Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/A44DCE8ECAC711EF901A7F89762E951A.roa
File: A44DCE8ECAC711EF901A7F89762E951A.roa (raw, json)
Hash identifier: ucpgjjXJXDOTzZxWouMoXgekdemQnN36ejN9NiKkwgY=
Subject key identifier: 1A:CD:D6:53:FB:12:E3:A7:3C:3D:89:BF:83:B8:16:CE:32:F6:F6:09
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: F744
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/A44DCE8ECAC711EF901A7F89762E951A.roa
Signing time: Sat 04 Jan 2025 18:13:48 +0000
ROA not before: Sun 05 Jan 2025 18:13:44 +0000
ROA not after: Fri 17 Jan 2025 18:13:44 +0000
asID: 39600
IP address blocks: 45.204.72.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 63300 (0xf744)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Jan 5 18:13:44 2025 GMT
Not After : Jan 17 18:13:44 2025 GMT
Subject: CN=67797a5b-1dfd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:df:5c:3c:fa:0e:aa:2c:d8:cf:e2:d9:87:bf:
08:dd:2e:97:e0:36:9f:79:5a:4b:1c:41:fa:fc:b7:
82:db:70:3e:32:11:4e:1c:78:f6:cc:b4:04:77:1a:
5a:74:f7:12:57:79:e4:6b:d4:d9:35:45:36:5b:5b:
e3:57:88:37:c8:be:d6:85:8c:19:be:b6:c7:72:2f:
23:64:3c:ee:96:70:9c:ec:2e:6b:00:c3:a3:71:60:
29:9d:c2:cf:3b:93:33:5b:4c:43:d3:30:bf:b7:f9:
44:c6:4c:32:5c:66:62:37:90:82:0a:ba:3c:c9:68:
d6:79:6f:b6:17:61:ea:8d:a4:3a:15:ff:de:8f:5f:
19:47:1f:d3:00:c3:9d:8b:a6:3d:73:d8:65:7b:47:
dc:cd:61:d0:5b:00:17:01:2f:04:77:ed:24:f8:f1:
e2:68:37:e6:b5:25:8f:85:21:6e:f2:7c:e4:8f:45:
ed:14:5e:42:35:6a:e0:96:bb:ea:05:9b:7d:85:d5:
5f:6d:2d:3d:d5:ce:b2:77:03:54:8a:32:ff:d1:c2:
9b:b4:b2:7b:34:65:79:04:a8:b5:73:51:65:1c:15:
62:7c:88:07:f9:26:20:77:1b:41:f9:6f:ca:e3:f7:
f4:db:43:48:c0:3d:55:c4:69:03:2c:77:06:a1:81:
b7:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:CD:D6:53:FB:12:E3:A7:3C:3D:89:BF:83:B8:16:CE:32:F6:F6:09
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/A44DCE8ECAC711EF901A7F89762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.204.72.0/24
Signature Algorithm: sha256WithRSAEncryption
11:3b:ba:2f:65:e7:da:52:bb:c1:0d:97:84:4d:12:02:a6:97:
07:20:5b:38:c4:ed:94:a0:ed:6f:db:55:26:4e:8c:86:bf:a4:
9f:e9:f3:21:52:6e:4f:32:5a:1a:35:fe:18:65:cc:5f:dd:05:
a7:02:36:7a:78:ed:5b:f1:14:07:16:4f:97:02:56:ba:3a:2d:
42:77:9a:a6:62:56:77:7b:7e:43:51:51:83:e3:5f:87:e9:db:
d4:d6:86:63:18:02:65:48:95:06:fe:95:0d:91:e9:40:46:88:
58:bd:60:80:6c:9f:7a:45:9e:bf:70:df:6d:13:0a:e6:e7:d7:
9e:8e:bb:c3:62:d7:94:eb:2f:36:3d:1d:09:12:f3:e1:4d:83:
39:2e:14:fd:52:4b:5c:43:88:48:4e:08:f9:49:b9:89:a1:8f:
f6:d6:3a:7e:82:44:ae:09:5b:39:54:92:e1:78:bb:ec:3e:fd:
11:67:4e:3f:09:c6:9a:55:df:af:76:f3:35:f6:e7:46:a1:57:
00:32:70:19:9a:73:66:aa:8c:8d:79:b4:67:ca:28:95:86:9b:
5f:8b:55:9e:fe:22:ff:8a:f2:e7:09:a7:c9:e4:93:09:06:f1:
7b:20:84:9e:3e:48:a1:88:85:8e:33:1d:92:12:a4:68:b1:96:
0e:47:39:c5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 09:39:12 2025 by rpki-client