Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/99BDA64ABDD611EF9DB8E97A762E951A.roa
File: 99BDA64ABDD611EF9DB8E97A762E951A.roa (raw, json)
Hash identifier: pLQN0vsktXzH+MC+gFBnfuidkdysNuy3PxrcHrGm6xw=
Subject key identifier: 54:94:C7:35:5A:FF:B8:69:01:53:FF:24:8D:A8:78:AD:32:05:DB:E0
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: E5A1
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/99BDA64ABDD611EF9DB8E97A762E951A.roa
Signing time: Thu 19 Dec 2024 06:58:07 +0000
ROA not before: Thu 19 Dec 2024 06:58:03 +0000
ROA not after: Thu 23 Jan 2025 06:58:03 +0000
asID: 202656
IP address blocks: 45.195.208.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 58785 (0xe5a1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Dec 19 06:58:03 2024 GMT
Not After : Jan 23 06:58:03 2025 GMT
Subject: CN=6763c3ff-b349
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:d1:97:5e:e9:83:65:60:80:16:dd:9d:10:05:
9f:d6:fa:a1:8b:4e:a2:5f:c0:cb:41:68:c0:30:92:
c8:6a:05:9d:9e:23:65:59:37:32:f5:8f:cd:0d:de:
9f:eb:f0:f0:08:05:95:b6:f3:fc:ef:94:a8:2d:87:
bd:34:56:63:58:28:e9:48:ca:df:0e:db:a4:ea:8e:
4d:c7:6e:e7:88:99:4a:2d:78:a6:fd:32:77:86:92:
71:23:03:0a:b7:9e:62:4d:be:d9:d8:2a:18:aa:65:
22:e4:20:c4:b0:16:f9:81:cf:e3:d2:85:52:63:b3:
55:8e:20:23:17:77:99:f0:e2:a8:e4:16:5b:a2:7e:
c5:d5:80:b7:28:88:24:7f:7d:6e:fa:a3:fd:e4:37:
1a:88:61:ee:54:01:db:e9:5a:0d:7b:6f:48:40:df:
85:b6:bc:9d:ec:05:c3:e4:0e:94:62:c5:b0:19:cd:
29:87:5a:ce:ce:45:2b:4b:e6:5c:93:e6:56:5b:75:
ec:22:a8:61:30:91:66:84:44:0f:17:43:2c:95:95:
42:a0:5c:c6:d0:0a:a5:89:32:13:e6:4e:d0:ec:78:
8c:bd:1b:d2:7d:d7:d1:85:93:1c:82:44:8d:66:32:
63:c4:9e:f1:9f:1f:be:05:b7:8b:74:b5:9d:a9:90:
02:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:94:C7:35:5A:FF:B8:69:01:53:FF:24:8D:A8:78:AD:32:05:DB:E0
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/99BDA64ABDD611EF9DB8E97A762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.195.208.0/23
Signature Algorithm: sha256WithRSAEncryption
3c:84:17:41:65:16:40:b5:5a:ca:48:64:2c:48:fd:42:27:9e:
80:f1:a9:6d:01:17:a6:a7:24:74:7c:b1:d3:05:44:23:3a:99:
b6:7e:4b:45:6f:a8:65:74:eb:68:24:bd:b7:23:9c:cd:ff:86:
62:aa:09:2b:53:31:63:5d:4b:6f:5c:f7:dd:47:1f:99:cb:45:
2a:3d:d7:3c:f5:a6:a2:b3:67:f4:d4:a0:4b:6a:c5:eb:dd:5b:
73:34:4a:42:1a:45:b0:87:98:ce:61:d4:54:9c:c4:86:82:bc:
fa:78:44:12:bf:6b:a4:4c:d9:b6:4a:9b:81:fe:3d:96:07:5f:
e8:65:89:9f:12:f9:c2:f7:ca:48:26:39:d2:c2:91:63:d5:a9:
ff:f9:27:7a:cf:67:5b:77:84:80:fb:00:e7:a0:f2:43:32:ca:
cc:c2:cc:05:e6:98:1e:70:42:bb:20:c6:6d:ce:b7:6c:c6:22:
b1:2d:ad:9f:9f:17:97:4c:01:be:f2:14:81:dd:1f:89:7f:1d:
f6:c0:85:b8:e1:35:d0:dc:6f:51:b1:54:d0:ad:7f:49:32:57:
1d:bd:89:7e:64:38:17:13:f7:59:0a:63:82:b6:56:3f:70:41:
5f:aa:e7:98:25:10:98:88:bd:54:f4:02:35:e9:1a:35:61:42:
ab:60:6b:37
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 09:38:29 2025 by rpki-client