Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/9F30F264BDD911EF8F17EF8E762E951A.roa
File: 9F30F264BDD911EF8F17EF8E762E951A.roa (raw, json)
Hash identifier: s9YJWGBooO4Kv+lZFxnju9D0BPkO8gfo5CkqiIstEus=
Subject key identifier: 5B:A0:51:30:2E:C7:AD:A8:96:6E:35:DA:0F:C6:4B:34:26:FD:52:FE
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: E5BB
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/9F30F264BDD911EF8F17EF8E762E951A.roa
Signing time: Thu 19 Dec 2024 07:19:45 +0000
ROA not before: Thu 19 Dec 2024 07:19:41 +0000
ROA not after: Thu 23 Jan 2025 07:19:41 +0000
asID: 140869
IP address blocks: 45.203.216.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 58811 (0xe5bb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Dec 19 07:19:41 2024 GMT
Not After : Jan 23 07:19:41 2025 GMT
Subject: CN=6763c911-36e0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:5e:71:43:c9:19:79:fb:1b:42:99:3f:04:5d:
5b:64:11:bc:0a:bd:92:f6:25:e1:a3:95:22:31:dd:
3d:04:d1:b8:7a:42:76:ec:7c:49:b4:88:85:19:8b:
a8:20:68:13:70:39:0c:1b:af:16:6d:b3:2d:8c:de:
17:46:31:ea:3c:f3:5e:8a:80:45:c4:4c:87:10:2b:
85:27:a7:bf:4b:2c:0a:59:49:c7:0d:22:3b:12:88:
a4:ec:63:93:68:72:ae:a1:5f:b3:ae:1c:ce:ca:fd:
ed:3c:66:c8:67:b1:f0:e5:7c:4c:67:a1:b4:2f:5f:
c2:81:e2:03:bf:90:74:f3:00:0a:1f:20:2f:84:c2:
63:a0:a6:00:f4:d2:ae:c3:8c:ca:58:7a:62:5c:5b:
a2:80:79:a9:c4:94:8c:4f:a3:f2:26:94:88:15:da:
59:6a:52:10:6e:cb:42:b8:f5:de:b6:92:b0:04:92:
5f:c7:29:e6:2b:44:75:55:20:76:4b:8e:c8:b0:e5:
27:12:7a:23:ef:57:34:6c:08:90:1c:5a:80:13:ee:
08:e4:87:d1:5e:0e:0f:ba:c3:c0:f5:46:4c:bd:e1:
73:2e:5b:f8:f8:15:bb:1f:14:3e:63:84:36:fe:81:
a8:c6:4a:0f:37:87:4f:36:66:7c:58:72:68:f6:c0:
88:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:A0:51:30:2E:C7:AD:A8:96:6E:35:DA:0F:C6:4B:34:26:FD:52:FE
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/9F30F264BDD911EF8F17EF8E762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.203.216.0/22
Signature Algorithm: sha256WithRSAEncryption
48:b7:e8:ca:6b:d7:55:92:64:16:b0:27:e6:a4:07:c0:4d:68:
35:c6:d1:53:a5:cc:5e:b9:50:7d:3b:f6:0a:f8:48:2f:6c:1a:
f3:33:cc:13:8b:e1:43:82:2d:c3:f4:8a:42:b7:1c:41:22:86:
b6:29:95:67:3e:a0:7f:91:51:5f:2b:36:ab:ca:30:c6:be:e8:
04:67:64:91:0a:08:65:76:f6:de:64:22:6e:0c:65:0f:99:17:
d4:3e:38:f3:7b:f1:12:ed:c9:1d:a6:64:c9:f2:1b:b9:23:a8:
af:0e:0a:7b:cf:6a:c5:e4:cf:cc:0d:86:98:f6:cb:35:08:00:
ac:20:f3:87:bb:20:0b:94:d6:68:2b:63:b8:58:45:be:84:08:
ee:54:ef:91:36:00:08:cf:ed:07:05:47:d2:04:b5:a9:0c:93:
c8:de:ca:7e:ac:ad:2b:bf:2e:0c:a1:a7:9d:85:f5:8e:d9:1e:
c0:e4:57:b5:01:77:db:8d:a0:7d:c3:0d:51:0f:96:e3:9b:b6:
7b:5c:64:da:d2:d9:fd:3d:c2:3c:f1:b5:14:62:2d:5e:10:29:
c5:12:d1:b6:8d:cb:96:a6:1c:a7:3c:1a:32:e2:8d:2c:6f:ef:
6a:09:14:10:e1:50:8e:ab:c6:52:7f:f4:0f:31:89:b0:97:e0:
4e:c9:8a:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 09:54:44 2025 by rpki-client