Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/9E44EF14CD8C11EFA4B553B4762E951A.roa
File: 9E44EF14CD8C11EFA4B553B4762E951A.roa (raw, json)
Hash identifier: KuxQyI1Zu2zLOBIuCuaD90ibPzXZXhhzkhBN67MReek=
Subject key identifier: 11:F6:C3:9A:B7:20:7E:E6:2B:F2:90:7F:C0:61:BF:BB:AB:89:69:80
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 010049
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/9E44EF14CD8C11EFA4B553B4762E951A.roa
Signing time: Wed 08 Jan 2025 06:48:51 +0000
ROA not before: Wed 08 Jan 2025 06:48:47 +0000
ROA not after: Sun 19 Jan 2025 06:48:47 +0000
asID: 142062
IP address blocks: 45.196.0.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 65609 (0x10049)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Jan 8 06:48:47 2025 GMT
Not After : Jan 19 06:48:47 2025 GMT
Subject: CN=677e1fd2-5e21
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:a0:db:17:d3:da:d2:a8:33:dc:c0:94:e2:a1:
c8:c7:a8:83:5d:17:4f:bd:46:95:42:0d:35:ca:e5:
a8:c1:c4:e3:17:b6:39:4c:3e:c7:ca:a8:1a:58:eb:
ed:56:39:58:3d:0d:6e:7a:56:05:9e:5c:28:e4:d1:
d7:01:49:3e:e5:35:c4:c9:c6:76:8d:d8:b8:23:6e:
7f:bf:a8:87:e9:38:9a:12:e6:16:be:68:70:8d:d3:
a1:3c:20:bf:c2:af:ff:28:a9:79:04:54:bb:38:5b:
c4:1b:b5:a0:72:e7:1d:44:76:ca:bc:ed:91:da:41:
57:47:bd:fb:20:2d:7f:7b:61:ab:ed:4f:31:0e:3a:
c2:20:04:07:b0:fe:d6:d4:06:8a:59:18:09:f5:00:
36:26:76:53:ed:cf:cd:40:ba:96:f2:eb:a1:7f:46:
e6:1b:d5:9c:7f:9c:1d:26:4f:03:a2:0c:4e:53:80:
64:82:8d:6d:c3:c4:a6:0a:31:7b:ce:5d:fa:ec:75:
30:12:a5:94:c3:e7:71:b0:f7:7a:e6:58:30:06:5e:
bf:e6:b9:a3:12:18:b3:e3:fc:db:f4:91:de:26:99:
ab:66:00:24:16:94:ad:86:97:a6:fa:18:c7:7a:2a:
74:b3:83:55:83:06:39:02:15:9b:3a:bb:c7:3b:8f:
3a:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:F6:C3:9A:B7:20:7E:E6:2B:F2:90:7F:C0:61:BF:BB:AB:89:69:80
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/9E44EF14CD8C11EFA4B553B4762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.196.0.0/20
Signature Algorithm: sha256WithRSAEncryption
98:ff:5e:07:52:76:de:5d:71:33:a3:05:e6:1d:3b:0c:6c:75:
9f:9a:dc:36:1d:17:ca:c9:55:40:13:cd:e5:47:39:bf:97:a3:
98:87:11:5a:24:3e:65:9b:2a:b5:15:ee:b0:89:f5:01:29:a1:
42:b5:2e:3a:97:e6:f6:f7:0a:65:16:66:da:85:63:97:90:07:
c0:9f:47:94:53:3a:7f:5a:17:7a:19:06:75:d6:3b:d3:ca:0e:
46:a9:43:e1:ff:2d:a1:f1:00:34:25:f7:03:d4:88:ce:36:39:
38:99:3f:89:79:f5:c9:f0:37:bb:28:49:4c:86:73:2b:44:23:
f9:15:e1:1e:85:1a:5e:2d:72:4b:4c:26:82:3a:bb:49:9a:d4:
8d:24:28:42:94:d1:3b:a4:e4:d3:01:16:4f:b2:12:02:51:08:
a5:3c:77:51:b7:6b:7f:af:08:6c:20:32:d7:23:15:e1:a2:20:
12:b1:16:38:e8:87:c9:75:f8:92:fe:dc:15:43:87:b5:84:12:
a9:fa:ea:a3:5c:01:27:c2:8c:8d:7d:fb:0a:64:64:8c:0d:58:
8e:87:51:29:26:42:d1:ca:48:e1:8f:48:31:d8:ff:42:79:9d:
23:10:07:d0:b8:d7:60:c0:de:13:74:6c:60:5e:6e:a0:81:42:
4d:4b:6d:97
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 10:01:08 2025 by rpki-client