Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/A1F134AAD00311EFA71EE065762E951A.roa
File: A1F134AAD00311EFA71EE065762E951A.roa (raw, json)
Hash identifier: Z27wWaWzVmrQMsvTf11ZsIhqMPbCEbhkVSRSB7xAV38=
Subject key identifier: 95:21:D1:F1:F8:5B:05:52:11:47:C5:0E:4C:E3:2D:E2:05:E4:65:18
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01059A
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/A1F134AAD00311EFA71EE065762E951A.roa
Signing time: Sat 11 Jan 2025 10:05:49 +0000
ROA not before: Sat 11 Jan 2025 10:05:46 +0000
ROA not after: Fri 24 Jan 2025 10:05:46 +0000
asID: 39600
IP address blocks: 45.197.8.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 66970 (0x1059a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Jan 11 10:05:46 2025 GMT
Not After : Jan 24 10:05:46 2025 GMT
Subject: CN=6782427d-08d5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:a2:ef:26:72:ee:a7:74:69:14:7a:9b:5a:e8:
9a:8a:b9:68:1d:e7:16:74:25:27:e4:92:42:8b:a0:
7d:5f:41:ee:29:8e:72:52:14:27:8d:b4:a6:fd:a7:
93:b7:21:9f:49:60:13:e2:cf:ae:3f:43:88:7c:0c:
b1:fb:dc:fa:61:c3:23:0f:73:70:5e:48:d1:34:61:
42:d8:43:b6:da:5d:0d:81:70:bb:f4:16:2c:08:92:
f0:2f:f0:8d:7f:49:53:8a:10:0a:b1:7a:e8:33:bd:
e3:2f:c7:bc:aa:c4:3a:83:ba:bb:ec:c1:6b:1a:c8:
cf:58:42:f4:8b:d0:3f:ac:c0:e0:79:f2:f0:5d:4b:
2d:8f:4e:ae:62:0d:19:bd:6c:27:a1:56:c2:6b:34:
82:58:58:03:b2:30:8a:31:f5:21:56:c5:80:ff:b6:
b8:15:1c:53:a5:f0:f4:50:ad:9b:67:bd:40:42:ad:
52:c6:d1:8a:1f:54:af:79:8b:dc:0d:9d:cb:18:7d:
bc:36:3a:82:3d:5f:15:3f:ba:0a:04:96:fe:41:20:
71:de:bf:0c:19:4a:db:f3:b4:b0:1b:b1:20:e3:f3:
1f:3c:5f:bb:1a:d3:93:d5:af:08:fd:73:29:86:da:
9a:6a:7f:c5:df:86:6b:7e:cb:c8:e9:c9:17:98:12:
5b:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:21:D1:F1:F8:5B:05:52:11:47:C5:0E:4C:E3:2D:E2:05:E4:65:18
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/A1F134AAD00311EFA71EE065762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.197.8.0/22
Signature Algorithm: sha256WithRSAEncryption
49:55:43:e7:9d:be:77:a3:c9:81:f9:69:e8:ea:c6:ed:2b:00:
6f:e5:86:19:21:fa:0c:cc:e2:36:11:56:38:1a:74:14:37:c7:
bc:bd:ac:91:40:16:16:63:da:e3:ce:4d:c6:af:ac:5d:3a:06:
70:e2:70:cb:b1:97:37:b8:52:e3:22:e7:34:08:98:49:dd:6d:
1a:0e:66:5c:da:e4:e6:5d:9c:0b:78:6d:a7:09:63:9c:72:b3:
53:d6:b9:4e:a3:03:27:09:99:97:86:1d:38:47:f2:ac:d8:bf:
0b:22:de:fb:32:c2:fd:fa:e8:32:27:b5:c0:c3:93:ad:6c:0b:
5f:43:21:67:e6:30:c9:97:43:ea:f0:c9:f1:53:40:a2:ed:fc:
96:4e:fa:00:f9:0f:36:d0:e9:74:5d:01:08:2e:60:35:1a:c1:
d9:8f:28:5d:bc:f0:6f:68:53:50:8c:53:cb:c1:e3:8b:6a:3f:
e0:4f:95:5e:bc:64:b4:17:57:af:6e:bc:f5:a6:ee:db:84:67:
b4:12:11:c1:02:59:80:a1:76:15:47:d9:97:21:f8:8b:0d:e3:
af:67:59:4a:20:df:99:31:f2:dd:d0:20:34:d0:93:ee:53:36:
7f:85:b9:81:1f:b5:59:41:6f:a7:2b:ac:5b:37:b0:10:6c:68:
c1:a9:57:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 10:00:14 2025 by rpki-client