7d:56:45:c3:2a:cb:a5:
9c:ee:11:60:4f:fa:cb:b3:07:dc:53:b9:83:16:29:74:05:bb:
cb:97:02:a7:a7:c8:b5:1e:90:e0:33:e0:20:96:84:ba:d8:89:
db:36:83:ef:57:50:0e:72:72:36:d0:f7:c1:81:db:47:e7:09:
e6:01:01:48:98:62:56:bd:dc:fa:c5:ac:6d:96:12:9c:c1:3b:
9b:e2:7b:30:d1:fd:21:13:73:49:1f:76:6f:47:14:d8:98:0b:
e6:4a:0a:12:09:47:94:55:81:30:f7:f0:15:99:03:51:e3:b6:
3b:a8:19:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 09:49:29 2025 by rpki-client