Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/9C06959CCE9D11EF9C9E3F7F762E951A.roa
File: 9C06959CCE9D11EF9C9E3F7F762E951A.roa (raw, json)
Hash identifier: QNgW+p5h6SBAw6WHnKfrze/QdRIwWqR3unikhq/iwZ8=
Subject key identifier: 91:95:A4:46:E4:BB:57:B0:EA:F4:60:AB:F7:7F:55:81:36:CB:70:AF
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01042C
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/9C06959CCE9D11EF9C9E3F7F762E951A.roa
Signing time: Thu 09 Jan 2025 15:22:59 +0000
ROA not before: Thu 09 Jan 2025 15:22:56 +0000
ROA not after: Fri 24 Jan 2025 15:22:56 +0000
asID: 39600
IP address blocks: 45.203.58.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 66604 (0x1042c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Jan 9 15:22:56 2025 GMT
Not After : Jan 24 15:22:56 2025 GMT
Subject: CN=677fe9d3-c293
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:38:94:76:81:4f:a3:81:d2:3e:ec:dc:0a:75:
95:ca:0e:b2:9d:3e:79:d2:2e:35:fb:b0:69:75:bf:
1f:ae:0a:0c:94:ba:b3:d4:b1:72:9f:71:9c:88:ef:
6c:1c:bc:b8:4f:a8:26:07:b1:09:44:5d:ae:88:aa:
e5:cc:d2:c4:1a:e4:96:9d:42:e0:45:a5:e7:ed:d4:
1c:99:39:38:76:5a:ea:f6:ab:89:d1:d4:23:09:c6:
6e:50:b9:52:e8:18:b5:e6:69:2a:32:bd:ad:a3:5e:
57:5b:c6:ab:90:f0:56:dc:22:88:47:c1:59:df:ff:
b3:0b:3b:40:3c:10:43:ee:36:de:92:87:ef:54:50:
27:4d:cf:f9:32:f0:9b:5e:7c:85:ff:66:fe:81:79:
32:22:b0:47:59:72:16:a0:45:00:c8:82:3c:e0:3d:
d7:04:85:fb:6a:c7:ba:ff:58:b6:34:d9:c9:43:6d:
6b:93:0d:76:c1:ff:b3:f3:82:3a:fa:6f:dc:69:62:
cd:1e:a6:96:7a:a5:3a:e1:da:26:57:fe:c6:89:2a:
76:60:09:75:12:04:e6:44:a9:e6:09:bb:de:82:47:
a6:8b:f5:87:5b:bf:de:da:c5:89:49:fb:3b:34:62:
d4:bb:36:1d:f7:68:58:fa:8a:7d:a9:e7:fb:2c:7e:
d2:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:95:A4:46:E4:BB:57:B0:EA:F4:60:AB:F7:7F:55:81:36:CB:70:AF
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/9C06959CCE9D11EF9C9E3F7F762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.203.58.0/24
Signature Algorithm: sha256WithRSAEncryption
92:84:5a:4c:3f:ae:00:b9:c5:38:ef:c9:5a:e8:28:6f:7d:e0:
19:34:7e:2b:33:d9:4a:4c:ab:c9:50:0c:ff:3e:10:03:fa:0e:
78:53:2e:06:cc:00:a6:e0:9a:f7:c9:72:31:3f:a5:47:61:f7:
d0:47:51:5d:ad:75:b6:a6:fd:f3:a8:80:b6:de:b9:6f:6e:c9:
04:50:a2:70:ff:4f:ed:c7:0c:c6:94:83:87:5d:f1:63:4e:41:
c8:d7:eb:19:45:9d:89:21:94:32:6f:98:c3:27:75:69:4e:08:
19:de:47:b8:7a:95:e3:1d:9d:6c:27:68:fa:73:96:93:8c:3d:
3f:fc:1e:a1:69:2a:47:9e:ed:5b:b3:86:7c:37:19:99:8f:13:
6e:da:89:dd:3a:62:44:ea:86:90:39:ae:68:8a:89:85:77:e4:
73:d8:d3:88:1b:2c:22:80:d9:29:e5:bb:7c:71:f7:96:c1:2d:
a3:d7:2c:56:9d:b7:70:f5:29:a1:69:ea:1f:5b:21:51:5d:82:
de:1f:ca:4d:d5:29:74:d1:98:56:0f:29:43:5f:18:e6:03:21:
88:52:b8:bd:71:d5:24:90:3b:7a:db:c0:3d:51:bc:db:04:43:
1c:3d:f5:a5:6f:05:9f:0a:33:49:5f:a2:30:a7:f3:88:a6:22:
6b:be:3f:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 09:45:58 2025 by rpki-client